Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Ubuntu 13.04 USN-1895-1 Critical: Libvirt Denial Of Service

Calendar Jul 02, 2013 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service ubuntu network attack libvirt
libvirt could be made to crash if it received specially crafted network traffic. 
=========================================================================Ubuntu Security Notice USN-1895-1
July 02, 2013

libvirt vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04

Summary:

libvirt could be made to crash if it received specially crafted network
traffic.

Software Description:
- libvirt: Libvirt virtualization toolkit

Details:

It was discovered that libvirt incorrectly handled certain storage pool
requests. A remote attacker could use this issue to cause libvirt to
consume resources, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 13.04:
  libvirt0                        1.0.2-0ubuntu11.13.04.2

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-1895-1
  CVE-2013-1962

Package Information:
  https://launchpad.net/ubuntu/+source/libvirt/1.0.2-0ubuntu11.13.04.2

Ubuntu 13.04 USN-1895-1 Critical: Libvirt Denial Of Service

ubuntu
Calendar Grey July 2, 2013
Dist Ubuntu Esm H88
Debian Security Advisory DSA-1234-1 addresses a vulnerable version of the curl package that may allow remote attackers to execute arbitrary code through specially crafted HTTP requests.
libvirt could be made to crash if it received specially crafted network traffic.

Summary

Topics%20covered

Topics Covered

security advisory denial of service ubuntu network attack libvirt

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 13.04: libvirt0 1.0.2-0ubuntu11.13.04.2 After a standard system update you need to reboot your computer to make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-1895-1

CVE-2013-1962

Severity
critical
Lowest
Low
Medium
High
Critical

July 02, 2013

Topics%20covered

Topics Covered

security advisory denial of service ubuntu network attack libvirt

Package Information

https://launchpad.net/ubuntu/+source/libvirt/1.0.2-0ubuntu11.13.04.2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here