Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 476444 (CVE-2013-2230) - <app-emulation/libvirt-1.0.6-r1 : multiple registered event crash (CVE-2013-2230)
Summary: <app-emulation/libvirt-1.0.6-r1 : multiple registered event crash (CVE-2013-2...
Status: RESOLVED FIXED
Alias: CVE-2013-2230
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL: http://www.openwall.com/lists/oss-sec...
Whiteboard: ~3 [noglsa]
Keywords:
: 476094 (view as bug list)
Depends on:
Blocks:
 
Reported: 2013-07-10 19:20 UTC by Agostino Sarubbo
Modified: 2013-10-02 04:10 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-07-10 19:20:28 UTC
From ${URL} :

A flaw was found in the way multiple events registration were handled in
libvirt qemu driver.

A remote user able to issue commands to libvirt daemon could use this
flaw to crash libvirtd.

Upstream fix:
http://libvirt.org/git/?p=libvirt.git;a=commit;h=f38c8185f97720ecae7ef2291fbaa5d6b0209e17

References:
https://bugzilla.redhat.com/show_bug.cgi?id=981476


@maintainer(s): after the bump, in case we need to stabilize the package, please say explicitly if it is ready for the stabilization or not.
Comment 1 Agostino Sarubbo gentoo-dev 2013-07-10 19:21:49 UTC
*** Bug 476094 has been marked as a duplicate of this bug. ***
Comment 2 Doug Goldstein (RETIRED) gentoo-dev 2013-07-10 22:26:04 UTC
The fix is already in the tree when the embargo was lifted. The old package is removed and the only vulnerable version was only ever unstable.

I used the old bug since my commit was automated with the end of the embargo.
Comment 3 Chris Reffett (RETIRED) gentoo-dev Security 2013-07-11 01:10:54 UTC
Is it ready to stable?
Comment 4 Nikoli 2013-07-11 02:02:44 UTC
These is typo in ebuild:
 * Cannot find $EPATCH_SOURCE!  Value for $EPATCH_SOURCE is:
 * 
 *   /var/package-manager/portage/app-emulation/libvirt/files/ibvirt-1.1.0-CVE-2013-2230.patch
 *   ( ibvirt-1.1.0-CVE-2013-2230.patch )
Comment 5 Doug Goldstein (RETIRED) gentoo-dev 2013-07-11 12:39:45 UTC
(In reply to Chris Reffett from comment #3)
> Is it ready to stable?

I don't see a need in stabling it as I said in comment #2. The affected version was only ever unstable, and wasn't ready for stabling in the first place.
Comment 6 Agostino Sarubbo gentoo-dev 2013-07-20 08:06:56 UTC
(In reply to Doug Goldstein from comment #5)
> (In reply to Chris Reffett from comment #3)
> > Is it ready to stable?
> 
> I don't see a need in stabling it as I said in comment #2. The affected
> version was only ever unstable, and wasn't ready for stabling in the first
> place.

Right it was introduced in 1.0.6, closing as noglsa.
Comment 7 GLSAMaker/CVETool Bot gentoo-dev 2013-10-02 04:10:16 UTC
CVE-2013-2230 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-2230):
  The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows remote
  authenticated users to cause a denial of service (daemon crash) via
  unspecified vectors involving "multiple events registration."