CVE-2014-3633
Description
The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1.2.9, when a disk has been hot-plugged or removed from the live image, allows remote attackers to cause a denial of service (crash) or read sensitive heap information via a crafted blkiotune query, which triggers an out-of-bounds read.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
2.92
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Libvirt virtualization toolkit (USN-2366-1) libvirt0_1.2.2-0ubuntu13.1.7_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-2366-1) libvirt0_1.2.2-0ubuntu13.1.7_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-2366-1) libvirt-bin_1.2.2-0ubuntu13.1.7_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-2366-1) libvirt-bin_1.2.2-0ubuntu13.1.7_amd64.deb | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Desktop 11 SP3 ) libvirt-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Desktop 11 SP3 ) libvirt-client-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Desktop 11 SP3 ) libvirt-client-32bit-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Desktop 11 SP3 ) libvirt-doc-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Server 11 SP3 ) libvirt-lock-sanlock-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| SUSE-SU-2015:0357-1(SUSE Linux Enterprise Desktop 11 SP3 ) libvirt-python-1.0.5.9-0.19.3.x86_64.rpm | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3633) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234