Oval Definition:	oval:org.mitre.oval:def:21083
Revision Date: 2014-02-24 Version: 10 Title: RHSA-2012:1202: libvirt security and bug fix update (Moderate) Description: The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers an out-of-bounds read or a free of an invalid pointer. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2012:1202 CVE-2012-3445 RHSA-2012:1202-01 Platform(s): CentOS Linux 6 Red Hat Enterprise Linux 6 Product(s): libvirt Definition Synopsis Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section libvirt-devel is earlier than 0:0.9.10-21.el6_3.4 OR libvirt-python is earlier than 0:0.9.10-21.el6_3.4 OR libvirt-client is earlier than 0:0.9.10-21.el6_3.4 OR libvirt-lock-sanlock is earlier than 0:0.9.10-21.el6_3.4 OR libvirt is earlier than 0:0.9.10-21.el6_3.4
BACK