{"id":"MGASA-2015-0002","summary":"Updated libvirt packages fix CVE-2014-8136","details":"Updated libvirt packages fix security vulnerability:\n\nThe qemuDomainMigratePerform and qemuDomainMigrateFinish2 functions in\nqemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check\nfails, which allow local users to cause a denial of service via unspecified\nvectors (CVE-2014-8136).\n","modified":"2026-04-16T00:10:54.952948293Z","published":"2015-01-05T16:30:30Z","upstream":["CVE-2014-8136"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0002.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=14887"},{"type":"WEB","url":"http://www.gentoo.org/security/en/glsa/glsa-201412-36.xml"}],"affected":[{"package":{"name":"libvirt","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/libvirt?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.1-1.4.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0002.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}