MGASA-2015-0002

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2014-8136

Published: 05 Jan 2015, 16:30

Last modified:16 Apr 2026, 06:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

05 Jan 2015, 16:30

Published

Vulnerability first disclosed

16 Apr 2026, 06:24

Last Modified

Vulnerability information updated

Description

Updated libvirt packages fix CVE-2014-8136 Updated libvirt packages fix security vulnerability: The qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors (CVE-2014-8136).

Affected Systems

mageia•libvirt
< 1.2.1-1.4.mga4

References (3)

https://advisories.mageia.org/MGASA-2015-0002.html
https://bugs.mageia.org/show_bug.cgi?id=14887
http://www.gentoo.org/security/en/glsa/glsa-201412-36.xml