Lucene search
K

3825 matches found

Fedora
Fedora
added 2012/08/22 9:11 p.m.42 views

[SECURITY] Fedora 16 Update: libvirt-0.9.6.2-1.fc16

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...

5.9CVSS3.9AI score0.02158EPSS
Exploits0
NVD
NVD
added 2012/08/07 9:55 p.m.14 views

CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS7.7AI score0.02158EPSS
Exploits0References10
OSV
OSV
added 2012/08/07 9:55 p.m.2 views

DEBIAN-CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS6.5AI score0.02158EPSS
Exploits0References1
OSV
OSV
added 2012/08/07 9:55 p.m.9 views

CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

6.3AI score
Exploits0References10
Prion
Prion
added 2012/08/07 9:55 p.m.31 views

Out-of-bounds

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS6.8AI score0.02158EPSS
Exploits0References10Affected Software1
UbuntuCve
UbuntuCve
added 2012/08/07 9:55 p.m.29 views

CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS6.4AI score0.02158EPSS
Exploits0References3
Cvelist
Cvelist
added 2012/08/07 9:0 p.m.20 views

CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

6.5AI score0.02158EPSS
Exploits0References10
CVE
CVE
added 2012/08/07 9:0 p.m.83 views

CVE-2012-3445

The CVE-2012-3445 issue affects libvirt 0.9.13 through the virTypedParameterArrayClear function. The vulnerability arises when handling virDomain* API calls with typed parameters, enabling remote authenticated users to trigger a denial of service (libvirtd crash) by sending an RPC command with np...

3.5CVSS6.3AI score0.02158EPSS
Exploits0References10Affected Software1
Debian CVE
Debian CVE
added 2012/08/07 9:0 p.m.27 views

CVE-2012-3445

The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain API calls with typed parameters, which might allow remote authenticated users to cause a denial of service libvirtd crash via an RPC command with nparams set to zero, which triggers an out-of-bounds read...

3.5CVSS7.4AI score0.02158EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.34 views

Scientific Linux Security Update : libvirt on SL5.x, SL6.x i386/x86_64

A flaw was found in the way libvirtd handled error reporting for concurrent connections. A remote attacker able to establish read-only connections to libvirtd on a server could use this flaw to crash libvirtd. CVE-2011-1486 libvirtd must be restarted 'service libvirtd restart' for this update to...

3.3CVSS6.8AI score0.01199EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.16 views

Scientific Linux Security Update : xen/libvirt on SL5.0 i386/x86_64

NOTE1: The xen update needs to be applied with the new kernel kernel-2.6.18-53.1.4.el5. Because a kernel does not automatically get updated, but the xen libraries do by default it is best to upgrade them both at the same time, and then reboot into the new kernel. Updating both the kernel and xen ...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.32 views

Scientific Linux Security Update : qemu-kvm on SL6.x x86_64

KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space component for running virtual machines using KVM. It was found that qemu-kvm did not properly drop supplemental group privileges when the root user started guests...

6.8CVSS5.6AI score0.02258EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.24 views

Scientific Linux Security Update : virt-v2v on SL6.x x86_64

virt-v2v is a tool for converting and importing virtual machines to libvirt-managed KVM Kernel-based Virtual Machine. Using virt-v2v to convert a guest that has a password-protected VNC console to a KVM guest removed that password protection from the converted guest: after conversion, a password...

4.4CVSS5.5AI score0.00467EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : libvirt on SL6.x i386/x86_64 (20120620)

The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bus and device IDs were ignored when attempting to attach multiple USB devices...

3.7CVSS8.1AI score0.00331EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.37 views

Scientific Linux Security Update : libvirt on SL5.x i386/x86_64

The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. An integer overflow flaw was found in libvirtd's RPC call handling. An attacker able to establish read-only connections to libvirtd could trigger this flaw by...

4CVSS6.9AI score0.03536EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.27 views

Scientific Linux Security Update : libvirt on SL6.x i386/x86_64

It was found that several libvirt API calls did not honor the read-only permission for connections. A local attacker able to establish a read-only connection to libvirtd on a server could use this flaw to execute commands that should be restricted to read-write connections, possibly leading to a...

6.9CVSS7.1AI score0.01532EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.33 views

Scientific Linux Security Update : libvirt on SL5.x i386/x86_64

It was found that several libvirt API calls did not honor the read-only permission for connections. A local attacker able to establish a read-only connection to libvirtd on a server could use this flaw to execute commands that should be restricted to read-write connections, possibly leading to a...

6.9CVSS7.1AI score0.01532EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.42 views

Scientific Linux Security Update : libvirt on SL6.x i386/x86_64

The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remotely managing virtualized systems. An integer overflow flaw was found in libvirtd's RPC call handling. An attacker abl...

4CVSS6.8AI score0.03536EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.33 views

Scientific Linux Security Update : libvirt on SL5.x i386/x86_64

It was found that libvirt did not set the user-defined backing store format when creating a new image, possibly resulting in applications having to probe the backing store to discover the format. A privileged guest user could use this flaw to read arbitrary files on the host. CVE-2010-2239 It was...

4.4CVSS7AI score0.00423EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.23 views

CentOS Update for libvirt CESA-2011:1019 centos5 x86_64

Check for the Version of libvirt OpenVAS Vulnerability Test CentOS Update for libvirt CESA-2011:1019 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

4CVSS0.1AI score0.03536EPSS
Exploits0References2
Rows per page
Query Builder