OESA-2021-1010 libvirt security update

🗓️ 04 Feb 2021 11:02:34Reported by GoogleType

osv🔗 osv.dev👁 1 Views

Libvirt security update fixes a file descriptor leak to QEMU from /dev/mapper/control that could enable privileged host access.

Reporter	Title	Published	Views	Family All 72
Tenable Nessus	Alibaba Cloud Linux 3 : 0119: virt:rhel and virt-devel:rhel (ALINUX3-SA-2022:0119)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2020:4676)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2020:4676)	1 Feb 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.1 : libvirt (EulerOS-SA-2021-1631)	10 Mar 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.0 : libvirt (EulerOS-SA-2021-1666)	11 Mar 202100:00	–	nessus
Tenable Nessus	GLSA-202101-22 : libvirt: Unintended access to /dev/mapper/control	26 Jan 202100:00	–	nessus
Tenable Nessus	GLSA-202210-06 : libvirt: Multiple Vulnerabilities	16 Oct 202200:00	–	nessus
Tenable Nessus	openSUSE Security Update : libvirt (openSUSE-2020-1455)	21 Sep 202000:00	–	nessus
Tenable Nessus	Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2020-4676)	7 Sep 202300:00	–	nessus
Tenable Nessus	Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2023-3822)	13 Jul 202300:00	–	nessus

Source	Link
openeuler	www.openeuler.org/en/security/safety-bulletin/detail.html
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-14339

03 Sep 2025 06:16Current

6.7Medium risk

Vulners AI Score6.7

CVSS 27.2

CVSS 3.18.8

EPSS0.00196