38 matches found
MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2023-6219:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6219:01 advisory. libvirt: Memory leak in virPCIVirtualFunctionList cleanup CVE-2023-2700 Tenable has extracted the preceding description block directly from the MiracleLinux...
MiracleLinux 9 : libvirt-9.0.0-10.2.el9 (AXSA:2023-6108:08)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6108:08 advisory. libvirt: Memory leak in virPCIVirtualFunctionList cleanup CVE-2023-2700 Tenable has extracted the preceding description block directly from the MiracleLinux...
TencentOS Server 4: libvirt (TSSA-2024:0363)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0363 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2023-2700
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak cause...
GLSA-202412-16 : libvirt: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202412-16 libvirt: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly...
libvirt-10.9.0-3.1 on GA media (moderate)
libvirt-10.9.0-3.1 on GA media Announcement ID: openSUSE-SU-2024:14490-1 Rating: moderate Cross-References: CVE-2020-12430 CVE-2023-2700 CVSS scores: CVE-2020-12430 SUSE : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2023-2700 SUSE : 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H Affected...
Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12792)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12792 advisory. - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves:...
virt:kvm_utils3 security update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 libguestfs-winsupport libiscsi libnbd 1.6.0-6.el8 - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 1.6.0-5.el8 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or wri...
Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20230302.100173)
The version of AHV installed on the remote host is prior to 20230302.102005. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-20230302.100173 advisory. - A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in...
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12604)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12604 advisory. - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves: rhbz2045718 - Contains fix for NBD Protocol Downgrade Attack CVE-2019-14842. -...
CBL Mariner 2.0 Security Update: libvirt (CVE-2023-2700)
The version of libvirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2700 advisory. - A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI...
CVE-2023-2700 affecting package libvirt for versions less than 7.10.0-5
CVE-2023-2700 affecting package libvirt for versions less than 7.10.0-5. A patched version of the package is available...
Fedora 38 : libvirt (2024-2d35e47af3)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-2d35e47af3 advisory. Fix CVE-2023-3750 and CVE-2023-2700 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Ness...
kvm_utils2 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt 7.10.0-3.el8 - virpci: Resolve leak in virPCIVirtualFunctionList cleanup Tim Shearer Orabug: 35395469 CVE-2023-2700 libvirt-dbus libvirt-python 7.10.0-3.el8 - Update version number to match libvirt 7.10.0-3 Karl Heubaum nbdkit...
Oracle Linux 8 : kvm_utils2 (ELSA-2023-12924)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12924 advisory. - virpci: Resolve leak in virPCIVirtualFunctionList cleanup Tim Shearer Orabug: 35395469 CVE-2023-2700 libvirt-dbus libvirt-python Tenable has extracted the...
BELL-CVE-2023-2700
Bulletin has no description...
Oracle Linux 8 : kvm_utils3 (ELSA-2023-12855)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12855 advisory. - storage: Fix returning of locked objects from 'virStoragePoolObjListSearch' Peter Krempa Orabug: 35644221 CVE-2023-3750 - virpci: Resolve leak in...
RLSA-2023:3715 Moderate: libvirt security update
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: libvirt: Memory leak in virPCIVirtualFunctionList cleanup...
Rocky Linux 9 : libvirt (RLSA-2023:3715)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:3715 advisory. - A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caus...