EUVD-2024-27443

Malicious code in bioql PyPI...

EUVD-2024-27445

Malicious code in bioql PyPI...

NewStart CGSL MAIN 6.06 : libvirt Vulnerability (NS-SA-2025-0225)

The remote NewStart CGSL host, running version MAIN 6.06, has libvirt packages installed that are affected by a vulnerability: - An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetSta...

Malicious code in libvirt-python (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2071f9220268a6478afd2c0c3f551190b1ac0eec255abc1d5e1dbc35744e5e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47459 Malicious code in libvirt-python (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2071f9220268a6478afd2c0c3f551190b1ac0eec255abc1d5e1dbc35744e5e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

virt:rhel and virt-devel:rhel security update

An update is available for module.libguestfs-winsupport, libvirt, module.supermin, netcf, perl-Sys-Virt, libguestfs-winsupport, module.perl-Sys-Virt, module.libtpms, qemu-kvm, module.nbdkit, seabios, libvirt-python, nbdkit, module.netcf, libnbd, libguestfs, module.libvirt-python, supermin,...

Linux Distros Unpatched Vulnerability : CVE-2016-10746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to...

Linux Distros Unpatched Vulnerability : CVE-2021-4147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting ...

Linux Distros Unpatched Vulnerability : CVE-2024-8235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0...

Advisory ROSA-SA-2025-2934

software: libvirt 8.9.0 OS: ROSA-CHROME unaffected versions = libvirt-8.9.0-4 affected versions libvirt-8.9.0-4 CVE-ID: CVE-2024-2496 BDU-ID: 2024-03249 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the udevConnectListAllInterfaces function of the Libvirt virtualization management library is...

Oracle Linux 8 : virt:rhel / and / virt-devel:rhel (ELSA-2025-12527)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12527 advisory. - Fixes: CVE-2022-40284 - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 libtpms libvirt Tenable has extracted the preceding...

virt:rhel and virt-devel:rhel security update

hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 libguestfs-winsupport 8.10-1 - Rebase to ntfs-3g 2022.10.3 - Fixes: CVE-2022-40284 - resolves: rhbz2236373 libiscsi libnbd 1.6.0-6.el8 - Fix CVE-2024-7383 NBD server improper certificate validation...

NewStart CGSL MAIN 7.02 : libvirt Multiple Vulnerabilities (NS-SA-2025-0189)

The remote NewStart CGSL host, running version MAIN 7.02, has libvirt packages installed that are affected by multiple vulnerabilities: - A race condition leading to a stack use-after-free flaw was found in libvirt. Due to a bad assumption in the virNetClientIOEventLoop method, the data pointer t...

Azure Linux 3.0 Security Update: libvirt (CVE-2024-1441)

The version of libvirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1441 advisory. - An off-by-one error flaw was found in the udevListInterfacesByStatus function in libvirt when the number of...

Azure Linux 3.0 Security Update: libvirt (CVE-2024-4418)

The version of libvirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4418 advisory. - A race condition leading to a stack use-after-free flaw was found in libvirt. Due to a bad assumption in the...

Azure Linux 3.0 Security Update: libvirt (CVE-2024-2494)

The version of libvirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2494 advisory. - A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory fo...

CVE-2024-1441 affecting package libvirt for versions less than 10.0.0-4

CVE-2024-1441 affecting package libvirt for versions less than 10.0.0-4. A patched version of the package is available...

CVE-2024-4418 affecting package libvirt for versions less than 10.0.0-5

CVE-2024-4418 affecting package libvirt for versions less than 10.0.0-5. A patched version of the package is available...

CVE-2024-2494 affecting package libvirt for versions less than 10.0.0-4

CVE-2024-2494 affecting package libvirt for versions less than 10.0.0-4. A patched version of the package is available...

Astra Linux – Vulnerability in libvirt

The vulnerability of the virsocketaddr.c component in the Libvirt virtualization management library is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a service failure remotely...