135 matches found
CVE-2013-1922
qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted, a different...
RedHat Update for kernel RHSA-2012:1426-01
Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2012:1426-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
kernel, perf, python security update
CentOS Errata and Security Advisory CESA-2012:1426 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring...
UBUNTU-CVE-2012-3400
Heap-based buffer overflow in the udfloadlogicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service system crash or possibly have unspecified other impact via a crafted UDF filesystem...
libguestfs: missing disk format specifier when adding a disk
libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted 1 qcow2, 2 VMDK, or 3 VDI header, related to lack of support for a dis...
Fedora 14 : libguestfs-1.5.23-1 (2010-16835)
CVE-2010-3851: Fix for libguestfs: missing disk format specifier when adding a disk RHBZ642934. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possib...
Format string
Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors...
CVE-2010-2239
Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors...
Fedora 12 : libvirt-0.8.2-1.fc12 (2010-11021)
A reboot is required to update the iptables rules for the default virtual network to address the CVE-2010-2242 All disk format probing is now disabled in a default installation of libvirt. This change may prevent KVM guests using qcow2 disks from booting successfully. If this occurs verify that t...
Fedora 13 : libvirt-0.8.2-1.fc13 (2010-10960)
A reboot is required to update the iptables rules for the default virtual network to address the CVE-2010-2242 All disk format probing is now disabled in a default installation of libvirt. This change may prevent KVM guests using qcow2 disks from booting successfully. If this occurs verify that t...
USN-776-1: KVM vulnerabilities
Avi Kivity discovered that KVM did not correctly handle certain disk formats. A local attacker could attach a malicious partition that would allow the guest VM to read files on the VM host. CVE-2008-1945, CVE-2008-2004 Alfredo Ortega discovered that KVM's VNC protocol handler did not correctly...
QEMU安全绕过漏洞
BUGTRAQ ID: 30604 CVE ID:CVE-2008-1945 CNCVE ID:CNCVE-20081945 QEMU是一款面向完整PC系统的开源仿真器。 QEMU不正确限制对部分功能的访问,本地攻击者可以利用漏洞绕过安全限制,执行未授权攻击。 QEMU没有正确处理针对可移动媒介的更改,允许客户操作系统用户通过使用diskformat读取宿主OS上的任意文件。通过在-usbdevice选项的参数可修改磁盘映像头字段数据而识别为不同的格式来读取文件。 MandrakeSoft Linux Mandrake 2008.1 x8664 MandrakeSoft Linux...
UDF truncating issue
The Universal Disk Format UDF filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service hang and crash via certain operations involving truncated files, as demonstrated via the dd command...
qemu -- "drive_init()" Disk Format Security Bypass
Secunia reports: A vulnerability has been reported in QEMU, which can be exploited by malicious, local users to bypass certain security restrictions. The vulnerability is caused due to the "driveinit" function in vl.c determining the format of a disk from data contained in the disk's header. This...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:182)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Stephane Eranian discovered an issue with permon2.0 where, under certain circumstances, the perfmonctl system call may not correctly manage the file descriptor reference count, resulting in the system possibly...