The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libvirt-doc": "1.2.2-0ubuntu13.1.16", "libvirt0-dbgsym": "1.2.2-0ubuntu13.1.16", "libvirt-dev-dbgsym": "1.2.2-0ubuntu13.1.16", "libvirt-dev": "1.2.2-0ubuntu13.1.16", "libvirt-bin-dbgsym": "1.2.2-0ubuntu13.1.16", "libvirt0": "1.2.2-0ubuntu13.1.16", "libvirt0-dbg": "1.2.2-0ubuntu13.1.16", "libvirt-bin": "1.2.2-0ubuntu13.1.16" } ] }