Lucene search
K

3825 matches found

Tenable Nessus
Tenable Nessus
added 2021/07/27 12:0 a.m.42 views

SUSE SLED15: libvirt / libvirt-admin / libvirt-bash-completion / libvirt-client / etc (SUSE-SU-2021:2471-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2471-1 advisory. - CVE-2021-3631: fix SELinux label generation logic bsc1187871 Tenable has extracted the preceding description block directly from the SUSE...

6.3CVSS6.9AI score0.00493EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.3 views

The vulnerability of the demon for controlling Libvirt virtualization, related to the repeated release of memory, allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the demon for controlling Libvirt virtualization relates to the repeated release of memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures...

6.7CVSS6.8AI score0.00529EPSS
Exploits0References10Affected Software4
Ubuntu
Ubuntu
added 2021/07/15 5:53 p.m.160 views

USN-5010-1: QEMU vulnerabilities

Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2020-15469 Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker...

8.2CVSS6.8AI score0.00522EPSS
Exploits3
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.27 views

Fedora: Security Advisory for libvirt (FEDORA-2021-bc6ad65da0)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.3CVSS6.7AI score0.00493EPSS
Exploits1References2
Fedora
Fedora
added 2021/07/13 1:15 a.m.30 views

[SECURITY] Fedora 34 Update: libvirt-7.0.0-6.fc34

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...

6.3CVSS3.9AI score0.00493EPSS
Exploits1
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.3 views

Red Hat libvirt 安全漏洞

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. Red Hat libvirt has a security vulnerability that allows an...

6.3CVSS7.1AI score0.00493EPSS
Exploits1References18
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/10 12:0 a.m.40 views

Security update for wireshark (important)

openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:2125-1 Rating: important References: 1179930 1179931 1179932 1179933 1180102 1180232 1181598 1181599 1183353 1184110 1185128 Cross-References: CVE-2020-26418 CVE-2020-26419 CVE-2020-26420 CVE-2020-26421...

7.5CVSS7.5AI score0.04668EPSS
Exploits7References11
CBLMariner
CBLMariner
added 2021/07/08 9:56 p.m.13 views

CVE-2020-10701 affecting package libvirt 6.1.0-6

CVE-2020-10701 affecting package libvirt 6.1.0-6. A patched version of the package is available...

6.5CVSS7.5AI score0.00861EPSS
Exploits0
Veracode
Veracode
added 2021/07/06 12:2 a.m.36 views

Information Disclosure

libvirt is vulnerable to information disclosure. An attacker is able to access files of other users when the system generates SELiinux MCS category pairs for VMs' dynamic labels...

6.3CVSS3.8AI score0.00493EPSS
Exploits1References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/06 12:0 a.m.8 views

The vulnerability of the Libvirt virtualization management library, related to information disclosure, allows attackers to access confidential information or cause service failures.

The vulnerability of the Libvirt virtualization management library is related to incorrect permission checking. Exploiting this vulnerability allows a remote attacker to access confidential information or cause service failures...

5.4CVSS6.5AI score0.01108EPSS
Exploits1References8Affected Software3
Rosalinux
Rosalinux
added 2021/07/02 5:20 p.m.28 views

Advisory ROSA-SA-2021-1899

Software: libvirt 4.5.0 OS: Cobalt 7.9 CVE-ID: CVE-2020-25637 CVE-Crit: MEDIUM CVE-DESC: A double free memory issue has been detected in libvirt APIs in versions prior to 6.8.0 responsible for querying information about network interfaces of a running QEMU domain. This flaw affects the polkit...

7.2CVSS6.7AI score0.00529EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/07/02 12:0 a.m.6 views

The vulnerability of the Libvirt virtualization management library is related to errors in the certificate validation process. These errors allow attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Libvirt virtualization management library is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

8.1CVSS6.7AI score0.017EPSS
Exploits0References8Affected Software2
RedhatCVE
RedhatCVE
added 2021/07/01 5:23 p.m.72 views

CVE-2021-3631

A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality a...

6.3CVSS1.8AI score0.00493EPSS
Exploits1References3
CNVD
CNVD
added 2021/07/01 12:0 a.m.11 views

Red Hat libvirt Denial of Service Vulnerability (CNVD-2021-46874)

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A denial of service vulnerability exists in the...

6.5CVSS6.5AI score0.01033EPSS
Exploits0References1
AlmaLinux
AlmaLinux
added 2021/06/29 1:43 p.m.11 views

sanlock bug fix and enhancement update

The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: bad client message causes...

0.8AI score
Exploits0
Rockylinux
Rockylinux
added 2021/06/29 1:43 p.m.15 views

sanlock bug fix and enhancement update

An update is available for sanlock. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sanlock packages provide a shared storage lock manager. Hosts with shared...

0.9AI score
Exploits0
OSV
OSV
added 2021/06/29 1:43 p.m.8 views

ALBA-2021:2573 sanlock bug fix and enhancement update

The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: bad client message causes...

7.2AI score
Exploits0
Photon
Photon
added 2021/06/29 12:0 a.m.29 views

Important Photon OS Security Update - PHSA-2021-3.0-0261

Updates of 'libvirt' packages of Photon OS have been released...

8.8CVSS1.7AI score0.00516EPSS
Exploits0
Photon
Photon
added 2021/06/28 12:0 a.m.42 views

Important Photon OS Security Update - PHSA-2021-0261

Updates of 'libvirt' packages of Photon OS have been released...

7.2CVSS1.7AI score0.00516EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/28 12:0 a.m.31 views

openSUSE 15 Security Update : wireshark, libvirt, sbc, libqt5-qtmultimedia (openSUSE-SU-2021:0909-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0909-1 advisory. - Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted...

8.8CVSS7.2AI score0.04668EPSS
Exploits7References30
Rows per page
Query Builder