VDB

CISA-2024-2494

CISA-2024-2494 PUBLISHED CVSS 6.2 MEDIUM

Reported by redhat · Published March 21, 2024

A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.

Risk Scores

CVSS 3.1
6.2
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
9.0.0
Red HatRed Hat Enterprise Linux 88100020240409073027.489197e6
Red HatRed Hat Enterprise Linux 88100020240409073027.489197e6
Red HatRed Hat Enterprise Linux 90:10.0.0-6.2.el9_4
Red HatRed Hat Enterprise Linux 6
Red HatRed Hat Enterprise Linux 7
Red HatRed Hat Enterprise Linux 8 Advanced Virtualization
9.0.0, 9.0.0
Red HatRed Hat Enterprise Linux 8 Advanced Virtualization
Red HatRed Hat Enterprise Linux 88100020240409073027.489197e6, 8100020240409073027.489197e6
Red HatRed Hat Enterprise Linux 6
Red HatRed Hat Enterprise Linux 88100020240409073027.489197e6, 8100020240409073027.489197e6
Red HatRed Hat Enterprise Linux 7
Red HatRed Hat Enterprise Linux 90:10.0.0-6.2.el9_4, 0:10.0.0-6.2.el9_4

Timeline

  • Mar 21, 2024 CVE Published
  • Nov 8, 2025 CVE Updated
  • Apr 26, 2026 Distribution Patch
  • Apr 26, 2026 Distribution Patch
  • Apr 26, 2026 Security Advisory
  • Apr 26, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›