3825 matches found
Ubuntu Update for qemu-kvm USN-1145-1
Ubuntu Update for Linux kernel vulnerabilities USN-1145-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11451.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for qemu-kvm USN-1145-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net Thi...
libvirt security vulnerabilities
DoS, off-by-one...
[USN-1152-1] libvirt vulnerabilities
========================================================================== Ubuntu Security Notice USN-1152-1 June 16, 2011 libvirt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Ubuntu 10.04 LTS / 10.10 / 11.04 : libvirt vulnerabilities (USN-1152-1)
It was discovered that libvirt did not use thread-safe error reporting. A remote attacker could exploit this to cause a denial of service via application crash. CVE-2011-1486 Eric Blake discovered that libvirt had an off-by-one error which could be used to reopen disk probing and bypass the fix f...
USN-1152-1: libvirt vulnerabilities
It was discovered that libvirt did not use thread-safe error reporting. A remote attacker could exploit this to cause a denial of service via application crash. CVE-2011-1486 Eric Blake discovered that libvirt had an off-by-one error which could be used to reopen disk probing and bypass the fix f...
Ubuntu 10.04 LTS / 10.10 / 11.04 : qemu-kvm vulnerabilities (USN-1145-1)
It was discovered that QEMU did not properly perform validation of I/O operations from the guest which could lead to heap corruption. An attacker could exploit this to cause a denial of service of the guest or possibly execute code with the privileges of the user invoking the program. CVE-2011-17...
CVE-2011-2178
The virSecurityManagerGetPrivateData function in security/securitymanager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a sizeof call, which causes incorrect processing of "security manager private data" that "reopens disk probing" and might allow guest OS users to read arbitrary...
USN-1145-1: QEMU vulnerabilities
It was discovered that QEMU did not properly perform validation of I/O operations from the guest which could lead to heap corruption. An attacker could exploit this to cause a denial of service of the guest or possibly execute code with the privileges of the user invoking the program. CVE-2011-17...
CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
DEBIAN-CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
CVE-2011-1486
CVE-2011-1486 affects libvirt’s libvirtd: libvirt before 0.9.0 uses non‑thread-safe error reporting, allowing remote attackers to cause a denial of service (crash) by having multiple threads report errors simultaneously. This is evidenced in multiple advisories (openSUSE/libvirt patches note the ...
CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
CVE-2011-1486
libvirtd in libvirt before 0.9.0 does not use thread-safe error reporting, which allows remote attackers to cause a denial of service crash by causing multiple threads to report errors at the same time...
CVE-2011-1750
Multiple heap-based buffer overflows in the virtio-blk driver hw/virtio-blk.c in qemu-kvm 0.14.0 allow local guest users to cause a denial of service guest crash and possibly gain privileges via a 1 write request to the virtioblkhandlewrite function or 2 read request to the virtioblkhandleread...
Debian Security Advisory DSA 2194-1 (libvirt)
The remote host is missing an update to libvirt announced via advisory DSA 2194-1. OpenVAS Vulnerability Test $Id: deb21941.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2194-1 libvirt Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Debian: Security Advisory (DSA-2194-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : libvirt (openSUSE-SU-2011:0311-1)
several API calls did not honor the read-only flag connections. Attackers could exploit that to modify the state of the system or potentially execute code CVE-2011-1146. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
CentOS 5 : libvirt / libvirt.test (CESA-2011:0478)
Updated libvirt packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...