Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
aports
aports
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 673
    • Issues 673
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 176
    • Merge Requests 176
  • CI / CD
    • CI / CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Incidents
    • Environments
  • Analytics
    • Analytics
    • CI / CD
    • Repository
    • Value Stream
  • Members
    • Members
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • alpine
  • aportsaports
  • Issues
  • #10421

Closed
Open
Opened May 08, 2019 by Alicha CH@alichaReporter

libvirt: A NULL pointer dereference flaw (CVE-2019-3840)

A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the
way it gets interface information through the QEMU agent. An attacker in a guest VM
can use this flaw to crash libvirtd and cause a denial of service.

References:

https://nvd.nist.gov/vuln/detail/CVE-2019-3840

Patch:

https://libvirt.org/git/?p=libvirt.git;a=commit;h=7cfd1fbb1332ae5df678b9f41a62156cb2e88c73

(from redmine: issue id 10421, created on 2019-05-08, closed on 2019-06-20)

  • Relations:
    • child #10422 (closed)
    • child #10423 (closed)
    • child #10424 (closed)
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: alpine/aports#10421