Metrics
Affected Vendors & Products
Fri, 30 Aug 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
threat_severity
|
threat_severity
|
Fri, 30 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 30 Aug 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | No description is available for this CVE. | A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon. |
Title | libvirt: Crash of virtinterfaced via virConnectListInterfaces() | Libvirt: crash of virtinterfaced via virconnectlistinterfaces() |
First Time appeared |
Redhat
Redhat advanced Virtualization Redhat enterprise Linux |
|
Weaknesses | CWE-476 | |
CPEs | cpe:/a:redhat:advanced_virtualization:8::el8 cpe:/o:redhat:enterprise_linux:6 cpe:/o:redhat:enterprise_linux:7 cpe:/o:redhat:enterprise_linux:8 cpe:/o:redhat:enterprise_linux:9 |
|
Vendors & Products |
Redhat
Redhat advanced Virtualization Redhat enterprise Linux |
|
References |
| |
Metrics |
cvssV3_1
|
cvssV3_1
|
Fri, 30 Aug 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | No description is available for this CVE. | |
Title | libvirt: Crash of virtinterfaced via virConnectListInterfaces() | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Status: PUBLISHED
Assigner: redhat
Published: 2024-08-30T16:16:57.214Z
Updated: 2024-09-13T21:22:34.490Z
Reserved: 2024-08-27T15:58:35.816Z
Link: CVE-2024-8235
Updated: 2024-08-30T17:10:51.776Z
Status : Awaiting Analysis
Published: 2024-08-30T17:15:15.783
Modified: 2024-09-03T12:59:02.453
Link: CVE-2024-8235