DEBIAN-CVE-2011-1146
Advisory lineage Upstream: 1 Downstream: 1
Upstream
Downstream
Published: 15 Mar 2011, 17:55
Last modified:28 Apr 2026, 20:06
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Mar 2011, 17:55
Published
Vulnerability first disclosed
28 Apr 2026, 20:06
Last Modified
Vulnerability information updated
Description
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.
Affected Systems
- debian•libvirt
< 0.8.8-3 | < 0.8.8-3 | < 0.8.8-3 | < 0.8.8-3