Secunia
Login
|
|
CVE Reference: CVE-2009-0036 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-0036 |
|
|
Description: Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to use of uninitialized memory in a validation check. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA34397 REDHAT http://www.redhat.com/support/errata/RHSA-2009-0382.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10127 MLIST http://openwall.com/lists/oss-security/2009/02/10/8 CONFIRM http://git.et.redhat.com/?p=libvirt.git;a=commitdiff;h=2bb0657e28 BID 33724 |
|
| Return to the previous page. |
