The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.
{ "binaries": [ { "binary_version": "1.2.2-0ubuntu13.1.16", "binary_name": "libvirt-bin" }, { "binary_version": "1.2.2-0ubuntu13.1.16", "binary_name": "libvirt-dev" }, { "binary_version": "1.2.2-0ubuntu13.1.16", "binary_name": "libvirt0" } ], "availability": "No subscription required" }