Medium severity6.5NVD Advisory· Published Apr 14, 2016· Updated May 6, 2026
CVE-2015-5247
CVE-2015-5247
Description
The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows remote authenticated users with a read-write connection to cause a denial of service (libvirtd crash) by triggering a failed unlink after creating a volume on a root_squash NFS pool.
Affected products
10cpe:2.3:a:redhat:libvirt:1.2.14:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:libvirt:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:libvirt:1.2.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:libvirt:1.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:libvirt:1.2.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:libvirt:1.2.18:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:libvirt:1.2.19:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- security.libvirt.org/2015/0003.htmlnvdVendor Advisory
- www.ubuntu.com/usn/USN-2867-1nvd
News mentions
0No linked articles in our index yet.