3825 matches found
SUSE SLED15: libvirt / libvirt-admin / libvirt-bash-completion / libvirt-client / etc (SUSE-SU-2021:2471-1)
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2471-1 advisory. - CVE-2021-3631: fix SELinux label generation logic bsc1187871 Tenable has extracted the preceding description block directly from the SUSE...
The vulnerability of the demon for controlling Libvirt virtualization, related to the repeated release of memory, allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the demon for controlling Libvirt virtualization relates to the repeated release of memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures...
USN-5010-1: QEMU vulnerabilities
Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2020-15469 Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker...
Fedora: Security Advisory for libvirt (FEDORA-2021-bc6ad65da0)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 34 Update: libvirt-7.0.0-6.fc34
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...
Red Hat libvirt 安全漏洞
Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. Red Hat libvirt has a security vulnerability that allows an...
Security update for wireshark (important)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:2125-1 Rating: important References: 1179930 1179931 1179932 1179933 1180102 1180232 1181598 1181599 1183353 1184110 1185128 Cross-References: CVE-2020-26418 CVE-2020-26419 CVE-2020-26420 CVE-2020-26421...
CVE-2020-10701 affecting package libvirt 6.1.0-6
CVE-2020-10701 affecting package libvirt 6.1.0-6. A patched version of the package is available...
Information Disclosure
libvirt is vulnerable to information disclosure. An attacker is able to access files of other users when the system generates SELiinux MCS category pairs for VMs' dynamic labels...
The vulnerability of the Libvirt virtualization management library, related to information disclosure, allows attackers to access confidential information or cause service failures.
The vulnerability of the Libvirt virtualization management library is related to incorrect permission checking. Exploiting this vulnerability allows a remote attacker to access confidential information or cause service failures...
Advisory ROSA-SA-2021-1899
Software: libvirt 4.5.0 OS: Cobalt 7.9 CVE-ID: CVE-2020-25637 CVE-Crit: MEDIUM CVE-DESC: A double free memory issue has been detected in libvirt APIs in versions prior to 6.8.0 responsible for querying information about network interfaces of a running QEMU domain. This flaw affects the polkit...
The vulnerability of the Libvirt virtualization management library is related to errors in the certificate validation process. These errors allow attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Libvirt virtualization management library is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...
CVE-2021-3631
A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality a...
Red Hat libvirt Denial of Service Vulnerability (CNVD-2021-46874)
Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A denial of service vulnerability exists in the...
sanlock bug fix and enhancement update
The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: bad client message causes...
sanlock bug fix and enhancement update
An update is available for sanlock. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sanlock packages provide a shared storage lock manager. Hosts with shared...
ALBA-2021:2573 sanlock bug fix and enhancement update
The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: bad client message causes...
Important Photon OS Security Update - PHSA-2021-3.0-0261
Updates of 'libvirt' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2021-0261
Updates of 'libvirt' packages of Photon OS have been released...
openSUSE 15 Security Update : wireshark, libvirt, sbc, libqt5-qtmultimedia (openSUSE-SU-2021:0909-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0909-1 advisory. - Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted...