2 matches found
RHEL 8 : ovirt-engine (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ovirt-engine: When Wipe After Delete WAD and Enable Discard are both enabled for a VM disk, discarded data might no...
CVE-2018-1062
CVE-2018-1062 affects oVirt 4.1.x before 4.1.9. The vulnerability arises when both Enable Discard and Wipe After Delete are enabled for VM disks, potentially leaving data not fully zeroed after disk removal. If the same storage blocks are later allocated to a new disk attached to another VM, priv...