What is the severity of CVE-2013-6457?

CVE-2013-6457 has a moderate severity level due to the potential for application crashes and the unlikely possibility of arbitrary code execution.

How do I fix CVE-2013-6457?

To fix CVE-2013-6457, update to a patched version of libvirt that addresses the invalid free flaw.

Which versions of libvirt are affected by CVE-2013-6457?

CVE-2013-6457 affects versions of libvirt up to and including 1.2.0.

What types of systems are impacted by CVE-2013-6457?

Systems running vulnerable versions of libvirt, particularly those deployed on Fedora 20 and older versions, are impacted by CVE-2013-6457.

Are there known exploits for CVE-2013-6457?

There are no publicly available exploits for CVE-2013-6457, making the risk of exploitation relatively low for most users.

Vulnerability/
CVE-2013-6457

medium

5.2

CWE

264

5/1/2014

24/1/2014

6/8/2024

CVE-2013-6457

First published: Sun Jan 05 2014(Updated: )

An invalid free flaw in the libxl driver in libvirt resulted in libvirt crashing if "virsh numatune" was run on an inactive domain. It may be possible, but unlikely, for an attacker to leverage this flaw for arbitrary code execution. This issue affects the version of libvirt in Fedora 20. It does not affect the versions of libvirt in Red Hat Enterprise Linux 5 and 6 as those versions do not use libxl.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Red Hat Libvirt	<=1.2.0
Red Hat Libvirt	=0.0.1
Red Hat Libvirt	=0.0.2
Red Hat Libvirt	=0.0.3
Red Hat Libvirt	=0.0.4
Red Hat Libvirt	=0.0.5
Red Hat Libvirt	=0.0.6
Red Hat Libvirt	=0.1.0
Red Hat Libvirt	=0.1.1
Red Hat Libvirt	=0.1.3
Red Hat Libvirt	=0.1.4
Red Hat Libvirt	=0.1.5
Red Hat Libvirt	=0.1.6
Red Hat Libvirt	=0.1.7
Red Hat Libvirt	=0.1.8
Red Hat Libvirt	=0.1.9
Red Hat Libvirt	=0.2.0
Red Hat Libvirt	=0.2.1
Red Hat Libvirt	=0.2.2
Red Hat Libvirt	=0.2.3
Red Hat Libvirt	=0.3.0
Red Hat Libvirt	=0.3.1
Red Hat Libvirt	=0.3.2
Red Hat Libvirt	=0.3.3
Red Hat Libvirt	=0.4.0
Red Hat Libvirt	=0.4.1
Red Hat Libvirt	=0.4.2
Red Hat Libvirt	=0.4.3
Red Hat Libvirt	=0.4.4
Red Hat Libvirt	=0.4.5
Red Hat Libvirt	=0.4.6
Red Hat Libvirt	=0.5.0
Red Hat Libvirt	=0.5.1
Red Hat Libvirt	=0.6.0
Red Hat Libvirt	=0.6.1
Red Hat Libvirt	=0.6.2
Red Hat Libvirt	=0.6.3
Red Hat Libvirt	=0.6.4
Red Hat Libvirt	=0.6.5
Red Hat Libvirt	=0.7.0
Red Hat Libvirt	=0.7.1
Red Hat Libvirt	=0.7.2
Red Hat Libvirt	=0.7.3
Red Hat Libvirt	=0.7.4
