SB2014020405 - Race condition in libvirt (Alpine package)

Description

This security bulletin contains information about 1 vulnerability.

1) Race condition (CVE-ID: CVE-2013-6458)

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CVSSv4: CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a denial of service (libvirtd crash) via the virDomainDetachDeviceFlags command.

Remediation

Install update from vendor's website.

References

• https://git.alpinelinux.org/aports/commit/?id=89b40d15ab00cb65885e7f5e1f7336ea20ab80de
• https://git.alpinelinux.org/aports/commit/?id=b5fc277743e9099821e70da285fdb56d5c9d5e79