Latest redhat libvirt Vulnerabilities

CVE-2023-3750
Libvirt: improper locking in virstoragepoolobjlistsearch may lead to denial of service
Redhat Libvirt
Redhat Enterprise Linux=9.0
ubuntu/libvirt<9.0.0-2ubuntu1.2
debian/libvirt<=9.0.0-4
CVE-2023-2700
A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtual...
Redhat Libvirt=4.5.0
Fedoraproject Fedora=38
Redhat Enterprise Linux=8.0
Redhat Enterprise Linux=9.0
redhat/libvirt<9.3.0
ubuntu/libvirt<8.0.0-1ubuntu7.5
and 4 more
CVE-2022-0897
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method failed to acquire the driver->nwfilters mutex before iterating over virNWFilterObj instances. There was no ...
redhat/libvirt<0:8.5.0-7.el9_1
Redhat Libvirt<=1.1.1
NetApp ONTAP Select Deploy administration utility
redhat/libvirt 8.0.0<8
ubuntu/libvirt<4.0.0-1ubuntu8.21
ubuntu/libvirt<6.0.0-0ubuntu8.16
and 3 more
CVE-2021-4147
A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition.
Redhat Libvirt<2.33.0
Fedoraproject Fedora=35
NetApp ONTAP Select Deploy administration utility
ubuntu/libvirt<4.0.0-1ubuntu8.21
ubuntu/libvirt<6.0.0-0ubuntu8.16
ubuntu/libvirt<7.6.0-0ubuntu1.2
and 3 more
CVE-2021-3975
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. T...
Redhat Libvirt<7.1.0
Canonical Ubuntu Linux=21.10
Fedoraproject Fedora=35
Redhat Enterprise Linux=8.0
Redhat Enterprise Linux Eus=8.6
Redhat Enterprise Linux For Ibm Z Systems=8.0
and 32 more
CVE-2021-3667
A flaw was found in the libvirt virStoragePoolLookupByTargetPath API. The storagePoolLookupByTargetPath() function does not properly release a locked object (virStoragePoolObj) on ACL permission failu...
Redhat Libvirt<=7.5.0
Redhat Enterprise Linux=8.0
NetApp ONTAP Select Deploy administration utility
ubuntu/libvirt<6.0.0-0ubuntu8.16
ubuntu/libvirt<7.6.0-0ubuntu3
ubuntu/libvirt<7.6.0-1
and 1 more
CVE-2021-3631
A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the brea...
Redhat Libvirt<7.5.0
Redhat Openshift Container Platform=4.8
Redhat Enterprise Linux=8.0
NetApp ONTAP Select Deploy administration utility
ubuntu/libvirt<6.0.0-0ubuntu8.16
ubuntu/libvirt<7.6.0-1
and 7 more
CVE-2020-25637
A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects ...
redhat/libvirt<0:4.5.0-36.el7_9.3
Redhat Libvirt<6.8.0
openSUSE Leap=15.1
openSUSE Leap=15.2
redhat/libvirt<6.8.0
ubuntu/libvirt<6.8.0-1
and 3 more
CVE-2020-14339
A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mappe...
Redhat Libvirt>=6.2.0<6.7.0
Redhat Enterprise Linux=8.0
CVE-2020-12430
A libvirt flaw affecting the domstats command was reported internally. This bug may allow a user on a read-only connection to cause a memory leak in domstats, resulting in a potential denial of servic...
Redhat Libvirt>=4.10.0<6.1.0
Redhat Enterprise Linux=8.0
ubuntu/libvirt<5.4.0-0ubuntu5.4
ubuntu/libvirt<6.0.0-0ubuntu6
redhat/libvirt<6.1.0
debian/libvirt<=5.0.0-4+deb10u1
CVE-2020-14301
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows ...
Redhat Libvirt>=6.2.0<6.3.0
Redhat Enterprise Linux=8.0
Redhat Enterprise Linux Eus=8.4
Redhat Enterprise Linux For Ibm Z Systems=8.0
Redhat Enterprise Linux For Ibm Z Systems Eus=8.4
Redhat Enterprise Linux For Power Little Endian=8.0
and 13 more
CVE-2020-10701
A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response timeout. This flaw allows read-only connections to adjust the time that libvirt waits for the...
