VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 30, 2013· Updated Apr 29, 2026

CVE-2013-4296

CVE-2013-4296

Description

The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via a crafted RPC call.

Affected products

35
  • Red Hat/Libvirt30 versions
    cpe:2.3:a:redhat:libvirt:0.10.0:*:*:*:*:*:*:*+ 29 more
    • cpe:2.3:a:redhat:libvirt:0.10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.10.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.10:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.11:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.12:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.13:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.6:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.7:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.8:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:0.9.9:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.1.1:*:*:*:*:*:*:*
  • Canonical/Ubuntu Linux4 versions
    cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*+ 3 more
    • cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
  • Red Hat/Enterprise Linux
    cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

11

News mentions

0

No linked articles in our index yet.