750 matches found
CVE-2020-1701
A flaw was found in the KubeVirt main virt-handler regarding the access permissions of virt-handler. An attacker with access to create VMs could attach any secret within their namespace, allowing them to read the contents of that secret. Mitigation This issue can only be resolved by applying...
kernel security and bug fix update
2.6.32-754.25.1.OL6 - Update genkey Orabug: 25599697 2.6.32-754.25.1 - kvm KVM: VMX: Set VMENTERL1DFLUSHNOTREQUIRED if !X86BUGL1TF Waiman Long 1733760 - virt KVM: coalescedmmio: add bounds checking Bandan Das 1746799 CVE-2019-14821 - virt KVM: MMIO: Lock coalesced device when checking for availab...
ALBA-2019:4274 virt:rhel bug fix update
Bug Fixes: AlmaLinux8.1 Snapshot3 - Passthrough PCI card goes into error state if used in domain kvm BZ1764829 HPE 8.1 BUG Icelake: KVM missing .pconfig BZ1775133 Failed to create a VM via virt-manager or web console in AlmaLinux8.1 snapshot-2.1 BZ1775134 Intel 8.2 Bug Icelake-Server host,...
virt:rhel bug fix update
Bug Fixes: AlmaLinux8.1 Snapshot3 - Passthrough PCI card goes into error state if used in domain kvm BZ1764829 HPE 8.1 BUG Icelake: KVM missing .pconfig BZ1775133 Failed to create a VM via virt-manager or web console in AlmaLinux8.1 snapshot-2.1 BZ1775134 Intel 8.2 Bug Icelake-Server host,...
rhel bug fix update
An update is available for libiscsi, netcf, sgabios. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Bug Fixes: Rocky Linux8.1 Snapshot3 - Passthrough PCI card...
virt-manager security, bug fix, and enhancement update
2.2.1-2.0.1 - Add OL release support to virt-install for OL KVM guest creation Orabug: 26135782 2.2.1-2 - man: virt-install: Fix a couple of launchSecurity related typos rhbz1741846 2.2.1-1 - Rebased to virt-manager-2.2.1 rhbz1726535 - The rebase also fixes the following bugs: rhbz1727881,...
osinfo-db and libosinfo security and bug fix update
gnome-boxes 3.28.5-7 - Bump the release to 3.28.5-7 - Related: 1739897 3.28.5-7 - Filter off unsupported architectures - Related: 1739897 3.28.5-6 - Revert 'Add 3D acceleration option powered by virgl' - Related: 1647004 3.28.5-5 - Add 3D acceleration option powered by virgl - Resolves: 1647004...
Information Disclosure
virt-install is vulnerable to information disclosure. The --unattended option causes plaintext passwords to be leaked through the command line argument...
RHEL 8 : virt-manager (RHSA-2019:3464)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3464 advisory. Virtual Machine Manager virt-manager is a graphical tool for administering virtual machines for KVM, Xen, and Linux Containers LXC. The virt-manager...
virt-install: unattended option leaks password via command line argument
The virt-install utility used to provision new virtual machines, in virt-manager v2.2.0, has introduced an option '--unattended' to create VMs without user interaction. This option accepts guest VM password as command line arguments. An attacker could obtain these passwords though process listing...
Low: Red Hat Security Advisory: virt-manager security, bug fix, and enhancement update
An update for virt-manager is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
ALBA-2019:3683 mingw-virt-viewer and dependencies bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
mingw-virt-viewer and dependencies bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
CentOS 7 : libgovirt / spice-gtk / spice-vdagent / virt-viewer (CESA-2019:2229)
An update for spice-gtk, libgovirt, spice-vdagent, and virt-viewer is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
Scientific Linux Security Update : spice-gtk on SL7.x x86_64 (20190806)
The libgovirt packages contain a library that allows applications to use the oVirt Representational State Transfer REST API to list virtual machines VMs managed by an oVirt instance. The library is also used to get the connection parameters needed to establish a connection to the VMs using Simple...
kernel security and bug fix update
2.6.32-754.18.2.OL6 - Update genkey bug 25599697 2.6.32-754.18.2 - x86 x86/speculation: Enable Spectre v1 swapgs mitigations Waiman Long 1724512 CVE-2019-1125 - x86 x86/speculation: Prepare entry code for Spectre v1 swapgs mitigations Waiman Long 1724512 CVE-2019-1125 2.6.32-754.18.1 - virt xenbu...
spice-gtk security and bug fix update
libgovirt 0.3.4-2 - Parse XML nodes automatically Related: rhbz1427467 - Set detailed error message for async call Related: rhbz1427467 spice-gtk 0.35-4 - Fix bad channel-reset on usbredir Resolves: rhbz1625550 0.35-3 - Fix insufficient encoding checks for LZ Resolves: rhbz1598652 spice-vdagent...
Moderate: Red Hat Security Advisory: spice-gtk security and bug fix update
An update for spice-gtk, libgovirt, spice-vdagent, and virt-viewer is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
Fedora Update for virt-bootstrap FEDORA-2019-2084f9e721
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora Update for virt-bootstrap FEDORA-2019-e465ec0651
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...