3825 matches found
(RHSA-2011:0439) Moderate: rhev-hypervisor security and bug fix update
The rhev-hypervisor package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine KVM hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red...
Fedora 14 : libvirt-0.8.3-9.fc14 (2011-4896)
Fix for CVE-2011-1486, error reporting in libvirtd is not thread safe Fix specfil to create /var/lib/libvirt with proper permissions. fix a lack of API check on read-only connections this build fix one crash in the the error handling fix a lack of API check on read-only connections Note that...
[SECURITY] Fedora 14 Update: libvirt-0.8.3-9.fc14
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...
Security fix for the ALT Linux 8 package libvirt version 0.9.0-alt1
April 6, 2011 Alexey Shabalin 0.9.0-alt1 - 0.9.0 - fixed CVE-2011-1146...
Ubuntu Update for libvirt vulnerability USN-1094-1
Ubuntu Update for Linux kernel vulnerabilities USN-1094-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10941.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for libvirt vulnerability USN-1094-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1094-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 9.10 / 10.04 LTS / 10.10 : libvirt vulnerability (USN-1094-1)
Petr Matousek discovered that libvirt did not always honor read-only connections. An attacker who is authorized to connect to the libvirt daemon could exploit this to cause a denial of service via application crash. Note that Tenable Network Security has extracted the preceding description block...
USN-1094-1: Libvirt vulnerability
Petr Matousek discovered that libvirt did not always honor read-only connections. An attacker who is authorized to connect to the libvirt daemon could exploit this to cause a denial of service via application crash...
RHEL 5 / 6 : libvirt (RHSA-2011:0391)
The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0391 advisory. - libvirt: several API calls do not honour read-only connection CVE-2011-1146 Note that Nessus has not tested for this issue but has instead reli...
Important: Red Hat Security Advisory: libvirt security update
Updated libvirt packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
libvirt: several API calls do not honour read-only connection
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service host OS crash or possibly execute arbitrary code via a 1 virNodeDeviceDettach, 2 virNodeDeviceReset, 3 virDomainRevertToSnapsho...
libvirt security update
0.8.1-27.0.1.el60.5 - Replace docs/et.png in tarball with blank image 0.8.1-27.el60.5 - Properly report error in virConnectDomainXMLToNative CVE-2011-1146 0.8.1-27.el60.4 - Add missing checks for read-only connections CVE-2011-1146 0.8.1-27.el60.3 - Remove patches not suitable for proper Z-stream...
[SECURITY] [DSA 2194-1] libvirt security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2194-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 18, 2011 http://www.debian.org/security/faq -...
libvirt protection bypass
No description provided...
Fedora 15 : libvirt-0.8.8-3.fc15 (2011-3286)
fix a lack of API check on read-only connections Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Debian DSA-2194-1 : libvirt - insufficient checks
It was discovered that libvirt, a library for interfacing with different virtualization systems, did not properly check for read-only connections. This allowed a local attacker to perform a denial of service crash or possibly escalate privileges. The oldstable distribution lenny is not affected b...
[SECURITY] Fedora 15 Update: libvirt-0.8.8-3.fc15
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support...
[SECURITY] [DSA 2194-1] libvirt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2194-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 18, 2011 http://www.debian.org/security/faq -...
DSA-2194-1 libvirt - privilege escalation
Bulletin has no description...
CVE-2011-1146
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service host OS crash or possibly execute arbitrary code via a 1 virNodeDeviceDettach, 2 virNodeDeviceReset, 3 virDomainRevertToSnapsho...