How severe is CVE-2023-3750?

CVE-2023-3750 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-3750

Name: enterprise_linux
Author: redhat

6.5MEDIUM

A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same ob

Publicado: 7/24/2023Atualizado: 11/21/2024

Descrição

A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same object from another thread. This issue could allow clients connecting to the read-only socket to crash the libvirt daemon.

Análise IADesenvolvido por IA

Produtos Afetados

redhatlibvirt

redhatenterprise_linux

9.0

Referências

https://access.redhat.com/errata/RHSA-2023:6409
https://access.redhat.com/security/cve/CVE-2023-3750
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2222210
Issue TrackingVendor Advisory
https://access.redhat.com/errata/RHSA-2023:6409
https://access.redhat.com/security/cve/CVE-2023-3750
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2222210
Issue TrackingVendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EVK6JKP36CHE7YAFDJNPNLTW4OWJJ7TQ/