CVE-2012-3445 — Redhat Libvirt vulnerability

CWE-3998 documents7 sources

Severity

3.5LOWNVD

EPSS

1.3%

top 20.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Libvirt

Timeline

PublishedAug 7

Latest updateMay 17

Description

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 6.8 | Impact: 2.9

Affected Packages2 packages

▶Debianredhat/libvirt< 0.9.12-4+3

▶NVDredhat/libvirt0.9.13

🔴Vulnerability Details

GHSA

GHSA-65xv-xg43-h8gj: The virTypedParameterArrayClear function in libvirt 0↗2022-05-17

▶

CVEList

CVE-2012-3445: The virTypedParameterArrayClear function in libvirt 0↗2012-08-07

▶

OSV

CVE-2012-3445: The virTypedParameterArrayClear function in libvirt 0↗2012-08-07

▶

📋Vendor Advisories

Red Hat

libvirt: crash in virTypedParameterArrayClear↗2012-07-30

▶

Debian

CVE-2012-3445: libvirt - The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly han...↗2012

▶

💬Community

Bugzilla

CVE-2012-3445 libvirt: crash in virTypedParameterArrayClear↗2012-07-31

▶

Bugzilla

CVE-2012-3445 libvirt: crash in virTypedParameterArrayClear [fedora-all]↗2012-07-31

▶