This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS9_QEMU-KVM-6_1_0-3.NASLCentOS 9 : qemu-kvm-6.1.0-3.el9
7.4 High
AI Score
Confidence
High
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the qemu-kvm-6.1.0-3.el9 build changelog.
-
use-after-free during packet reassembly [rhel-av-8]) (CVE-2019-15890)
-
A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generation process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all programs running on QEMU. (CVE-2020-10702)
-
A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of the QEMU version >= v5.0. Virtio-fs is meant to share a host file system directory with a guest via virtio-fs device. If the guest opens the maximum number of file descriptors under the shared directory, a denial of service may occur. This flaw allows a guest user/process to cause this denial of service on the host. (CVE-2020-10717)
-
An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator.
This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory, resulting in possible information disclosure. This flaw affects versions of libslirp before 4.3.1. (CVE-2020-10756) -
An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service. (CVE-2020-10761)
-
out-of-bounds r/w access issue while processing usb packets [rhel-av-8.3.0]) (CVE-2020-14364)
-
OOB heap access via an unexpected response of iSCSI Server [rhel-av-8.2.0]) (CVE-2020-1711)
-
A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service. (CVE-2020-1983)
-
A flaw was found in the memory management API of QEMU during the initialization of a memory region cache.
This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host, resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. (CVE-2020-27821) -
A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices. (CVE-2020-35517)
-
OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-av-8.2.0]) (CVE-2020-7039)
-
potential OOB access due to unsafe snprintf() usages [rhel-av-8.2.0]) (CVE-2020-8608)
-
An out-of-bounds heap buffer access issue was found in the ARM Generic Interrupt Controller emulator of QEMU up to and including qemu 4.2.0on aarch64 platform. The issue occurs because while writing an interrupt ID to the controller memory area, it is not masked to be 4 bits wide. It may lead to the said issue while updating controller state fields and their subsequent processing. A privileged guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario. (CVE-2021-20221)
-
A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU. The new ‘xattrmap’ option may cause the ‘security.capability’ xattr in the guest to not drop on file write, potentially leading to a modified, privileged executable in the guest. In rare circumstances, this flaw could be used by a malicious user to elevate their privileges within the guest. (CVE-2021-20263)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# the CentOS Stream Build Service.
##
include('compat.inc');
if (description)
{
script_id(191255);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/26");
script_cve_id(
"CVE-2019-15890",
"CVE-2020-1711",
"CVE-2020-1983",
"CVE-2020-7039",
"CVE-2020-8608",
"CVE-2020-10702",
"CVE-2020-10717",
"CVE-2020-10756",
"CVE-2020-10761",
"CVE-2020-14364",
"CVE-2020-27821",
"CVE-2020-35517",
"CVE-2021-20221",
"CVE-2021-20263"
);
script_name(english:"CentOS 9 : qemu-kvm-6.1.0-3.el9");
script_set_attribute(attribute:"synopsis", value:
"The remote CentOS host is missing one or more security updates for qemu-guest-agent.");
script_set_attribute(attribute:"description", value:
"The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the
qemu-kvm-6.1.0-3.el9 build changelog.
- use-after-free during packet reassembly [rhel-av-8]) (CVE-2019-15890)
- A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM
introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generation
process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could
obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all
programs running on QEMU. (CVE-2020-10702)
- A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of
the QEMU version >= v5.0. Virtio-fs is meant to share a host file system directory with a guest via
virtio-fs device. If the guest opens the maximum number of file descriptors under the shared directory, a
denial of service may occur. This flaw allows a guest user/process to cause this denial of service on the
host. (CVE-2020-10717)
- An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator.
This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo request, also known
as ping. This flaw allows a malicious guest to leak the contents of the host memory, resulting in possible
information disclosure. This flaw affects versions of libslirp before 4.3.1. (CVE-2020-10756)
- An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before
QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary
of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server
resulting in a denial of service. (CVE-2020-10761)
- out-of-bounds r/w access issue while processing usb packets [rhel-av-8.3.0]) (CVE-2020-14364)
- OOB heap access via an unexpected response of iSCSI Server [rhel-av-8.2.0]) (CVE-2020-1711)
- A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows
crafted packets to cause a denial of service. (CVE-2020-1983)
- A flaw was found in the memory management API of QEMU during the initialization of a memory region cache.
