Astra Linux - уязвимость в libvirt

qemu/qemudriver.c in libvirt before version 6.0.0 improperly handles the handling of a monitor job during a query to a guest agent. This allows attackers to cause a denial of service API blockage...

Astra Linux - уязвимость в libvirt

A issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c within libvirt version 4.10.0 through 6.x, prior to 6.1.0. A memory leak was identified in the virDomainListGetStats libvirt API, which is responsible for retrieving domain statistics when managing QEMU guests. This flaw...

EUVD-2019-11029

Malware in sbrugna...

EUVD-2013-2182

Malware in sbrugna...

NewStart CGSL MAIN 6.06 : libvirt Vulnerability (NS-SA-2025-0225)

The remote NewStart CGSL host, running version MAIN 6.06, has libvirt packages installed that are affected by a vulnerability: - An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemudriver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetSta...

Linux Distros Unpatched Vulnerability : CVE-2021-43415

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission...

SUSE CVE-2013-2230

The qemu driver qemu/qemudriver.c in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service daemon crash via unspecified vectors involving "multiple events registration."...

SUSE CVE-2019-20485

qemu/qemudriver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of service API blockage...

ALPINE-CVE-2019-20485

qemu/qemudriver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of service API blockage...

libvirt Denial of Service Vulnerability (CNVD-2020-20734)

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. A security vulnerability exists in the qemu/qemudriver.c file...

libvirt security update

5.0.0-9.el7 - qemu: remove cpuhostmask and cpuguestmask from virCaps structure Wim ten Have Orabug: 29956508 5.0.0-8.el7 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections Jan Tomko Orabug: 29955742 CVE-2019-10161 - domain: Define explicit flags for saved image xml Eric Blake...

openSUSE Security Update : libvirt (openSUSE-2019-1672)

This update for libvirt fixes the following issues : Security issues fixed : - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

SUSE-SU-2015:0241-1 Security update for libvirt

libvirt was updated to fix security issues and bugs. These security issues were fixed: - Fixed denial of service flaw in libvirt's virConnectListAllDomains function CVE-2014-3657. - Information leak with flag VIRDOMAINXMLMIGRATABLE CVE-2014-7823. - local denial of service in qemu driver...

CentOS 7 : libvirt (CESA-2015:0008)

Updated libvirt packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

libvirt: dumpxml: information leak with migratable flag

It was found that when the VIRDOMAINXMLMIGRATABLE flag was used, the QEMU driver implementation of the virDomainGetXMLDesc function could bypass the restrictions of the VIRDOMAINXMLSECURE flag. A remote attacker able to establish a read-only connection to libvirtd could use this flaw to leak...

openSUSE Security Update : libvirt (openSUSE-SU-2015:0008-1)

CVE-2014-8135: libvirt: local denial of service in storage driver 87b9437f-CVE-2014-8135.patch bsc910860 - CVE-2014-8136: libvirt: local denial of service in qemu driver 2bdcd29c-CVE-2014-8136.patch bsc910862 - CVE-2014-8131: Fix possible deadlock and segfault in qemuConnectGetAllDomainStats...

openSUSE Security Update : libvirt (openSUSE-SU-2015:0006-1)

CVE-2014-8136: libvirt: local denial of service in qemu driver 2bdcd29c-CVE-2014-8136.patch bsc910862 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-2. The text description of...

DEBIAN-CVE-2014-8136

The 1 qemuDomainMigratePerform and 2 qemuDomainMigrateFinish2 functions in qemu/qemudriver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors...

CentOS 6 : libvirt (CESA-2014:1873)

Updated libvirt packages that fix three security issues and one bug are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

Moderate: Red Hat Security Advisory: libvirt security and bug fix update

Updated libvirt packages that fix three security issues and one bug are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...