CVE-2014-8135
EPSS 0.07%發布日:2014/12/19修改日:2026/4/28
描述
The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows local users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted offset value in a "virsh vol-upload" command.
受影響套件(1)
- Debian/libvirtfrom 0, < 1.2.9-7