CVE-2012-4423: Null Pointer Dereference
First published: Thu Sep 13 2012(Updated: )
It has been found that sending RPC message with an event as the RPC number, or RPC number that falls into gap in the RPC dispatch table, can lead to libvirtd accessing memory at page zero. A remote attacker could use this flaw to crash libvirtd (DoS). Proposed upstream fix: <a href="https://www.redhat.com/archives/libvir-list/2012-September/msg00843.html">https://www.redhat.com/archives/libvir-list/2012-September/msg00843.html</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Libvirt | <=0.10.1 | |
| Redhat Libvirt | =0.0.1 | |
| Redhat Libvirt | =0.0.2 | |
| Redhat Libvirt | =0.0.3 | |
| Redhat Libvirt | =0.0.4 | |
| Redhat Libvirt | =0.0.5 | |
| Redhat Libvirt | =0.0.6 | |
| Redhat Libvirt | =0.1.0 | |
| Redhat Libvirt | =0.1.1 | |
| Redhat Libvirt | =0.1.3 | |
| Redhat Libvirt | =0.1.4 | |
| Redhat Libvirt | =0.1.5 | |
| Redhat Libvirt | =0.1.6 | |
| Redhat Libvirt | =0.1.7 | |
| Redhat Libvirt | =0.1.8 | |
| Redhat Libvirt | =0.1.9 | |
| Redhat Libvirt | =0.2.0 | |
| Redhat Libvirt | =0.2.1 | |
| Redhat Libvirt | =0.2.2 | |
| Redhat Libvirt | =0.2.3 | |
| Redhat Libvirt | =0.3.0 | |
| Redhat Libvirt | =0.3.1 | |
| Redhat Libvirt | =0.3.2 | |
| Redhat Libvirt | =0.3.3 | |
| Redhat Libvirt | =0.4.0 | |
| Redhat Libvirt | =0.4.1 | |
| Redhat Libvirt | =0.4.2 | |
| Redhat Libvirt | =0.4.3 | |
| Redhat Libvirt | =0.4.4 | |
| Redhat Libvirt | =0.4.5 | |
| Redhat Libvirt | =0.4.6 | |
| Redhat Libvirt | =0.5.0 | |
| Redhat Libvirt | =0.5.1 | |
| Redhat Libvirt | =0.6.0 | |
| Redhat Libvirt | =0.6.1 | |
| Redhat Libvirt | =0.6.2 | |
| Redhat Libvirt | =0.6.3 | |
| Redhat Libvirt | =0.6.4 | |
| Redhat Libvirt | =0.6.5 | |
| Redhat Libvirt | =0.7.0 | |
| Redhat Libvirt | =0.7.1 | |
| Redhat Libvirt | =0.7.2 | |
| Redhat Libvirt | =0.7.3 | |
| Redhat Libvirt | =0.7.4 | |
| Redhat Libvirt | =0.7.5 | |
| Redhat Libvirt | =0.7.6 | |
| Redhat Libvirt | =0.7.7 | |
| Redhat Libvirt | =0.8.0 | |
| Redhat Libvirt | =0.8.1 | |
| Redhat Libvirt | =0.8.2 | |
| Redhat Libvirt | =0.8.3 | |
| Redhat Libvirt | =0.8.4 | |
| Redhat Libvirt | =0.8.5 | |
| Redhat Libvirt | =0.8.6 | |
| Redhat Libvirt | =0.8.7 | |
| Redhat Libvirt | =0.8.8 | |
| Redhat Libvirt | =0.9.0 | |
| Redhat Libvirt | =0.9.1 | |
| Redhat Libvirt | =0.9.2 | |
| Redhat Libvirt | =0.9.3 | |
| Redhat Libvirt | =0.9.4 | |
| Redhat Libvirt | =0.9.5 | |
| Redhat Libvirt | =0.9.6 | |
| Redhat Libvirt | =0.9.7 | |
| Redhat Libvirt | =0.9.8 | |
| Redhat Libvirt | =0.9.9 | |
| Redhat Libvirt | =0.9.10 | |
| Redhat Libvirt | =0.9.11 | |
| Redhat Libvirt | =0.9.12 | |
| Redhat Libvirt | =0.9.13 | |
| Redhat Libvirt | =0.10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.redhat.com/archives/libvir-list/2012-September/msg00843.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857135
- https://rhn.redhat.com/errata/RHSA-2012-1359.html
- https://bugzilla.redhat.com/show_bug.cgi?id=857133
