Updated libvirt packages fix multiple vulnerabilities

🗓️ 29 May 2014 07:01:13Reported by Gentoo FoundationType

Updated libvirt packages fix multiple vulnerabilities. LXC driver allows local users to delete or create arbitrary devices and cause denial of service

Reporter	Title	Published	Views	Family All 101
ALT Linux	Security fix for the ALT Linux 8 package libvirt version 1.2.2-alt1	5 Mar 201400:00	–	altlinux
BDU FSTEC	The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the CentOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
Tenable Nessus	CentOS 6 : libvirt (CESA-2014:0560)	29 May 201400:00	–	nessus
Tenable Nessus	CentOS 7 : libvirt (CESA-2014:0914)	23 Jul 201400:00	–	nessus
Tenable Nessus	Debian DSA-3038-1 : libvirt - security update	29 Sep 201400:00	–	nessus
Tenable Nessus	Fedora 20 : libvirt-1.1.3.4-1.fc20 (2014-2864)	2 Mar 201400:00	–	nessus
Tenable Nessus	Fedora 20 : libvirt-1.1.3.5-2.fc20 (2014-6586)	26 May 201400:00	–	nessus
Tenable Nessus	GLSA-201412-04 : libvirt: Multiple vulnerabilities	9 Dec 201400:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : libvirt (MDVSA-2014:097)	19 May 201400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	3	any	libvirt	1.0.2-8.5	libvirt-1.0.2-8.5.noarch.rpm
Mageia	4	any	libvirt	1.2.1-1.1	libvirt-1.2.1-1.1.noarch.rpm

Source	Link
security	www.security.libvirt.org/2013/0018.html
security	www.security.libvirt.org/2014/0003.html
lists	www.lists.opensuse.org/opensuse-updates/2014-05/msg00048.html
mandriva	www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:097/
bugs	www.bugs.mageia.org/show_bug.cgi
bugs	www.bugs.mageia.org/show_bug.cgi

29 May 2014 07:01Current

7.2High risk

Vulners AI Score7.2

CVSS 25.8

EPSS0.0024