Red Hat Libvirt	=0.7.5
Red Hat Libvirt	=0.7.6
Red Hat Libvirt	=0.7.7
Red Hat Libvirt	=0.8.0
Red Hat Libvirt	=0.8.1
Red Hat Libvirt	=0.8.2
Red Hat Libvirt	=0.8.3
Red Hat Libvirt	=0.8.4
Red Hat Libvirt	=0.8.5
Red Hat Libvirt	=0.8.6
Red Hat Libvirt	=0.8.7
Red Hat Libvirt	=0.8.8
Red Hat Libvirt	=0.9.0
Red Hat Libvirt	=0.9.1
Red Hat Libvirt	=0.9.2
Red Hat Libvirt	=0.9.3
Red Hat Libvirt	=0.9.4
Red Hat Libvirt	=0.9.5
Red Hat Libvirt	=0.9.6
Red Hat Libvirt	=0.9.6.1
Red Hat Libvirt	=0.9.6.2
Red Hat Libvirt	=0.9.6.3
Red Hat Libvirt	=0.9.7
Red Hat Libvirt	=0.9.8
Red Hat Libvirt	=0.9.9
Red Hat Libvirt	=0.9.10
Red Hat Libvirt	=0.9.11
Red Hat Libvirt	=0.9.11.1
Red Hat Libvirt	=0.9.11.2
Red Hat Libvirt	=0.9.11.3
Red Hat Libvirt	=0.9.11.4
Red Hat Libvirt	=0.9.11.5
Red Hat Libvirt	=0.9.11.6
Red Hat Libvirt	=0.9.11.7
Red Hat Libvirt	=0.9.11.8
Red Hat Libvirt	=0.9.12
Red Hat Libvirt	=0.9.13
Red Hat Libvirt	=0.10.0
Red Hat Libvirt	=0.10.1
Red Hat Libvirt	=0.10.2
Red Hat Libvirt	=0.10.2.1
Red Hat Libvirt	=0.10.2.2
Red Hat Libvirt	=0.10.2.3
Red Hat Libvirt	=0.10.2.4
Red Hat Libvirt	=0.10.2.5
Red Hat Libvirt	=0.10.2.6
Red Hat Libvirt	=0.10.2.7
Red Hat Libvirt	=0.10.2.8
Red Hat Libvirt	=1.0.0
Red Hat Libvirt	=1.0.1
Red Hat Libvirt	=1.0.2
Red Hat Libvirt	=1.0.3
Red Hat Libvirt	=1.0.4
Red Hat Libvirt	=1.0.5
Red Hat Libvirt	=1.0.5.1
Red Hat Libvirt	=1.0.5.2
Red Hat Libvirt	=1.0.5.3
Red Hat Libvirt	=1.0.5.4
Red Hat Libvirt	=1.0.5.5
Red Hat Libvirt	=1.0.5.6
Red Hat Libvirt	=1.0.6
Red Hat Libvirt	=1.1.0
Red Hat Libvirt	=1.1.1
Red Hat Libvirt	=1.1.2
Red Hat Libvirt	=1.1.3
Red Hat Libvirt	=1.1.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6457?
CVE-2013-6457 has a moderate severity level due to the potential for application crashes and the unlikely possibility of arbitrary code execution.
How do I fix CVE-2013-6457?
To fix CVE-2013-6457, update to a patched version of libvirt that addresses the invalid free flaw.
Which versions of libvirt are affected by CVE-2013-6457?
CVE-2013-6457 affects versions of libvirt up to and including 1.2.0.
What types of systems are impacted by CVE-2013-6457?
Systems running vulnerable versions of libvirt, particularly those deployed on Fedora 20 and older versions, are impacted by CVE-2013-6457.
Are there known exploits for CVE-2013-6457?
There are no publicly available exploits for CVE-2013-6457, making the risk of exploitation relatively low for most users.

