SUSE-SU-2026:0279-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2025-13193: Fixed umask for 'qemu-img' when creating external inactive snapshots bsc1253703 - CVE-2025-12748: Fixed check ACLs before parsing the whole domain XML bsc1253278...

SUSE SLES12 Security Update : libvirt (SUSE-SU-2026:0193-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0193-1 advisory. - CVE-2025-13193: Fixed umask for 'qemu-img' when creating external inactive snapshots bsc1253703 - CVE-2025-12748: Fixed check ACLs before...

CVE-2025-12748 affecting package libvirt for versions less than 7.10.0-11

CVE-2025-12748 affecting package libvirt for versions less than 7.10.0-11. A patched version of the package is available...

Security update for libvirt

This update for libvirt fixes the following issues: CVE-2025-13193: Fixed umask for 'qemu-img' when creating external inactive snapshots bsc1253703 CVE-2025-12748: Fixed check ACLs before parsing the whole domain XML bsc1253278 Patch Instructions: To install this SUSE update use the SUSE...

CVE-2025-12748 affecting package libvirt for versions less than 10.0.0-7

CVE-2025-12748 affecting package libvirt for versions less than 10.0.0-7. A patched version of the package is available...

MiracleLinux 9 : libvirt-10.0.0-6.2.el9.ML.1 (AXSA:2024-8065:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8065:03 advisory. The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-4435:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4435:01 advisory. QEMU: fdc: heap buffer overflow in DMA read data transfers CVE-2021-3507 libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denia...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8433:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8433:01 advisory. libvirt: negative gnew0 length can lead to unbounded memory allocation CVE-2024-2494 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libvirt-10.0.0-6.6.el9_4.ML.1 (AXSA:2024-8603:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8603:05 advisory. libvirt: stack use-after-free in virNetClientIOEventLoop CVE-2024-4418 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : libvirt-9.0.0-10.2.el9 (AXSA:2023-6108:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6108:08 advisory. libvirt: Memory leak in virPCIVirtualFunctionList cleanup CVE-2023-2700 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : libvirt-8.5.0-7.el9 (AXSA:2023-4911:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4911:01 advisory. libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service CVE-2022-0897 Tenable has extracted the preceding description block...

MiracleLinux 9 : libvirt-9.5.0-7.el9.ML.1 (AXSA:2023-7009:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7009:11 advisory. libvirt: improper locking in virStoragePoolObjListSearch may lead to denial of service CVE-2023-3750 Tenable has extracted the preceding description block...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8558:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8558:01 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which...

MiracleLinux 9 : libvirt-10.5.0-7.el9.ML.1 (AXSA:2024-9096:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9096:07 advisory. libvirt: Crash of virtinterfaced via virConnectListInterfaces CVE-2024-8235 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2023-6219:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6219:01 advisory. libvirt: Memory leak in virPCIVirtualFunctionList cleanup CVE-2023-2700 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-2938:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2938:01 advisory. QEMU: net: e1000e: use-after-free while sending packets CVE-2020-15859 QEMU: slirp: invalid pointer initialization may lead to information disclosur...

MiracleLinux 7 : libvirt-3.2.0-14.el7.9 (AXBA:2018-2611:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXBA:2018-2611:02 advisory. - Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker...

MiracleLinux 3 : sos-1.7-9.62.0.1.AXS3 (AXSA:2012-526:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-526:01 advisory. Sos is a set of tools that gathers information about system hardware and configuration. The information can then be used for diagnostic purposes and debugging...

MiracleLinux 3 : libvirt-0.8.2-22.0.1.AXS3 (AXSA:2011-279:04)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-279:04 advisory. Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. Security issues fixed with this release:...

MiracleLinux 7 : libvirt-4.5.0-23.el7 (AXSA:2019-4192:10)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4192:10 advisory. libvirt: NULL pointer dereference after running qemuAgentCommand in qemuAgentGetInterfaces function CVE-2019-3840 Tenable has extracted the preceding...