CVE-2019-3840

Summary

A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash libvirtd and cause a denial of service.

Affected Software

VendorProductVersion RangeStatus
The libvirt Projectlibvirt5.0.0affected

Weaknesses

  • CWE-476: CWE-476

ADP Enrichment

CVE Program Container

Additional References

References