agent/references
agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/weakness
agent/author
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2013-6457
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/redhat
canonical/red hat libvirt
version/red hat libvirt/1.2.0
version/red hat libvirt/0.0.1
version/red hat libvirt/0.0.2
version/red hat libvirt/0.0.3
version/red hat libvirt/0.0.4
version/red hat libvirt/0.0.5
version/red hat libvirt/0.0.6
version/red hat libvirt/0.1.0
version/red hat libvirt/0.1.1
version/red hat libvirt/0.1.3
version/red hat libvirt/0.1.4
version/red hat libvirt/0.1.5
version/red hat libvirt/0.1.6
version/red hat libvirt/0.1.7
version/red hat libvirt/0.1.8
version/red hat libvirt/0.1.9
version/red hat libvirt/0.2.0
version/red hat libvirt/0.2.1
version/red hat libvirt/0.2.2
version/red hat libvirt/0.2.3
version/red hat libvirt/0.3.0
version/red hat libvirt/0.3.1
version/red hat libvirt/0.3.2
version/red hat libvirt/0.3.3
version/red hat libvirt/0.4.0
version/red hat libvirt/0.4.1
version/red hat libvirt/0.4.2
version/red hat libvirt/0.4.3
version/red hat libvirt/0.4.4
version/red hat libvirt/0.4.5
version/red hat libvirt/0.4.6
version/red hat libvirt/0.5.0
version/red hat libvirt/0.5.1
version/red hat libvirt/0.6.0
version/red hat libvirt/0.6.1
version/red hat libvirt/0.6.2
version/red hat libvirt/0.6.3
version/red hat libvirt/0.6.4
version/red hat libvirt/0.6.5
version/red hat libvirt/0.7.0
version/red hat libvirt/0.7.1
version/red hat libvirt/0.7.2
version/red hat libvirt/0.7.3
version/red hat libvirt/0.7.4
version/red hat libvirt/0.7.5
version/red hat libvirt/0.7.6
version/red hat libvirt/0.7.7
version/red hat libvirt/0.8.0
version/red hat libvirt/0.8.1
version/red hat libvirt/0.8.2
version/red hat libvirt/0.8.3
version/red hat libvirt/0.8.4
version/red hat libvirt/0.8.5
version/red hat libvirt/0.8.6
version/red hat libvirt/0.8.7
version/red hat libvirt/0.8.8
version/red hat libvirt/0.9.0
version/red hat libvirt/0.9.1
version/red hat libvirt/0.9.2
version/red hat libvirt/0.9.3
version/red hat libvirt/0.9.4
version/red hat libvirt/0.9.5
version/red hat libvirt/0.9.6
version/red hat libvirt/0.9.6.1
version/red hat libvirt/0.9.6.2
version/red hat libvirt/0.9.6.3
version/red hat libvirt/0.9.7
version/red hat libvirt/0.9.8
version/red hat libvirt/0.9.9
version/red hat libvirt/0.9.10
version/red hat libvirt/0.9.11
version/red hat libvirt/0.9.11.1
version/red hat libvirt/0.9.11.2
version/red hat libvirt/0.9.11.3
version/red hat libvirt/0.9.11.4
version/red hat libvirt/0.9.11.5
version/red hat libvirt/0.9.11.6
version/red hat libvirt/0.9.11.7
version/red hat libvirt/0.9.11.8
version/red hat libvirt/0.9.12
version/red hat libvirt/0.9.13
version/red hat libvirt/0.10.0
version/red hat libvirt/0.10.1
version/red hat libvirt/0.10.2
version/red hat libvirt/0.10.2.1
version/red hat libvirt/0.10.2.2
version/red hat libvirt/0.10.2.3
version/red hat libvirt/0.10.2.4
version/red hat libvirt/0.10.2.5
version/red hat libvirt/0.10.2.6
version/red hat libvirt/0.10.2.7
version/red hat libvirt/0.10.2.8
version/red hat libvirt/1.0.0
version/red hat libvirt/1.0.1
version/red hat libvirt/1.0.2
version/red hat libvirt/1.0.3
version/red hat libvirt/1.0.4
version/red hat libvirt/1.0.5
version/red hat libvirt/1.0.5.1
version/red hat libvirt/1.0.5.2
version/red hat libvirt/1.0.5.3
version/red hat libvirt/1.0.5.4
version/red hat libvirt/1.0.5.5
version/red hat libvirt/1.0.5.6
version/red hat libvirt/1.0.6
version/red hat libvirt/1.1.0
version/red hat libvirt/1.1.1
version/red hat libvirt/1.1.2
version/red hat libvirt/1.1.3
version/red hat libvirt/1.1.4

CVE-2013-6457

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6457?

How do I fix CVE-2013-6457?

Which versions of libvirt are affected by CVE-2013-6457?

What types of systems are impacted by CVE-2013-6457?

Are there known exploits for CVE-2013-6457?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-6457?

How do I fix CVE-2013-6457?

Which versions of libvirt are affected by CVE-2013-6457?

What types of systems are impacted by CVE-2013-6457?

Are there known exploits for CVE-2013-6457?