{"vulnerability": "rhsa-2024:2560", "sightings": [{"uuid": "2a67a9d1-e636-4a19-9699-b68fa6cec252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2024:2560", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11503", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1441\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending specially crafted data to the libvirt daemon, allowing an unprivileged client to perform a denial of service attack by causing the libvirt daemon to crash.\n\ud83d\udccf Published: 2024-03-11T13:37:54.724Z\n\ud83d\udccf Modified: 2025-04-11T22:03:17.504Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2024:2560\n2. https://access.redhat.com/security/cve/CVE-2024-1441\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2263841", "creation_timestamp": "2025-04-11T22:51:33.000000Z"}]}