Lucene search
Gentoo FoundationMGASA-2020-0473HistoryDec 29, 2020 - 2:57 p.m.
Updated libvirt packages fix security vulnerability
2020-12-2914:57:17
Gentoo Foundation
advisories.mageia.org
20
0.0004 Low
EPSS
Percentile
13.6%
A double free memory issue was found to occur in the libvirt API responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with limited ACL permissions could use this flaw to crash the libvirt daemon, resulting in a denial of service, or potentially escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability (CVE-2020-25637).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | libvirt | <Â 5.5.0-1.3 | libvirt-5.5.0-1.3.mga7 |
Related
githubexploit
githubexploit
Exploit for Double Free in Redhat Libvirt
2020-12-04 11:01:29
nessus
nessus
Amazon Linux 2 : libvirt (ALAS-2020-1569)
2020-12-09 00:00:00
Debian DLA-2395-1 : libvirt security update
2020-10-05 00:00:00
EulerOS Virtualization for ARM 64 3.0.2.0 : libvirt (EulerOS-SA-2021-1045)
2021-01-05 00:00:00
redos
redos
ROS-20240423-11
2024-04-23 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2021-1526)
2021-03-05 00:00:00
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2021-1045)
2021-01-08 00:00:00
CentOS: Security Advisory for libvirt (CESA-2020:5040)
2020-11-19 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1899
2021-07-02 17:20:52
debian
debian
[SECURITY] [DLA 2395-1] libvirt security update
2020-10-02 15:06:51
[SECURITY] [DLA 3778-1] libvirt security update
2024-04-01 12:19:36
veracode
veracode
Privilege Escalation
2020-10-08 14:02:24
amazon
amazon
Medium: libvirt
2020-12-08 21:30:00
cbl_mariner
cbl_mariner
CVE-2020-25637 affecting package libvirt 6.1.0-6
2020-11-30 19:30:44
CVE-2020-25637 affecting package libvirt for versions less than 6.1.0-4
2022-04-09 06:51:57
redhatcve
redhatcve
CVE-2020-25637
2020-09-30 16:19:28
cve
cve
CVE-2020-25637
2020-10-06 14:15:00
alpinelinux
alpinelinux
CVE-2020-25637
2020-10-06 14:15:00
debiancve
debiancve
CVE-2020-25637
2020-10-06 14:15:00
archlinux
archlinux
[ASA-202101-42] libvirt: arbitrary code execution
2021-01-29 00:00:00
redhat
redhat
oraclelinux
oraclelinux
libvirt security and bug fix update
2020-11-11 00:00:00
libvirt security update
2020-12-01 00:00:00
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
2021-05-25 00:00:00
osv
osv
libvirt - security update
2020-10-02 00:00:00
libvirt vulnerabilities
2022-05-02 17:01:25
prion
prion
Double free
2020-10-06 14:15:00
centos
centos
libvirt security update
2020-11-18 17:32:39
cvelist
cvelist
CVE-2020-25637
2020-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2020-25637
2020-10-06 00:00:00
suse
suse
Security update for libvirt (important)
2020-10-30 00:00:00
Security update for libvirt (important)
2020-10-30 00:00:00
gentoo
gentoo
libvirt: Multiple Vulnerabilities
2022-10-16 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2022-05-02 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2021-05-18 06:02:26
almalinux
almalinux
photon
photon
Critical Photon OS Security Update - PHSA-2021-0007
2021-04-07 00:00:00
Critical Photon OS Security Update - PHSA-2021-4.0-0007
2021-04-03 00:00:00