Lucene search
K

3825 matches found

Tenable Nessus
Tenable Nessus
added 2022/01/05 12:0 a.m.40 views

SUSE SLES15: libvirt / libvirt-admin / libvirt-client / libvirt-daemon / etc (SUSE-SU-2022:0031-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0031-1 advisory. - CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. bsc1194041 - CVE-2021-3975: Add missing lock in...

6.5CVSS6.8AI score0.01217EPSS
Exploits0References8
OSV
OSV
added 2022/01/04 3:6 p.m.6 views

SUSE-SU-2022:0021-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. bsc1194041...

6.5CVSS6.4AI score0.00233EPSS
Exploits0References8
OSV
OSV
added 2022/01/04 3:6 p.m.4 views

OPENSUSE-SU-2022:0021-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. bsc1194041...

6.5CVSS6.5AI score0.00233EPSS
Exploits0References8
OPENSUSE Linux
OPENSUSE Linux
added 2022/01/04 12:0 a.m.26 views

Security update for libvirt (important)

openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2022:0021-1 Rating: important References: 1191668 1192017 1193623 1193719 1193981 1194041 Cross-References: CVE-2021-4147 CVSS scores: CVE-2021-4147 SUSE: 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H Affected...

7.1CVSS6.5AI score0.00233EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/12/30 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for libvirt (EulerOS-SA-2021-2847)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS6.7AI score0.00493EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/12/29 12:0 a.m.37 views

EulerOS Virtualization 3.0.2.0 : libvirt (EulerOS-SA-2021-2847)

According to the versions of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploite...

6.3CVSS6.9AI score0.00493EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2021/12/21 4:29 p.m.32 views

CVE-2021-4147

A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition. Mitigation Mitigation for this issue is either not available or the currently available options do not...

6.5CVSS1.8AI score0.00233EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2021/12/21 9:11 a.m.41 views

virt:rhel and virt-devel:rhel security update

An update is available for libguestfs, libnbd, nbdkit, libguestfs-winsupport, supermin, libiscsi, hivex, libvirt, netcf, perl-Sys-Virt, seabios, qemu-kvm, sgabios, libvirt-dbus, libvirt-python. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a...

6.5CVSS7.2AI score0.00358EPSS
Exploits0
OSV
OSV
added 2021/12/10 10:19 p.m.8 views

MGASA-2021-0547 Updated libvirt packages fix security vulnerability

Fix deadlock on virStoragePoolLookupByTargetPath failure bz 1986113 CVE-2021-3667 More CAPSETPCAP warning fixes bz 1924218 Handle unknown firmware.json errors...

6.5CVSS6.6AI score0.01366EPSS
Exploits0References5
Mageia
Mageia
added 2021/12/10 10:19 p.m.54 views

Updated libvirt packages fix security vulnerability

Fix deadlock on virStoragePoolLookupByTargetPath failure bz 1986113 CVE-2021-3667 More CAPSETPCAP warning fixes bz 1924218 Handle unknown firmware.json errors...

6.5CVSS2.9AI score0.01366EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/12/10 12:0 a.m.40 views

Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2021-4191)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-4191 advisory. - security: fix SELinux label generation logic CVE-2021-3631 - storagedriver: Unlock object on ACL fail in storagePoolLookupByTargetPath CVE-2021-3667 ...

6.5CVSS6.6AI score0.01366EPSS
Exploits2References8
Oracle linux
Oracle linux
added 2021/12/01 12:0 a.m.78 views

virt:kvm_utils security update

hivex 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release libguestfs 1:1.40.2-25.0.1 - Replace upstream references from description tag - Config supermin to...

8.2CVSS0.3AI score0.02515EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2021/11/24 12:0 a.m.37 views

CVE-2021-3975

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down...

6.5CVSS6.7AI score0.01217EPSS
Exploits0References2
OSV
OSV
added 2021/11/24 12:0 a.m.3 views

UBUNTU-CVE-2021-3975

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down...

6.5CVSS6.7AI score0.01217EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/11/18 11:56 a.m.50 views

CVE-2021-3975

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down...

6.5CVSS6.4AI score0.01217EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/17 12:0 a.m.4 views

Red Hat libvirt 资源管理错误漏洞

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. that supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A resource management error vulnerability exists in Red Hat...

6.5CVSS6.7AI score0.01217EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2021/11/16 7:53 a.m.4 views

libvirt: segmentation fault during VM shutdown can lead to vdsm hang

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down...

6.5CVSS6.6AI score0.01217EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.63 views

virt:ol and virt-devel:ol security, bug fix, and enhancement update

libguestfs-winsupport 8.2 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release libguestfs 1.40.2-28.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to o...

6.5CVSS6.5AI score0.01366EPSS
Exploits2
Kitploit
Kitploit
added 2021/11/12 8:30 p.m.42 views

Ad-Honeypot-Autodeploy - Deploy A Small, Intentionally Insecure, Vulnerable Windows Domain For RDP Honeypot Fully Automatically

Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically. Runs on self-hosted virtualization using libvirt with QEMU/KVM but it can be customized easily for cloud-based solutions. Used for painlessly set up a small Windows Domain from scratch...

7AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/11/12 12:0 a.m.49 views

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2021-1762)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1762 advisory. - Resolves: bz1917451 CVE-2020-29443 virt:rhel/qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands rhel-8.4.0 - Resolves: bz1919111...

8.2CVSS6.9AI score0.0183EPSS
Exploits3References10
Rows per page
Query Builder