3825 matches found
Fedora Update for libvirt FEDORA-2008-11433
Check for the Version of libvirt OpenVAS Vulnerability Test Fedora Update for libvirt FEDORA-2008-11433 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
libvirt libvirt_proxy.c文件本地栈溢出漏洞
BUGTRAQ ID: 33724 CVECAN ID: CVE-2009-0036 libvirt是一套免费、开源的C函数库,支持Linux下的主流虚拟化工具。 libvirt库的proxy/libvirtproxy.c文件中的proxyReadClientSocket函数没有正确地验证报文头,如果本地攻击者发送了特制的代理请求的话就可以触发栈溢出,导致以root用户权限执行任意代码。 libvirt 0.5.1 厂商补丁: libvirt ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Fedora Update for libvirt FEDORA-2008-11443
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for libvirt FEDORA-2008-11433
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for libvirt FEDORA-2008-11443
Check for the Version of libvirt OpenVAS Vulnerability Test Fedora Update for libvirt FEDORA-2008-11443 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
DEBIAN-CVE-2009-0036
Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to...
PT-2009-2746 · Libvirt +1 · Libvirt Proxy +1
Name of the Vulnerable Software and Affected Versions: libvirt proxy version 0.5.1 Description: A buffer overflow issue exists in the proxyReadClientSocket function, potentially allowing local users to gain privileges. This is related to the use of uninitialized memory in a validation check, whic...
openSUSE 10 Security Update : libvirt (libvirt-5874)
libvirt misses some read-only connection checks for certain methods. This flaw enables local unprivileged users for example to migrate virtual machines without authentication CVE-2008-5086. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
[SECURITY] Fedora 10 Update: libvirt-0.5.1-2.fc10
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes...
[SECURITY] Fedora 9 Update: libvirt-0.5.1-2.fc9
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes...
[USN-694-1] libvirt vulnerability
=========================================================== Ubuntu Security Notice USN-694-1 December 18, 2008 libvirt vulnerability CVE-2008-5086 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu...
libvirt privilege escalation
Potentially dangeroues operations are not marked as read only...
Fedora 9 : libvirt-0.5.1-2.fc9 (2008-11433)
fix missing read-only access checks, fixes CVE-2008-5086 - upstream release 0.5.1 - mostly bugfixes e.g 473071 - some driver improvements Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
CVE-2008-5086
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
CVE-2008-5086
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
DEBIAN-CVE-2008-5086
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
CVE-2008-5086
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
Code injection
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
CVE-2008-5086
Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...
CVE-2008-5086
CVE-2008-5086 affects libvirt 0.3.2–0.5.1. The issue arises because several methods do not verify whether a connection is read-only, allowing a local attacker to bypass intended access restrictions and execute administrative actions. The MiracleLinux/Nessus entries link this CVE to libvirt in old...