CVE-2011-1486
libvirt - several
EPSS 0.86%
Description
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service (crash) by causing multiple threads to report errors at the same time.
How to fix CVE-2011-1486
To remediate CVE-2011-1486, upgrade the affected package to a fixed version below.
- Debian/libvirt—upgrade to 0.9.0-1 or later
- Debian/libvirt—upgrade to 0.8.3-5+squeeze2 or later
Is CVE-2011-1486 being exploited?
Low — EPSS is 0.9%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.9.0-1
- from 0, < 0.8.3-5+squeeze2