[Pkg-libvirt-maintainers] Bug#1070330: Bug#1070330: libvirt: CVE-2024-4418: stack use-after-free in virNetClientIOEventLoop()
Salvatore Bonaccorso
carnil at debian.org
Fri May 3 21:09:34 BST 2024
Hi Guido,
On Fri, May 03, 2024 at 09:47:30PM +0200, Guido Günther wrote:
> control: -1 +pending
>
> Hi,
> On Fri, May 03, 2024 at 09:10:23PM +0200, Salvatore Bonaccorso wrote:
> > Source: libvirt
> > Version: 10.2.0-1
> > Severity: important
> > Tags: security upstream
> > X-Debbugs-Cc: carnil at debian.org, Debian Security Team <team at security.debian.org>
> >
> > Hi,
> >
> > The following vulnerability was published for libvirt.
> >
> > CVE-2024-4418[0]:
> > | stack use-after-free in virNetClientIOEventLoop()
> >
> >
> > If you fix the vulnerability please also make sure to include the
> > CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
>
> See https://salsa.debian.org/libvirt-team/libvirt/-/merge_requests/220
Ah, very nice. Thanks!
Regards,
Salvatore
More information about the Pkg-libvirt-maintainers
mailing list