virt:kvm_utils3 bug fix update

hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 1.3.18-22.el8 - Resolves: bz2000225 Rebase virt:rhel module:stream based on AV-8.6 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 1.3.18 - Resolves: bz1810193 Upgrade...

virt:ol and virt-devel:ol security update

hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 libguestfs-winsupport 8.10-1 - Rebase to ntfs-3g 2022.10.3 - Fixes: CVE-2022-40284 - resolves: rhbz2236373 libiscsi...

virt:ol and virt-devel:ol security and bug fix update

hivex libguestfs libguestfs-winsupport 8.8-2 - Rebase to ntfs-3g 2022.10.3 - Fixes: CVE-2022-40284 - resolves: rhbz2236373 libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.2.0-33 - CVE-2023-3354 QEMU: VNC: improper I/O watch removal in TLS handshak...

virt:ol and virt-devel:ol security and bug fix update

hivex libguestfs 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 1:1.44.0-8 -...

virt:ol and virt-devel:ol security and bug fix update

hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 libvirt 6.0.0-35.1.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma - Disable parallel builds Karl Heubaum 6.0.0-35.1.el8 -...

MiracleLinux 8 : virt:rhel (AXSA:2021-2404:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2404:01 advisory. QEMU: msix: OOB access during mmio operations may lead to DoS CVE-2020-13754 hivex: Buffer overflow when provided invalid node key length...

MiracleLinux 7 : hivex-1.3.10-6.11.el7 (AXSA:2021-1845:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1845:01 advisory. hivex: Buffer overflow when provided invalid node key length CVE-2021-3504 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 7 : hivex-1.3.10-6.12.el7 (AXSA:2021-2395:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2395:02 advisory. hivex: stack overflow due to recursive call of getchildren CVE-2021-3622 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 4 : hivex-1.3.3-4.3.AXS4 (AXSA:2015-405:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-405:01 advisory. Hive files are the undocumented binary blobs that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these file...

EUVD-2014-9098

Malware in sbrugna...

EUVD-2021-26823

Malware in sbrugna...

EUVD-2021-26925

Malware in sbrugna...

TencentOS Server 3: hivex (TSSA-2022:0272)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0272 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Linux Distros Unpatched Vulnerability : CVE-2021-3622

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted Windows Registry hive file, which would cause hivex to...

Linux Distros Unpatched Vulnerability : CVE-2021-3504

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivexopen function. An attacker could inp...

CLSA-2025-1738170241 hivex: Fix of CVE-2021-3622

CVE-2021-3622: fix possible stack overflow by adding the depth of recursion in the getchildren...

virt:kvm_utils1 security update

hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.15...

RHSA-2015:1378 Red Hat Security Advisory: hivex security and bug fix update

Bulletin has no description...

RHSA-2015:0301 Red Hat Security Advisory: hivex security, bug fix, and enhancement update

Bulletin has no description...

RHSA-2021:2318 Red Hat Security Advisory: hivex security update

Bulletin has no description...