CVE-2021-4147

A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition.

Published: Mar 25, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-4147
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4.9
AV:L/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-667

Affected Software
References

Software	From	Fixed in
redhat / libvirt	-	2.33.0
fedoraproject / fedora	35	35.x

https://bugzilla.redhat.com/show_bug.cgi?id=2034195
https://lists.debian.org/debian-lts-announce/2024/04/msg00000.html
https://security.netapp.com/advisory/ntap-20220513-0004/

Vulnerability Database

289,599

CVE-2021-4147