oss-sec mailing list archives
Re: CVE Request -- libguestfs (1.20.6 | 1.22.0 | 1.23.0 <= X < 1.22.1 | 1.23.1): Denial of service due to a double-free when inspecting certain guest files / images
From: "Richard W.M. Jones" <rjones () redhat com>
Date: Wed, 29 May 2013 13:25:23 +0100
On Wed, May 29, 2013 at 08:21:42AM -0400, Jan Lieskovsky wrote:
Hello Kurt, Steve, vendors, LibguestFS upstream has issued the following patch: [1] https://github.com/libguestfs/libguestfs/commit/fa6a76050d82894365dfe32916903ef7fee3ffcd to correct a double-free flaw in the virt-inspector / other virt-* tools, which could lead to denial of service if some of the tools were used by 3rd party applications for inspection of untrusted guest files / images: [2] https://www.redhat.com/archives/libguestfs/2013-May/msg00079.html [3] https://www.redhat.com/archives/libguestfs/2013-May/msg00080.html Could you allocate a CVE identifier for this?
Small adjustment to the subject line. Just to be clear this affects: 1.20.x, x <= 6 1.21.x, all x (this is an obsolete development branch) 1.22.0 1.23.0 NOT affected are: anything < 1.20 1.20.7 (fix backported to this stable version yesterday) 1.22.1 (fix backported to this stable version yesterday) 1.23.1 (this is the upstream version, fixed yesterday) Credit for finding the bug goes to the Coverity static analyzer. Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones libguestfs lets you edit virtual machines. Supports shell scripting, bindings from many languages. http://libguestfs.org
Current thread:
- CVE Request -- libguestfs (1.21.6 | 1.22.0 | 1.23.0 <= X < 1.22.1 | 1.23.1): Denial of service due to a double-free when inspecting certain guest files / images Jan Lieskovsky (May 29)
- Re: CVE Request -- libguestfs (1.20.6 | 1.22.0 | 1.23.0 <= X < 1.22.1 | 1.23.1): Denial of service due to a double-free when inspecting certain guest files / images Richard W.M. Jones (May 29)