Double Free Vulnerability in libvirt's virConnectListAllInterfaces Method

Double Free Vulnerability in libvirt's virConnectListAllInterfaces Method

CVE-2013-2218 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Double free vulnerability in the virConnectListAllInterfaces method in interface/interface_backend_netcf.c in libvirt 1.0.6 allows remote attackers to cause a denial of service (libvirtd crash) via a filtering flag that causes an interface to be skipped, as demonstrated by the "virsh iface-list --inactive" command.

Learn more about our Web Application Penetration Testing UK.