CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
89.5%
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting,
which allows remote attackers to cause a denial of service (crash) by
causing multiple threads to report errors at the same time.
Author | Note |
---|---|
mdeslaur | RH apparently have a reproducer in private bug |
launchpad.net/bugs/cve/CVE-2011-1486
nvd.nist.gov/vuln/detail/CVE-2011-1486
security-tracker.debian.org/tracker/CVE-2011-1486
ubuntu.com/security/notices/USN-1152-1
www.cve.org/CVERecord?id=CVE-2011-1486
www.redhat.com/archives/libvir-list/2011-March/msg01087.html
www.redhat.com/archives/libvir-list/2011-March/msg01091.html