CVE-2014-3633Improper Restriction of Operations within the Bounds of a Memory Buffer in Libvirt

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds Read10 documents8 sources
Severity
5.8MEDIUMNVD
EPSS
2.9%
top 13.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Redhat LibvirtLibvirtCanonical Ubuntu Linux
Timeline
PublishedOct 6
Latest updateMay 17

Description

The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1.2.9, when a disk has been hot-plugged or removed from the live image, allows remote attackers to cause a denial of service (crash) or read sensitive heap information via a crafted blkiotune query, which triggers an out-of-bounds read.

CVSS vector

AV:N/AC:M/C:P/I:N/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

Debianredhat/libvirt< 1.2.8-2+3
NVDlibvirt/libvirt1.2.8+8

Also affects: Ubuntu Linux 10.04, 12.04, 14.04

🔴Vulnerability Details

4
GHSA
GHSA-gq49-7wvq-p22q: The qemuDomainGetBlockIoTune function in qemu/qemu_driver2022-05-17
OSV
CVE-2014-3633: The qemuDomainGetBlockIoTune function in qemu/qemu_driver2014-10-06
CVEList
CVE-2014-3633: The qemuDomainGetBlockIoTune function in qemu/qemu_driver2014-10-06
OSV
libvirt vulnerabilities2014-09-30

📋Vendor Advisories

3
Ubuntu
libvirt vulnerabilities2014-09-30
Red Hat
libvirt: qemu: out-of-bounds read access in qemuDomainGetBlockIoTune() due to invalid index2014-09-17
Debian
CVE-2014-3633: libvirt - The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1....2014

💬Community

2
Bugzilla
CVE-2014-3633 libvirt: qemu: out-of-bounds read access in qemuDomainGetBlockIoTune() due to invalid index [fedora-all]2014-11-05
Bugzilla
CVE-2014-3633 libvirt: qemu: out-of-bounds read access in qemuDomainGetBlockIoTune() due to invalid index2014-09-12
CVE-2014-3633 — Libvirt vulnerability | cvebase