Candidate: CVE-2014-8135
PublicDate: 2014-12-19 15:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8135
 http://secunia.com/advisories/61111
 http://libvirt.org/git/?p=libvirt.git;a=commit;h=87b9437f8951f9d24f9a85c6bbfff0e54df8c984
 http://security.libvirt.org/2014/0009.html
Description:
 The storageVolUpload function in storage/storage_driver.c in libvirt before
 1.2.11 does not check a certain return value, which allows local users to
 cause a denial of service (NULL pointer dereference and daemon crash) via a
 crafted offset value in a "virsh vol-upload" command.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773855
 https://bugzilla.redhat.com/show_bug.cgi?id=1087104
Priority: low
Discovered-by: Pei Zhang
Assigned-to:
CVSS: 

Patches_libvirt:
 upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=05ba8c50b15f7078ba7981f550fc59c3dc74c469 (1.2.8)
upstream_libvirt: released (1.2.9-7,1.2.11)
lucid_libvirt: not-affected (code not present)
precise_libvirt: not-affected (code not present)
trusty_libvirt: not-affected (code not present)
trusty/esm_libvirt: not-affected (code not present)
utopic_libvirt: ignored (reached end-of-life)
vivid_libvirt: not-affected (1.2.12-0ubuntu14.2)
devel_libvirt: not-affected (1.2.16-2ubuntu9)