14 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-1000256
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvirt version 2.3.0 and later is vulnerable to a bad default configuration of verify-peer=no passed to QEMU by libvirt resulting in a failure to validate...
Mageia: Security Advisory (MGASA-2018-0153)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-1000256 affecting package libvirt 6.1.0-1
CVE-2017-1000256 affecting package libvirt 6.1.0-1. A patched version of the package is available...
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2019-1394)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.1.0 : libvirt (EulerOS-SA-2019-1456)
According to the versions of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to...
Fedora Update for libvirt FEDORA-2018-2b053454a4
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for libvirt FEDORA-2017-b16cdbdc34
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-1000256
CVE-2017-1000256 affects libvirt 2.3.0 and later. The issue arises from a default TLS configuration where verify-peer=no is passed to QEMU by libvirt, causing failure to validate SSL/TLS certificates by default. Several advisories indicate TLS client/server certificate verification could be disab...
CVE-2017-1000256
libvirt version 2.3.0 and later is vulnerable to a bad default configuration of "verify-peer=no" passed to QEMU by libvirt resulting in a failure to validate SSL/TLS certificates by default...
Security fix for the ALT Linux 8 package libvirt version 3.8.0-alt1
Oct. 30, 2017 Alexey Shabalin 3.8.0-alt1 - 3.8.0 - fixed CVE-2017-1000256...
openSUSE Security Update : libvirt (openSUSE-2017-1213)
This update for libvirt fixes the following issues : Security issue fixed : - CVE-2017-1000256: Ensure TLS clients always verify the server certificate in the serial/TLS support. bsc1062563 Non security issue fixed : - libvirt-daemon-qemu requires libvirt-daemon-driver-storage bsc1062620 This...
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2017:2850-1)
This update for libvirt fixes the following issues: Security issue fixed : - CVE-2017-1000256: Ensure TLS clients always verify the server certificate in the serial/TLS support. bsc1062563 Non security issue fixed : - libvirt-daemon-qemu requires libvirt-daemon-driver-storage bsc1062620 Note that...
[SECURITY] [DSA 4003-1] libvirt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4003-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 19, 2017 https://www.debian.org/security/faq -...
CVE-2017-1000256
libvirt version 2.3.0 and later is vulnerable to a bad default configuration of "verify-peer=no" passed to QEMU by libvirt resulting in a failure to validate SSL/TLS certificates by default...