Lucene search
K

34 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-20485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - qemu/qemudriver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of...

5.7CVSS6.7AI score0.00813EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.80 views

Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...

9.8CVSS7.5AI score0.02363EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.153 views

Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12792)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12792 advisory. - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves:...

9.8CVSS7.6AI score0.02363EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2024/09/02 12:0 a.m.37 views

Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12604)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12604 advisory. - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves: rhbz2045718 - Contains fix for NBD Protocol Downgrade Attack CVE-2019-14842. -...

9.8CVSS7.7AI score0.02363EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.17 views

Oracle Linux 7 : libvirt (ELSA-2020-5674)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5674 advisory. - qemu: don't hold both jobs for suspend Jonathon Jongsma Orabug: 31073098 CVE-2019-20485 Tenable has extracted the preceding description block directly from th...

5.7CVSS7AI score0.00813EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.51 views

AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2020:4676)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4676 advisory. libvirt: leak of /dev/mapper/control into QEMU guests CVE-2020-14339 QEMU: Slirp: use-after-free during packet reassembly CVE-2019-15890 libvirt: Potentia...

8.8CVSS7.1AI score0.04027EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.61 views

CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2020:4676)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4676 advisory. - QEMU: Slirp: use-after-free during packet reassembly CVE-2019-15890 - libvirt: Potential DoS by holding a monitor job while querying QEMU guest-agent...

8.8CVSS7AI score0.04027EPSS
Exploits2References7
Oracle linux
Oracle linux
added 2020/12/01 12:0 a.m.76 views

libvirt security update

5.7.0-21.el7 - exadata: Fix the validation when defining domain groups Wim ten Have Orabug: 32085856 - Revert 'qemu: dont take agent and monitor job for shutdown' Menno Lageman Orabug: 32080283 - Revert 'qemu: dont hold a monitor and agent job for reboot' Menno Lageman Orabug: 32080283 - Revert...

7.2CVSS6.6AI score0.00813EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/11/11 12:0 a.m.44 views

Amazon Linux 2 : libvirt (ALAS-2020-1557)

The version of libvirt installed on the remote host is prior to 4.5.0-36. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1557 advisory. A flaw was found in the way the libvirtd daemon issued the 'suspend' command to a QEMU guest-agent running inside a guest...

6.5CVSS6.9AI score0.02363EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/11/04 1:30 a.m.78 views

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6.8AI score0.04027EPSS
Exploits2References28
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.45 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2020:4676)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4676 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

8.8CVSS7.2AI score0.04027EPSS
Exploits2References36
OSV
OSV
added 2020/11/03 12:26 p.m.34 views

ALSA-2020:4676 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

8.8CVSS7.5AI score0.04027EPSS
Exploits2References7
OSV
OSV
added 2020/11/03 12:26 p.m.63 views

RLSA-2020:4676 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

8.8CVSS7.5AI score0.04027EPSS
Exploits2References27
AlmaLinux
AlmaLinux
added 2020/11/03 12:26 p.m.84 views

Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

8.8CVSS7.2AI score0.04027EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.49 views

Scientific Linux Security Update : libvirt on SL7.x x86_64 (20201001)

Security Fixes : - libvirt: Potential DoS by holding a monitor job while querying QEMU guest-agent CVE-2019-20485 - libvirt: Potential denial of service via active pool without target path CVE-2020-10703 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...

6.5CVSS6.9AI score0.02363EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2020-2209)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00813EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.53 views

CentOS 7 : libvirt (RHSA-2020:4000)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4000 advisory. - qemu/qemudriver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a...

6.5CVSS6.9AI score0.02363EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2020/10/06 12:0 a.m.60 views

libvirt security and bug fix update

4.5.0-36 - virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support rhbz1823976 - virDevMapperGetTargetsImpl: quit early if device is not a devmapper target rhbz1823976 4.5.0-35 - qemu: dont take agent and monitor job for shutdown CVE-2019-20485 - qemu: dont hold a monitor and agent...

6.5CVSS0.4AI score0.02363EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.43 views

RHEL 7 : libvirt (RHSA-2020:4000)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4000 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems...

6.5CVSS7.1AI score0.02363EPSS
Exploits1References11
Mageia
Mageia
added 2020/07/06 8:42 p.m.48 views

Updated libvirt packages fix security vulnerability

Updated libvirt packages fix security vulnerability: A flaw was found in the way the libvirtd daemon issued the 'suspend' command to a QEMU guest-agent running inside a guest, where it holds a monitor job while issuing the 'suspend' command to a guest-agent. A malicious guest-agent may use this...

5.7CVSS2AI score0.00813EPSS
Exploits0References2
Rows per page
Query Builder