Lucene search
UbuntuUSN-6734-1HistoryApr 15, 2024 - 12:00 a.m.
libvirt vulnerabilities
2024-04-1500:00:00
ubuntu.com
5
libvirt
ubuntu
vulnerabilities
denial of service
api calls
crash
detaching
host interfaces
cve-2024-1441
cve-2024-2494
cve-2024-2496
Releases
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- libvirt - Libvirt virtualization toolkit
Details
Alexander Kuznetsov discovered that libvirt incorrectly handled certain API
calls. An attacker could possibly use this issue to cause libvirt to crash,
resulting in a denial of service. (CVE-2024-1441)
It was discovered that libvirt incorrectly handled certain RPC library API
calls. An attacker could possibly use this issue to cause libvirt to crash,
resulting in a denial of service. (CVE-2024-2494)
It was discovered that libvirt incorrectly handled detaching certain host
interfaces. An attacker could possibly use this issue to cause libvirt to
crash, resulting in a denial of service. (CVE-2024-2496)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | libvirt-daemon | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libnss-libvirt | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libnss-libvirt-dbgsym | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-clients | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-clients-dbgsym | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-clients-qemu | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-daemon-config-network | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-daemon-config-nwfilter | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-daemon-dbgsym | < 9.6.0-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libvirt-daemon-driver-lxc | < 9.6.0-1ubuntu1.1 | UNKNOWN |
Related
nessus
nessus
Amazon Linux 2 : libvirt (ALAS-2024-2513)
2024-04-18 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libvirt (SUSE-SU-2024:1099-1)
2024-04-09 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : libvirt vulnerabilities (USN-6734-1)
2024-04-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6734-1)
2024-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1005-1)
2024-05-07 00:00:00
Ubuntu: Security Advisory (USN-6734-2)
2024-04-30 00:00:00
amazon
amazon
Medium: libvirt
2024-04-11 01:07:00
osv
osv
libvirt vulnerabilities
2024-04-15 16:44:00
Moderate: libvirt security and bug fix update
2024-04-30 00:00:00
Moderate: libvirt security and bug fix update
2024-05-10 14:32:38
almalinux
almalinux
Moderate: libvirt security and bug fix update
2024-04-30 00:00:00
Moderate: libvirt security update
2024-04-30 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2024-04-29 00:00:00
redhat
redhat
(RHSA-2024:2560) Moderate: libvirt security and bug fix update
2024-04-30 11:38:52
(RHSA-2024:2236) Moderate: libvirt security update
2024-04-30 06:15:07
redos
redos
ROS-20240423-02
2024-04-23 00:00:00
ROS-20240415-02
2024-04-15 00:00:00
rocky
rocky
libvirt security and bug fix update
2024-05-10 14:32:38
oraclelinux
oraclelinux
libvirt security and bug fix update
2024-05-07 00:00:00
libvirt security update
2024-05-03 00:00:00
virt:kvm_utils3 security update
2024-04-10 00:00:00
ubuntucve
ubuntucve
cvelist
cvelist
Libvirt: off-by-one error in udevlistinterfacesbystatus()
2024-03-11 13:37:54
Libvirt: null pointer dereference in udevconnectlistallinterfaces()
2024-03-18 12:54:17
Libvirt: negative g_new0 length can lead to unbounded memory allocation
2024-03-21 13:39:08
cbl_mariner
cbl_mariner
CVE-2024-1441 affecting package libvirt for versions less than 7.10.0-8
2024-04-09 20:48:36
CVE-2024-2496 affecting package libvirt for versions less than 7.10.0-8
2024-04-09 20:48:36
CVE-2024-2494 affecting package libvirt for versions less than 7.10.0-9
2024-04-30 01:31:53
fedora
fedora
[SECURITY] Fedora 39 Update: libvirt-9.7.0-3.fc39
2024-03-20 02:04:54
[SECURITY] Fedora 38 Update: libvirt-9.0.0-5.fc38
2024-03-28 01:43:49
prion
prion
Design/Logic Flaw
2024-03-11 14:15:00
veracode
veracode
Off-by-one Error
2024-03-14 06:36:18
NULL Pointer Dereference
2024-04-02 11:21:59
Denial Of Service (DoS)
2024-04-02 07:17:04
githubexploit
githubexploit
Exploit for CVE-2024-1441
2024-04-16 07:14:33
cve
cve
redhatcve
redhatcve
debiancve
debiancve
mageia
mageia
Updated libvirt packages fix security vulnerability
2024-05-09 05:40:29
Updated libvirt packages fix security vulnerability
2024-04-07 01:16:44
debian
debian
[SECURITY] [DLA 3778-1] libvirt security update
2024-04-01 12:19:36