7 matches found
TencentOS Server 3: nbdkit (TSSA-2022:0276)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0276 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2021-3716 affecting package nbdkit 1.20.7-5
CVE-2021-3716 affecting package nbdkit 1.20.7-5. This CVE either no longer is or was never applicable...
RHEL 8 : 8.3_nbdkit (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nbdkit: NBDOPTSTRUCTUREDREPLY injection on STARTTLS CVE-2021-3716 Note that Nessus has not tested for this issue bu...
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
An update is available for libguestfs, libnbd, libtpms, libguestfs-winsupport, nbdkit, supermin, libiscsi, hivex, libvirt, netcf, perl-Sys-Virt, seabios, qemu-kvm, swtpm, virt-v2v, sgabios, libvirt-dbus, libvirt-python. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS...
ALSA-2022:1759 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...
CVE-2021-3716
CVE-2021-3716 affects nbdkit; root cause is improper caching of plaintext state across the STARTTLS boundary. A man-in-the-middle could inject a plaintext NBD_OPT_STRUCTURED_REPLY before proxying client data to the server, potentially causing the client to terminate the NBD session. The primary i...
RHEL 8 : virt:av and virt-devel:av (RHSA-2022:0397)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0397 advisory. The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Re...