Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2021-3631

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled...

6.3CVSS6.8AI score0.00493EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.80 views

Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...

9.8CVSS7.5AI score0.02363EPSS
Exploits7References2
Debian
Debian
added 2024/04/01 12:19 p.m.79 views

[SECURITY] [DLA 3778-1] libvirt security update

Debian LTS Advisory DLA-3778-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin April 01, 2024 https://wiki.debian.org/LTS Package : libvirt Version : 5.0.0-4+deb10u2 CVE ID : CVE-2020-10703 CVE-2020-12430 CVE-2020-25637 CVE-2021-3631 CVE-2021-3667 CVE-2021-3975...

7.2CVSS6.6AI score0.02363EPSS
Exploits2
Oracle linux
Oracle linux
added 2023/02/08 12:0 a.m.92 views

virt:kvm_utils security update

libvirt 5.7.0-38.el8 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - qemu: Set default qdisc before setting bandwidth Michal...

8.8CVSS7.4AI score0.0114EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.127 views

Oracle Linux 8 : virt:kvm_utils (ELSA-2023-12108)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12108 advisory. - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - hw/display/ati2d: Fix buffer overflow in ati2dblt...

8.8CVSS7.3AI score0.0114EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2022/12/06 12:0 a.m.44 views

Oracle Linux 7 : libvirt (ELSA-2022-10062)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-10062 advisory. - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 Tenable has extracted the preceding description block directly...

6.3CVSS7.1AI score0.00493EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/10/09 12:0 a.m.39 views

EulerOS Virtualization 3.0.6.6 : libvirt (EulerOS-SA-2022-2515)

According to the versions of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploite...

6.3CVSS6.1AI score0.01024EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/07/15 12:0 a.m.73 views

EulerOS Virtualization 2.10.0 : libvirt (EulerOS-SA-2022-2045)

According to the versions of the libvirt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited...

6.5CVSS6.9AI score0.01366EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2022-2045)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01366EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2022-2073)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01366EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2022/04/07 6:4 a.m.14 views

CVE-2021-3631 affecting package libvirt 6.1.0-6

CVE-2021-3631 affecting package libvirt 6.1.0-6. A patched version of the package is available...

6.3CVSS7.5AI score0.00493EPSS
Exploits1
CVE
CVE
added 2022/03/02 12:0 a.m.243 views

CVE-2021-3631

CVE-2021-3631 affects libvirt: flaw in SELinux MCS category pair generation for VM dynamic labels allows a guest to access files labeled for another guest, breaking sVirt confinement and impacting confidentiality/integrity. Connected advisories confirm libvirt remediation via package upgrades (no...

6.3CVSS6.2AI score0.00493EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2022/02/28 6:13 p.m.10 views

CLSA-2022-1646071990 Fix of CVE: CVE-2021-3667, CVE-2021-3631

CVE-2021-3631: security: fix SELinux label generation logic - CVE-2021-3667: storagedriver: Unlock object on ACL fail in storagePoolLookupByTargetPath...

6.5CVSS6.7AI score0.01366EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2021-0399)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS6.7AI score0.00493EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.63 views

virt:ol and virt-devel:ol security, bug fix, and enhancement update

libguestfs-winsupport 8.2 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release libguestfs 1.40.2-28.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to o...

6.5CVSS6.5AI score0.01366EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.56 views

CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2021:4191)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:4191 advisory. - QEMU: net: e1000e: use-after-free while sending packets CVE-2020-15859 - QEMU: slirp: invalid pointer initialization may lead to information disclosu...

6.5CVSS6.6AI score0.01366EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.235 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2021:4191)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4191 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

6.5CVSS6.7AI score0.01366EPSS
Exploits2References33
RedHat Linux
RedHat Linux
added 2021/11/09 6:27 p.m.51 views

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.5CVSS6.7AI score0.01366EPSS
Exploits2References24
AlmaLinux
AlmaLinux
added 2021/11/09 8:35 a.m.81 views

Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

6.5CVSS6.4AI score0.01366EPSS
Exploits2References8
OSV
OSV
added 2021/11/09 8:35 a.m.34 views

RLSA-2021:4191 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

6.5CVSS6.5AI score0.01366EPSS
Exploits2References23
Rows per page
Query Builder