PublicDateAtUSN: 2011-07-12
Candidate: CVE-2011-2511
PublicDate: 2011-08-10 20:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2511
 https://ubuntu.com/security/notices/USN-1180-1
Description:
 Integer overflow in libvirt before 0.9.3 allows remote authenticated users
 to cause a denial of service (libvirtd crash) and possibly execute
 arbitrary code via a crafted VirDomainGetVcpus RPC call that triggers
 memory corruption.
Ubuntu-Description: 
Notes: 
 jdstrand> DoS is confirmed by a remote authenticated user
 jdstrand> 89d994ad6b0e8ebe9a2cd4e0e37119ff4c917550 (gnulib) may not actually
  be required to fix in stable releases.
 jdstrand> fixed in 0.8.3-5+squeeze2
Bugs: 
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=633630
Priority: medium
Discovered-by: Eric Blake
Assigned-to: jdstrand
CVSS: 

Patches_libvirt:
 upstream: https://www.redhat.com/archives/libvir-list/2011-June/msg01278.html
 upstream: 774b21c163845170c9ffa873f5720d318812eaf6
 upstream: 89d994ad6b0e8ebe9a2cd4e0e37119ff4c917550
 vendor: https://rhn.redhat.com/errata/RHSA-2011-1019.html
upstream_libvirt: released (0.9.3, 0.9.2-7)
hardy_libvirt: ignored (reached end-of-life)
lucid_libvirt: released (0.7.5-5ubuntu27.16)
maverick_libvirt: released (0.8.3-1ubuntu19.1)
natty_libvirt: released (0.8.8-1ubuntu6.5)
devel_libvirt: released (0.9.2-4ubuntu6)