This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO
operations. A guest user may abuse this flaw to crash the QEMU process on the host, resulting in a denial
of service. This flaw affects QEMU versions prior to 5.2.0. (CVE-2020-27821)
- A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system
daemon where a privileged guest user is able to create a device special file in the shared directory and
use it to r/w access host devices. (CVE-2020-35517)
- OOB buffer access while emulating tcp protocols in tcp_emu() [rhel-av-8.2.0]) (CVE-2020-7039)
- potential OOB access due to unsafe snprintf() usages [rhel-av-8.2.0]) (CVE-2020-8608)
- An out-of-bounds heap buffer access issue was found in the ARM Generic Interrupt Controller emulator of
QEMU up to and including qemu 4.2.0on aarch64 platform. The issue occurs because while writing an
interrupt ID to the controller memory area, it is not masked to be 4 bits wide. It may lead to the said
issue while updating controller state fields and their subsequent processing. A privileged guest user may
use this flaw to crash the QEMU process on the host resulting in DoS scenario. (CVE-2021-20221)
- A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU. The new 'xattrmap' option
may cause the 'security.capability' xattr in the guest to not drop on file write, potentially leading to a
modified, privileged executable in the guest. In rare circumstances, this flaw could be used by a
malicious user to elevate their privileges within the guest. (CVE-2021-20263)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://kojihub.stream.centos.org/koji/buildinfo?buildID=14396");
script_set_attribute(attribute:"solution", value:
"Update the CentOS 9 Stream qemu-guest-agent package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-8608");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-35517");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/09/06");
script_set_attribute(attribute:"patch_publication_date", value:"2021/09/24");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/02/29");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:centos:centos:9");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-guest-agent");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-img");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-audio-pa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-block-curl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-block-rbd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-block-ssh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-hw-usbredir");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-tests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-kvm-ui-opengl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-pr-helper");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:qemu-virtiofsd");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CentOS Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/CentOS/release');
if (isnull(os_release) || 'CentOS' >!< os_release) audit(AUDIT_OS_NOT, 'CentOS');
var os_ver = pregmatch(pattern: "CentOS(?: Stream)?(?: Linux)? release ([0-9]+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'CentOS');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '9')) audit(AUDIT_OS_NOT, 'CentOS 9.x', 'CentOS ' + os_ver);
if (!get_kb_item('Host/CentOS/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'CentOS', cpu);
var pkgs = [
{'reference':'qemu-guest-agent-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-guest-agent-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-guest-agent-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-img-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-img-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-img-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-audio-pa-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-audio-pa-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-audio-pa-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-curl-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-curl-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-curl-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-rbd-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-rbd-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-rbd-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-ssh-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-ssh-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-block-ssh-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-common-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-common-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-common-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-core-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-core-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-core-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-docs-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-docs-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-docs-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-hw-usbredir-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tests-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tests-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tests-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tools-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tools-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-tools-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-kvm-ui-opengl-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-pr-helper-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-pr-helper-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-pr-helper-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-virtiofsd-6.1.0-3.el9', 'cpu':'aarch64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-virtiofsd-6.1.0-3.el9', 'cpu':'s390x', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'},
{'reference':'qemu-virtiofsd-6.1.0-3.el9', 'cpu':'x86_64', 'release':'9', 'rpm_spec_vers_cmp':TRUE, 'epoch':'17'}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'CentOS-' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && _release) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'qemu-guest-agent / qemu-img / qemu-kvm / qemu-kvm-audio-pa / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| centos | centos | 9 | cpe:/a:centos:centos:9 |
| centos | centos | qemu-guest-agent | p-cpe:/a:centos:centos:qemu-guest-agent |
| centos | centos | qemu-img | p-cpe:/a:centos:centos:qemu-img |
| centos | centos | qemu-kvm | p-cpe:/a:centos:centos:qemu-kvm |
| centos | centos | qemu-kvm-audio-pa | p-cpe:/a:centos:centos:qemu-kvm-audio-pa |
| centos | centos | qemu-kvm-block-curl | p-cpe:/a:centos:centos:qemu-kvm-block-curl |
| centos | centos | qemu-kvm-block-rbd | p-cpe:/a:centos:centos:qemu-kvm-block-rbd |
| centos | centos | qemu-kvm-block-ssh | p-cpe:/a:centos:centos:qemu-kvm-block-ssh |
| centos | centos | qemu-kvm-common | p-cpe:/a:centos:centos:qemu-kvm-common |
| centos | centos | qemu-kvm-core | p-cpe:/a:centos:centos:qemu-kvm-core |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10702
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10717
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10761
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35517
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20263
kojihub.stream.centos.org/koji/buildinfo?buildID=14396
Related