- http://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=b7ff9e696063189a715802d081d55a398663c15a
- http://libvirt.org/git/?p=libvirt.git%3Ba=commitdiff%3Bh=f8fbeb50d52520a109d71c8566fed2ea600650ec
- http://lists.fedoraproject.org/pipermail/package-announce/2012-October/089976.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090121.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html
- http://rhn.redhat.com/errata/RHSA-2012-1359.html
- http://www.openwall.com/lists/oss-security/2012/09/13/14
- http://www.securityfocus.com/bid/55541
- http://www.securitytracker.com/id?1027649
- http://www.ubuntu.com/usn/USN-1708-1
- collector/redhat-bugzilla
- alias/CVE-2012-4423
- collector/nvd-index
- agent/references
- agent/type
- agent/event
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/redhat
- canonical/redhat libvirt
- version/redhat libvirt/0.10.1
- version/redhat libvirt/0.0.1
- version/redhat libvirt/0.0.2
- version/redhat libvirt/0.0.3
- version/redhat libvirt/0.0.4
- version/redhat libvirt/0.0.5
- version/redhat libvirt/0.0.6
- version/redhat libvirt/0.1.0
- version/redhat libvirt/0.1.1
- version/redhat libvirt/0.1.3
- version/redhat libvirt/0.1.4
- version/redhat libvirt/0.1.5
- version/redhat libvirt/0.1.6
- version/redhat libvirt/0.1.7
- version/redhat libvirt/0.1.8
- version/redhat libvirt/0.1.9
- version/redhat libvirt/0.2.0
- version/redhat libvirt/0.2.1
- version/redhat libvirt/0.2.2
- version/redhat libvirt/0.2.3
- version/redhat libvirt/0.3.0
- version/redhat libvirt/0.3.1
- version/redhat libvirt/0.3.2
- version/redhat libvirt/0.3.3
- version/redhat libvirt/0.4.0
- version/redhat libvirt/0.4.1
- version/redhat libvirt/0.4.2
- version/redhat libvirt/0.4.3
- version/redhat libvirt/0.4.4
- version/redhat libvirt/0.4.5
- version/redhat libvirt/0.4.6
- version/redhat libvirt/0.5.0
- version/redhat libvirt/0.5.1
- version/redhat libvirt/0.6.0
- version/redhat libvirt/0.6.1
- version/redhat libvirt/0.6.2
- version/redhat libvirt/0.6.3
- version/redhat libvirt/0.6.4
- version/redhat libvirt/0.6.5
- version/redhat libvirt/0.7.0
- version/redhat libvirt/0.7.1
- version/redhat libvirt/0.7.2
- version/redhat libvirt/0.7.3
- version/redhat libvirt/0.7.4
- version/redhat libvirt/0.7.5
- version/redhat libvirt/0.7.6
- version/redhat libvirt/0.7.7
- version/redhat libvirt/0.8.0
- version/redhat libvirt/0.8.1
- version/redhat libvirt/0.8.2
- version/redhat libvirt/0.8.3
- version/redhat libvirt/0.8.4
- version/redhat libvirt/0.8.5
- version/redhat libvirt/0.8.6
- version/redhat libvirt/0.8.7
- version/redhat libvirt/0.8.8
- version/redhat libvirt/0.9.0
- version/redhat libvirt/0.9.1
- version/redhat libvirt/0.9.2
- version/redhat libvirt/0.9.3
- version/redhat libvirt/0.9.4
- version/redhat libvirt/0.9.5
- version/redhat libvirt/0.9.6
- version/redhat libvirt/0.9.7
- version/redhat libvirt/0.9.8
- version/redhat libvirt/0.9.9
- version/redhat libvirt/0.9.10
- version/redhat libvirt/0.9.11
- version/redhat libvirt/0.9.12
- version/redhat libvirt/0.9.13
- version/redhat libvirt/0.10.0