Lucene search
K

3825 matches found

Oracle linux
Oracle linux
added 2021/05/25 12:0 a.m.49 views

virt:ol and virt-devel:rhel security, bug fix, and enhancement update

libvirt 6.0.0-35.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma - Disable parallel builds Karl Heubaum libvirt-dbus 1.3.0 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release libvirt-python...

8.2CVSS6.8AI score0.0183EPSS
Exploits3
OSV
OSV
added 2021/05/24 12:15 p.m.25 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS6.6AI score
Exploits0References2
NVD
NVD
added 2021/05/24 12:15 p.m.16 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS0.01033EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/05/24 12:15 p.m.3 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS5.5AI score0.01033EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/05/24 12:15 p.m.16 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS6.5AI score0.01033EPSS
Exploits0References2
Prion
Prion
added 2021/05/24 12:15 p.m.20 views

Command injection

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

4CVSS6.2AI score0.01033EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/05/24 12:15 p.m.4 views

UBUNTU-CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS5.7AI score0.01033EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/05/24 11:55 a.m.25 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5AI score0.01033EPSS
Exploits0References2
CVE
CVE
added 2021/05/24 11:55 a.m.87 views

CVE-2021-3559

CVE-2021-3559 : A flaw in libvirt’s virConnectListAllNodeDevices API affects hosts with PCI devices using mediated devices (e.g., GRID driver) and libvirt versions before 7.0.0. An unprivileged client with a read-only connection can crash the libvirt daemon by executing the nodedev-list command, ...

6.5CVSS6.4AI score0.01033EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/05/24 11:55 a.m.23 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt...

6.5CVSS6.2AI score0.01033EPSS
Exploits0
CNNVD
CNNVD
added 2021/05/24 12:0 a.m.3 views

Red Hat libvirt 缓冲区错误漏洞

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A denial of service vulnerability exists in the...

6.5CVSS6.5AI score0.01033EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/05/20 11:21 a.m.63 views

CVE-2021-3556

A flaw was found in libvirt in the virConnectListAllNodeDevices API. It only affects hosts with a PCI device and driver that supports mediated devices ex., GRID driver. This flaw allows an unprivileged client with a read-only connection to crash the libvirt daemon by executing the 'nodedev-list'...

6.3AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/05/19 7:14 p.m.45 views

CVE-2021-3559

A flaw was found in libvirt in the virConnectListAllNodeDevices API. It only affects hosts with a PCI device and driver that supports mediated devices e.g., GRID driver. This flaw could be used by an unprivileged client with a read-only connection to crash the libvirt daemon by executing the...

6.5CVSS5.8AI score0.01033EPSS
Exploits0References3
NCSC
NCSC
added 2021/05/19 12:0 a.m.5 views

Vulnerabilities fixed in QEMU and libvirt

Vulnerabilities have been fixed in QEMU and libvirt. The vulnerabilities allow a local, authenticated malicious person potentially able to launch attacks that result in the following categories of damage: Denial-of-Service DoS Access to system data Increased user privileges -= Red Hat =- Red Hat...

7.2CVSS6.4AI score0.0183EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.54 views

CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2021:1762)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1762 advisory. - libvirt: double free in qemuAgentGetInterfaces in qemuagent.c CVE-2020-25637 - QEMU: heap buffer overflow in iscsiaioioctlcb in block/iscsi.c may lea...

7.2CVSS6.9AI score0.0183EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.46 views

RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2021:1762)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1762 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

7.2CVSS7AI score0.0183EPSS
Exploits2References45
RedHat Linux
RedHat Linux
added 2021/05/18 2:6 p.m.2 views

libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c

A double free memory issue was found to occur in the libvirt API responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with limited ACL permissions cou...

7.2CVSS7.1AI score0.00529EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/05/18 2:6 p.m.105 views

Moderate: Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.2CVSS6.9AI score0.0183EPSS
Exploits2References34
OSV
OSV
added 2021/05/18 6:2 a.m.36 views

RLSA-2021:1762 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

6.4CVSS7.2AI score0.0183EPSS
Exploits2References33
OSV
OSV
added 2021/05/18 6:2 a.m.32 views

ALSA-2021:1762 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

7.2CVSS7.2AI score0.0183EPSS
Exploits2References11
Rows per page
Query Builder