Redhat Libvirt<6.2.0
redhat/libvirt<6.2.0
CVE-2020-10703
A NULL pointer dereference was found in the libvirt API responsible introduced in upstream version 3.10.0, and fixed in libvirt 6.0.0, for fetching a storage pool based on its target path. In more det...
redhat/libvirt<0:4.5.0-36.el7
Redhat Libvirt>=3.10.0<6.0.0
ubuntu/libvirt<4.0.0-1ubuntu8.17
ubuntu/libvirt<5.4.0-0ubuntu5.4
ubuntu/libvirt<6.0.0-2
redhat/libvirt<6.0.0
and 1 more
CVE-2019-20485
qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of service (API blockage).
redhat/libvirt<6.0.0
redhat/libvirt<0:4.5.0-36.el7
debian/libvirt<=5.0.0-4+deb10u1
debian/libvirt<=5.6.0-2<=5.6.0-3
Redhat Libvirt<6.0.0
Debian Debian Linux=8.0
and 3 more
CVE-2019-10168
The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emul...
redhat/libvirt<0:4.5.0-10.el7_6.12
redhat/redhat-release-virtualization-host<0:4.3.4-1.el7e
redhat/redhat-virtualization-host<0:4.3.4-20190620.3.el7_6
Redhat Libvirt>=4.0.0<4.10.1
Redhat Libvirt>=5.0.0<5.4.1
Redhat Enterprise Linux=7.0
and 16 more
CVE-2019-10167
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since...
redhat/libvirt<0:4.5.0-10.el7_6.12
redhat/redhat-release-virtualization-host<0:4.3.4-1.el7e
redhat/redhat-virtualization-host<0:4.3.4-20190620.3.el7_6
Redhat Libvirt>=4.0.0<4.10.1
Redhat Libvirt>=5.0.0<5.4.1
Redhat Enterprise Linux=7.0
and 19 more
CVE-2019-10161
It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with...
redhat/libvirt<0:0.10.2-64.el6_10.2
redhat/libvirt<0:4.5.0-10.el7_6.12
redhat/redhat-release-virtualization-host<0:4.3.4-1.el7e
redhat/redhat-virtualization-host<0:4.3.4-20190620.3.el7_6
Redhat Libvirt<4.10.1
Redhat Libvirt>=5.0.0<5.4.1
and 22 more
CVE-2019-10166
It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify ma...
redhat/libvirt<0:4.5.0-10.el7_6.12
redhat/redhat-release-virtualization-host<0:4.3.4-1.el7e
redhat/redhat-virtualization-host<0:4.3.4-20190620.3.el7_6
Redhat Libvirt>=4.0.0<4.10.1
Redhat Libvirt>=5.0.0<5.4.1
Redhat Enterprise Linux=7.0
and 17 more
CVE-2019-10132
A vulnerability was found in libvirt &gt;= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to conn...
Redhat Libvirt<=4.1.0
Fedoraproject Fedora
ubuntu/libvirt<4.6.0-2ubuntu3.7
ubuntu/libvirt<5.0.0-1ubuntu2.3
debian/libvirt
CVE-2016-10746
Redhat Libvirt<1.3.1
Debian Debian Linux=8.0
CVE-2019-3886
A vulnerability was found in libvirt versions &gt;= 4.8.0. An information exposure allows to retrieve the guest hostname under readonly mode References: <a class="bz_bug_link bz_secure ...
Redhat Libvirt>=4.8.0<5.3.0
openSUSE Leap=42.3
Fedoraproject Fedora=29
Fedoraproject Fedora=30
ubuntu/libvirt<5.4.0-0ubuntu1
ubuntu/libvirt<5.0.0-1ubuntu2.3
and 5 more
CVE-2019-3840
A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash lib...
redhat/libvirt<5.0.0
Redhat Libvirt<5.0.0
openSUSE Leap=15.0
openSUSE Leap=42.3
CVE-2017-2635
A NULL pointer deference flaw was found in the way libvirt from 2.5.0 to 3.0.0 handled empty drives. A remote authenticated attacker could use this flaw to crash libvirtd daemon resulting in denial of...
Redhat Libvirt>=2.5.0<=3.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203