VDB
DEBIAN-CVE-2013-6458
DEBIAN-CVE-2013-6458
PUBLISHED
CVSS 8.199999809265137 HIGH
Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.
Risk Scores
CVSS 4.0
8.199999809265137
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | libvirt | 0, 0, 0 |
| Debian:13 | libvirt | 0, 0, 0 |
| Debian:12 | libvirt | 0, 0, 0 |
| Debian:11 | libvirt | 0, 0, 0 |
Timeline
- Jan 24, 2014 CVE Published
- Apr 28, 2026 CVE Updated