It has been found that calling VirDomainGetVcpus with bogus parameters can lead to integer overflow and subsequent heap corruption. A remote attacker could use this flaw to crash libvirtd (DoS). Upstream patch: https://www.redhat.com/archives/libvir-list/2011-June/msg01278.html
Created libvirt tracking bugs for this issue Affects: fedora-all [bug 717204]
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2011:1019 https://rhn.redhat.com/errata/RHSA-2011-1019.html
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2011:1197 https://rhn.redhat.com/errata/RHSA-2011-1197.html
Any reason this bug is still marked NEW when all dependent bugs have been closed?
(In reply to comment #8) > Any reason this bug is still marked NEW when all dependent bugs have been > closed? No reason, we can close this bug now. Thanks Eric.