CVE-2018-5748
Description
qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.359
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_3.6.0-1ubuntu6.3_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_3.6.0-1ubuntu6.3_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_1.3.1-1ubuntu10.19_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_1.3.1-1ubuntu10.19_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_1.2.2-0ubuntu13.1.26_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt0_1.2.2-0ubuntu13.1.26_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_3.6.0-1ubuntu6.3_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_3.6.0-1ubuntu6.3_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_1.3.1-1ubuntu10.19_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_1.3.1-1ubuntu10.19_amd64.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_1.2.2-0ubuntu13.1.26_i386.deb | Linux |
| Libvirt virtualization toolkit (USN-3576-1) libvirt-bin_1.2.2-0ubuntu13.1.26_amd64.deb | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-0.10.2-64.el6.i686.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-0.10.2-64.el6.x86_64.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-devel-0.10.2-64.el6.i686.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-devel-0.10.2-64.el6.x86_64.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-client-0.10.2-64.el6.i686.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-client-0.10.2-64.el6.x86_64.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-python-0.10.2-64.el6.i686.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-python-0.10.2-64.el6.x86_64.rpm | Linux |
| Libvirt security update (CESA-2018:1669) libvirt-lock-sanlock-0.10.2-64.el6.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-admin-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-client-3.9.0-14.el7_5.4.i686.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-client-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-config-network-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-config-nwfilter-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-interface-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-lxc-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-network-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-nodedev-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-nwfilter-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-qemu-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-secret-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-core-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-disk-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-gluster-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-iscsi-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-logical-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-mpath-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-rbd-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-driver-storage-scsi-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-kvm-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-daemon-lxc-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-devel-3.9.0-14.el7_5.4.i686.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-devel-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-docs-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-libs-3.9.0-14.el7_5.4.i686.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-libs-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-lock-sanlock-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-login-shell-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-nss-3.9.0-14.el7_5.4.i686.rpm | Linux |
| (RHSA-2018:1396) Low: libvirt security and bug fix update libvirt-nss-3.9.0-14.el7_5.4.x86_64.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-0.10.2-64.el6.i686.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-0.10.2-64.el6.x86_64.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-client-0.10.2-64.el6.i686.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-client-0.10.2-64.el6.x86_64.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-devel-0.10.2-64.el6.i686.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-devel-0.10.2-64.el6.x86_64.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-lock-sanlock-0.10.2-64.el6.x86_64.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-python-0.10.2-64.el6.i686.rpm | Linux |
| (RHSA-2018:1929) Low: libvirt security update libvirt-python-0.10.2-64.el6.x86_64.rpm | Linux |
| Uncontrolled Resource Consumption Vulnerability (CVE-2018-5748) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234