Details

It was discovered that libvirt incorrectly handled symlinks when using the

LXC driver. An attacker could possibly use this issue to delete host

devices, create arbitrary nodes, and shutdown or power off the host.

(CVE-2013-6456)

Marian Krcmarik discovered that libvirt incorrectly handled seamless SPICE

migrations. An attacker could possibly use this issue to cause a denial of

service. (CVE-2013-7336)