Red Hat Customer Portal

Skip to main content

CVE-2013-5651

The virBitmapParse function in util/virbitmap.c in libvirt before 1.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via a crafted bitmap, as demonstrated by a large nodeset value to numatune.

Details Source

Mitre

Statement

Not vulnerable.

This issue did not affect the versions of libvirt package as shipped with Red Hat Enterprise Linux 5 and 6.

Public Date

2013-08-29 00:00:00

Impact

Moderate

Bugzilla

CVE-2013-5651 libvirt: virBitmapParse out-of-bounds read access

Bugzilla ID

1 006 493

CVSS Status

draft

Base Score

3.30

Base Metrics

AV:A/AC:L/Au:N/C:N/I:N/A:P

CWE

CWE-125

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Extended Update Support 6.4 libvirt Not affected
Red Hat Enterprise Linux 7 libvirt Affected
Red Hat Enterprise Linux 6 libvirt Affected
Red Hat Enterprise Linux 5 libvirt Not affected