VYPR
Unrated severityNVD Advisory· Published May 7, 2014· Updated Jun 17, 2026

CVE-2013-7336

CVE-2013-7336

Description

The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) by causing domblkstat to be called at the same time as the qemuMonitorGetSpiceMigrationStatus function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Red Hat/Libvirt4 versions
    cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*range: <=1.1.2
    • cpe:2.3:a:redhat:libvirt:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:libvirt:1.0.2:*:*:*:*:*:*:*
  • Libvirt/Libvirtllm-fuzzy
    Range: <1.1.3

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.