25 matches found
NewStart CGSL MAIN 6.06 (SP) : libvirt Vulnerability (NS-SA-2026-0022)
The remote NewStart CGSL host, running version MAIN 6.06 SP, has libvirt packages installed that are affected by a vulnerability: - An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the...
NewStart CGSL MAIN 6.06 : libvirt Vulnerability (NS-SA-2025-0225)
The remote NewStart CGSL host, running version MAIN 6.06, has libvirt packages installed that are affected by a vulnerability: - An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetSta...
libvirt-10.9.0-3.1 on GA media (moderate)
libvirt-10.9.0-3.1 on GA media Announcement ID: openSUSE-SU-2024:14490-1 Rating: moderate Cross-References: CVE-2020-12430 CVE-2023-2700 CVSS scores: CVE-2020-12430 SUSE : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2023-2700 SUSE : 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H Affected...
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12792)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12792 advisory. - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves:...
Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...
Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12604)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12604 advisory. - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves: rhbz2045718 - Contains fix for NBD Protocol Downgrade Attack CVE-2019-14842. -...
RHEL 8 : 8.1_libvirt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvirt: double free in qemuAgentGetInterfaces in qemuagent.c CVE-2020-25637 - An issue was discovered in...
[SECURITY] [DLA 3778-1] libvirt security update
Debian LTS Advisory DLA-3778-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin April 01, 2024 https://wiki.debian.org/LTS Package : libvirt Version : 5.0.0-4+deb10u2 CVE ID : CVE-2020-10703 CVE-2020-12430 CVE-2020-25637 CVE-2021-3631 CVE-2021-3667 CVE-2021-3975...
Oracle Linux 7 : libvirt (ELSA-2020-5720)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5720 advisory. 5.7.0-15.el7 - qemu: Escape the qemu driver systemd DOT hoax Wim ten Have Orabug: 31380815 5.7.0-14.el7 - vmx: make 'fileName' optional for CD-ROMs Pino Toscano...
Mageia: Security Advisory (MGASA-2020-0250)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:1277-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.1 : libvirt (EulerOS-SA-2021-1631)
According to the versions of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting informati...
NewStart CGSL MAIN 6.02 : libvirt Vulnerability (NS-SA-2021-0050)
The remote NewStart CGSL host, running version MAIN 6.02, has libvirt packages installed that are affected by a vulnerability: - An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetSta...
Fedora 31 : libvirt (2020-5cd83efda7)
Fix iptables No chain/target/match by that name bz 1813830 - systemd: start libvirtd after firewalld/iptables services bz 1697636 - CVE-2020-12430: memory leak in domstats may allow read-only user to perform DoS attack bz 1828216, bz 1828190 - CVE-2020-10703: Potential denial of service via...
libvirt security update
5.7.0-15.el7 - qemu: Escape the qemu driver systemd DOT hoax Wim ten Have Orabug: 31380815 5.7.0-14.el7 - vmx: make 'fileName' optional for CD-ROMs Pino Toscano Orabug: 31350200 - vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk Pino Toscano Orabug: 31350200 - domain group: Fix a...
Updated libvirt packages fix security vulnerability
Updated libvirt packages fix security vulnerability: It was discovered that libvirt incorrectly handled an active pool without a target path. A remote attacker could possibly use this issue to cause libvirt to crash, resulting in a denial of service CVE-2020-10703. It was discovered that libvirt...
MGASA-2020-0250 Updated libvirt packages fix security vulnerability
Updated libvirt packages fix security vulnerability: It was discovered that libvirt incorrectly handled an active pool without a target path. A remote attacker could possibly use this issue to cause libvirt to crash, resulting in a denial of service CVE-2020-10703. It was discovered that libvirt...
SUSE SLES12 Security Update : libvirt (SUSE-SU-2020:1277-1)
This update for libvirt fixes the following issues : Security issues fixed : CVE-2020-10703: Fixed a daemon crash caused by pools without target paths bsc1168683. CVE-2020-12430: Fixed a memory leak in qemuDomainGetStatsIOThread bsc1170765. Non-security issues fixed : Support setting credit2...
Ubuntu: Security Advisory (USN-4371-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4371-1: libvirt vulnerabilities
It was discovered that libvirt incorrectly handled an active pool without a target path. A remote attacker could possibly use this issue to cause libvirt to crash, resulting in a denial of service. CVE-2020-10703 It was discovered that libvirt incorrectly handled memory when retrieving certain...