CVE-2024-8235

Name	CVE-2024-8235
Description	A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs	1080218

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
libvirt (PTS)	jessie, jessie (lts)	1.2.9-9+deb8u8	fixed
	stretch (security)	3.0.0-4+deb9u5	fixed
	stretch (lts), stretch	3.0.0-4+deb9u6	fixed
	buster (security), buster, buster (lts)	5.0.0-4+deb10u2	fixed
	bullseye	7.0.0-3+deb11u3	fixed
	bookworm	9.0.0-4+deb12u1	fixed
	trixie	10.6.0-1	vulnerable
	sid	10.7.0-2	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Debian Bugs
libvirt	source	jessie	(not affected)
libvirt	source	stretch	(not affected)
libvirt	source	buster	(not affected)
libvirt	source	bullseye	(not affected)
libvirt	source	bookworm	(not affected)
libvirt	source	(unstable)	10.7.0-1	1080218

Notes

[bookworm] - libvirt <not-affected> (Vulnerable code not present)
[bullseye] - libvirt <not-affected> (Vulnerable code not present)
Introduced by: https://gitlab.com/libvirt/libvirt/-/commit/bc596f275129bc11b2c4bcf737d380c9e8aeb72d (v10.4.0-rc1)
Fixed by: https://gitlab.com/libvirt/libvirt/-/commit/8dfb12cb77996519901b8d52c754ab564ebd10e8 (v10.7.0-rc2)
[buster] - libvirt <not-affected> (Vulnerable code not present)
[stretch] - libvirt <not-affected> (Vulnerable code not present)
[jessie] - libvirt <not-affected> (Vulnerable code not present)