Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2019:2308
HistoryAug 06, 2019 - 8:23 a.m.

(RHSA-2019:2308) Low: libguestfs-winsupport security update

2019-08-0608:23:59
access.redhat.com
9

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

The libguestfs-winsupport package adds support for Windows guests to libguestfs, a set of tools and libraries allowing users to access and modify virtual machine (VM) disk images.

Security Fix(es):

  • ntfs-3g: heap-based buffer overflow leads to local root privilege escalation (CVE-2019-9755)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64libguestfs-winsupport< 7.2-3.el7libguestfs-winsupport-7.2-3.el7.x86_64.rpm

Related

openvas 10
veracode 1
altlinux 1
nessus 29
cve 1
amazon 1
debian 3
cbl_mariner 2
ubuntu 1
suse 4
fedora 3
gentoo 1
redhatcve 1
osv 5
prion 1
ubuntucve 1
debiancve 1
alpinelinux 1
centos 1
oraclelinux 2
rocky 1
redhat 1
almalinux 1
openvas
openvas
Debian LTS: Security Advisory for ntfs-3g (DLA-1724-1)
2019-03-24 00:00:00
openSUSE: Security Advisory for ntfs-3g_ntfsprogs (openSUSE-SU-2019:1313-1)
2019-05-03 00:00:00
Debian Security Advisory DSA 4413-1 (ntfs-3g - security update)
2019-03-20 00:00:00
veracode
veracode
Buffer Overflows And Privilege Escalation
2019-08-08 00:08:45
altlinux
altlinux
Security fix for the ALT Linux 9 package ntfs-3g version 2:2017.3.23-alt3
2020-10-23 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : libguestfs-winsupport (EulerOS-SA-2019-2253)
2019-11-08 00:00:00
Debian DLA-1724-1 : ntfs-3g security update
2019-03-25 00:00:00
EulerOS 2.0 SP2 : libguestfs-winsupport (EulerOS-SA-2020-1622)
2020-06-17 00:00:00
cve
cve
CVE-2019-9755
2019-06-05 15:29:00
amazon
amazon
Low: libguestfs-winsupport
2020-10-22 18:11:00
debian
debian
[SECURITY] [DLA 1724-1] ntfs-3g security update
2019-03-22 15:01:37
[SECURITY] [DSA 4413-1] ntfs-3g security update
2019-03-21 20:29:55
[SECURITY] [DSA 4413-1] ntfs-3g security update
2019-03-21 20:29:55
cbl_mariner
cbl_mariner
CVE-2019-9755 affecting package ntfs-3g 2017.3.23-15
2022-04-09 15:39:56
CVE-2019-9755 affecting package ntfs-3g 2017.3.23-16
2022-04-09 15:39:56
ubuntu
ubuntu
NTFS-3G vulnerability
2019-03-21 00:00:00
suse
suse
Security update for ntfs-3g_ntfsprogs (moderate)
2019-05-02 00:00:00
Security update for ntfs-3g_ntfsprogs (moderate)
2019-05-02 00:00:00
Security update for ntfs-3g_ntfsprogs (important)
2021-09-07 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: ntfs-3g-2017.3.23-11.fc30
2019-04-02 00:03:57
[SECURITY] Fedora 29 Update: ntfs-3g-2017.3.23-11.fc29
2019-04-04 03:14:56
[SECURITY] Fedora 28 Update: ntfs-3g-2017.3.23-11.fc28
2019-04-05 01:56:54
gentoo
gentoo
NTFS-3G: Remote code execution, possible privilege escalation
2020-07-27 00:00:00
redhatcve
redhatcve
CVE-2019-9755
2019-03-28 06:19:51
osv
osv
ntfs-3g - security update
2019-03-22 00:00:00
ntfs-3g - security update
2019-03-21 00:00:00
CVE-2019-9755
2019-06-05 15:29:03
prion
prion
Heap overflow
2019-06-05 15:29:00
ubuntucve
ubuntucve
CVE-2019-9755
2019-03-21 00:00:00
debiancve
debiancve
CVE-2019-9755
2019-06-05 15:29:00
alpinelinux
alpinelinux
CVE-2019-9755
2019-06-05 15:29:00
centos
centos
libguestfs security update
2019-08-30 03:16:00
oraclelinux
oraclelinux
libguestfs-winsupport security update
2019-08-13 00:00:00
virt:ol security, bug fix, and enhancement update
2019-11-14 00:00:00
rocky
rocky
virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34
redhat
redhat
(RHSA-2019:3345) Low: virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34
almalinux
almalinux
Low: virt:rhel security, bug fix, and enhancement update
2019-11-05 17:33:34

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for RHSA-2019:2308
openvas10veracode1altlinux1nessus29cve1amazon1debian3cbl_mariner2ubuntu1suse4fedora3gentoo1redhatcve1osv5prion1ubuntucve1debiancve1alpinelinux1centos1oraclelinux2rocky1redhat1almalinux1