Package: libvirt Tags: security Hi, "It has been found that several libvirt API calls (virNodeDeviceDettach, virNodeDeviceReset, virDomainRevertToSnapshot, virDomainSnapshotDelete) did not honour read-only connection. Remote attacker could use this flaw to crash the host server (DoS)."
Please use CVE-2011-1146 as a reference to this problem. Can you confirm if this affects to oldstable or stable? More info at https://bugzilla.redhat.com/show_bug.cgi?id=683650 Thanks, luciano -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org