It has been found that sending crafted RPC command with nparams set to 0 can lead to libvirtd accessing random memory, possibly leading to crash. A remote attacker could use this flaw to crash libvirtd (DoS).
Upstream proposed fix:
The versions of libvirt as shipped with Red Hat Enterprise Linux 5 are not affected.
Future libvirt updates for Red Hat Enterprise Linux 6 may address this flaw.
Created libvirt tracking bugs for this issue
Affects: fedora-all [bug 844745]
libvirt-0.9.6.2-1.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in following products:
Red Hat Enterprise Linux 6
Via RHSA-2012:1202 https://rhn.redhat.com/errata/RHSA-2012-1202.html
libvirt-0.9.11.5-3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.