42 matches found
MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8433:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8433:01 advisory. libvirt: negative gnew0 length can lead to unbounded memory allocation CVE-2024-2494 Tenable has extracted the preceding description block directly from the...
Azure Linux 3.0 Security Update: libvirt (CVE-2024-2494)
The version of libvirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2494 advisory. - A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory fo...
CVE-2024-2494 affecting package libvirt for versions less than 10.0.0-4
CVE-2024-2494 affecting package libvirt for versions less than 10.0.0-4. A patched version of the package is available...
TencentOS Server 4: libvirt (TSSA-2024:0962)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0962 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
openSUSE Security Advisory (SUSE-SU-2024:1099-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-202412-16 : libvirt: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202412-16 libvirt: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly...
Oracle Linux 9 : libvirt (ELSA-2024-9128)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9128 advisory. - udevListInterfaces: Honour array length for zero-length NULL arrays CVE-2024-8235 CVE-2024-8235, RHEL-55373 - Fix off-by-one error in udevListInterfacesByStat...
libvirt security update
10.5.0-7.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 10.5.0-7 - qemu: Refactor default panic model RHEL-56451 - qemu: Sometimes the default panic model doesn't exist RHEL-56451 - qemu: Use pvpanic by default on aarch64 RHEL-56451 10.5.0-6 - udevListInterfaces: Honour array length fo...
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2024-2650)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.11.1 : libvirt (EulerOS-SA-2024-2175)
According to the versions of the libvirt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An off-by-one error flaw was found in the udevListInterfacesByStatus function in libvirt when the number of interfaces exceeds the...
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2024-2202)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2024-2175)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.11.0 : libvirt (EulerOS-SA-2024-2202)
According to the versions of the libvirt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An off-by-one error flaw was found in the udevListInterfacesByStatus function in libvirt when the number of interfaces exceeds the...
EulerOS Virtualization 2.10.1 : libvirt (EulerOS-SA-2024-2015)
According to the versions of the libvirt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the...
EulerOS Virtualization 2.10.0 : libvirt (EulerOS-SA-2024-1997)
According to the versions of the libvirt package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the...
CBL Mariner 2.0 Security Update: libvirt (CVE-2024-2494)
The version of libvirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2494 advisory. - A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory fo...
Rocky Linux 8 : virt:rhel and virt-devel:rhel (RLSA-2024:3253)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:3253 advisory. libvirt: negative gnew0 length can lead to unbounded memory allocation CVE-2024-2494 Tenable has extracted the preceding description block directly from the Rock...
Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2024-3253)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-3253 advisory. - remote: check for negative array lengths before allocation CVE-2024-2494 libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm - Resolves: RHEL-1962...
virt:ol and virt-devel:rhel security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt 8.0.0-23.1.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma 8.0.0-23.1.el8 - remote: check for negative array lengths before allocation CVE-2024-2494...
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2024:3253)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3253 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packag...