CVE-2013-4153
Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom –guest" command.
Date published : 2013-09-30
http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=dfc692350a04a70b4ca65667c30869b3bfdaf034