Lucene search
Veracode Vulnerability DatabaseVERACODE:43627HistoryOct 09, 2023 - 11:10 a.m.
Denial Of Service (DoS)
2023-10-0911:10:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
libvirt
vulnerability
denial of service
memory leak
sr-iov
pci device
libvirt is vulnerable to Denial of service . This security flaw occurs due to repeatedly querying an SR-IOV PCI device’s capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct’s g_autoptr cleanup.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libvirt.so | le | 0.9002.0 | |
| libvirt.so | le | 0.9002.0 |
References
access.redhat.com/security/cve/CVE-2023-2700
bugzilla.redhat.com/show_bug.cgi?id=2203653
github.com/libvirt/libvirt/commit/6425a311b8ad19d6f9c0b315bf1d722551ea3585
gitlab.com/libvirt/libvirt/-/commit/6425a311b8ad19d6f9c0b315bf1d722551ea3585#874a1e768ade6ceb4538931cbc06248e73223306
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EVK6JKP36CHE7YAFDJNPNLTW4OWJJ7TQ/
security.netapp.com/advisory/ntap-20230706-0001/
Related
nessus
nessus
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2023:3822)
2023-06-27 00:00:00
RHEL 9 : libvirt (RHSA-2023:3715)
2023-06-22 00:00:00
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2023:4799)
2023-08-29 00:00:00
debiancve
debiancve
CVE-2023-2700
2023-05-15 22:15:12
prion
prion
Design/Logic Flaw
2023-05-15 22:15:00
osv
osv
Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-06-27 00:00:00
Moderate: libvirt security update
2023-06-21 00:00:00
Moderate: libvirt security update
2023-08-31 16:55:40
redhat
redhat
(RHSA-2023:3822) Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-06-27 13:35:33
(RHSA-2023:3715) Moderate: libvirt security update
2023-06-21 13:52:09
oraclelinux
oraclelinux
kvm_utils2 security update
2023-10-19 00:00:00
libvirt security update
2023-06-22 00:00:00
virt:ol and virt-devel:rhel security and bug fix update
2023-07-08 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-2700 affecting package libvirt for versions less than 7.10.0-5
2023-06-14 23:53:35
CVE-2023-2700 affecting package libvirt for versions less than 7.10.0-5
2024-03-19 17:21:46
rocky
rocky
virt:rhel and virt-devel:rhel security and bug fix update
2023-08-31 16:54:34
libvirt security update
2023-08-31 16:55:40
cvelist
cvelist
CVE-2023-2700
2023-05-15 00:00:00
redhatcve
redhatcve
CVE-2023-2700
2023-05-15 04:22:02
almalinux
almalinux
Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-06-27 00:00:00
Moderate: libvirt security update
2023-06-21 00:00:00
cve
cve
CVE-2023-2700
2023-05-15 22:15:12
ubuntucve
ubuntucve
CVE-2023-2700
2023-05-15 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-5.0-0023
2023-06-09 00:00:00
Moderate Photon OS Security Update - PHSA-2023-4.0-0397
2023-05-24 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2023-05-31 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: libvirt-9.0.0-4.fc38
2024-02-11 05:39:44
openvas
openvas
Fedora: Security Advisory for libvirt (FEDORA-2024-2d35e47af3)
2024-02-12 00:00:00
Ubuntu: Security Advisory (USN-6126-1)
2023-06-01 00:00:00