CVE-2014-8136

Priority
Description
The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions
in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check
fails, which allow local users to cause a denial of service via unspecified
vectors.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (1.2.9-7)
Ubuntu 14.04 ESM (Trusty Tahr):released (1.2.2-0ubuntu13.1.16)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (1.2.16-2ubuntu9)
Patches:
Upstream:http://libvirt.org/git/?p=libvirt.git;a=commit;h=372bfe63b501c7580400107682633ad421416f88 (1.2.8)
Upstream:http://libvirt.org/git/?p=libvirt.git;a=commit;h=f5a151754f2080598049baf5d68282f183a30f5c (1.2.2)
More Information

Updated: 2019-12-05 18:38:30 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)