Lucene search
Gentoo FoundationGLSA-201412-36HistoryDec 24, 2014 - 12:00 a.m.
libvirt: Denial of service
2014-12-2400:00:00
Gentoo Foundation
security.gentoo.org
13
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
47.6%
Background
libvirt is a C toolkit for manipulating virtual machines.
Description
Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details.
Impact
A context-dependent attacker may be able to cause Denial of Service.
Workaround
There is no known workaround at this time.
Resolution
All libvirt users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/libvirt-1.2.10-r3"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | app-emulation/libvirt | < 1.2.10-r3 | UNKNOWN |
Related
openvas
openvas
Gentoo Security Advisory GLSA 201412-36
2015-09-29 00:00:00
Fedora Update for libvirt FEDORA-2015-1892
2015-02-15 00:00:00
Mageia: Security Advisory (MGASA-2015-0002)
2022-01-28 00:00:00
nessus
nessus
openSUSE Security Update : libvirt (openSUSE-SU-2015:0008-1)
2015-01-05 00:00:00
GLSA-201412-36 : libvirt: Denial of Service
2014-12-26 00:00:00
Fedora 21 : libvirt-1.2.9.2-1.fc21 (2015-1892)
2015-02-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libvirt version 1.2.11-alt1
2014-12-18 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: libvirt-1.2.9.2-1.fc21
2015-02-15 03:07:07
[SECURITY] Fedora 20 Update: libvirt-1.1.3.9-1.fc20
2015-02-17 08:10:35
debiancve
debiancve
prion
prion
Null pointer dereference
2014-12-19 15:59:00
Design/Logic Flaw
2015-01-06 15:59:00
Design/Logic Flaw
2014-12-19 15:59:00
ubuntucve
ubuntucve
f5
f5
K17218 : Libvirt vulnerability CVE-2014-8135
2015-09-03 00:00:00
SOL17218 - Libvirt vulnerability CVE-2014-8135
2015-09-03 00:00:00
cve
cve
mageia
mageia
Updated libvirt packages fix CVE-2014-8136
2015-01-05 19:30:30
securityvulns
securityvulns
libvirt / qemu DoS
2015-01-18 00:00:00
[ MDVSA-2015:023 ] libvirt
2015-01-18 00:00:00
oraclelinux
oraclelinux
libvirt security, bug fix, and enhancement update
2015-03-11 00:00:00
centos
centos
libvirt security update
2015-03-17 13:28:58
redhat
redhat
(RHSA-2015:0323) Low: libvirt security, bug fix, and enhancement update
2015-03-05 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2016-01-12 00:00:00
osv
osv
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
47.6%
Related for GLSA-201412-36