VYPR

rpm package

opensuse/libvirt&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/libvirt&distro=openSUSE%20Tumbleweed

Vulnerabilities (64)

  • CVE-2014-0179Aug 3, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read block and hang) via a crafted XML document containing an XML external entity declaration in conjunction with an entity reference to the (1) virConnectCompareCPU or (2) virConnectBaselin

  • CVE-2013-6456Apr 15, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; (2) create arbitrary nodes (mknod) via the virDomainDeviceAttach API and a sy

  • CVE-2014-1447Jan 24, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.

  • CVE-2014-0028Jan 24, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs and obtain sensitive domain object information via a request to the (1) virConnectDomainEventRegister and (2) virConnectDomainEventRegisterA

  • CVE-2013-6458Jan 24, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify that the disk is attached, which allows remote read-only attackers to cause a de

  • CVE-2013-6457Jan 24, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of service (invalid free operation and crash) or possibly execute arbitrary code via a

  • CVE-2013-6436Jan 7, 2014
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to cause a denial of service (NULL pointer dereference and libvirtd crash) via a gues

  • CVE-2013-4400Dec 9, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecified environment variables or command-line arguments.

  • CVE-2013-4401Nov 2, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these detai

  • CVE-2013-4311Oct 3, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x before 0.9.12.2 allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition in pkcheck via a (1) setuid process or (2) pkexec process, a related iss

  • CVE-2013-4297Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via unspecified vectors.

  • CVE-2013-4296Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) v

  • CVE-2013-4239Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the virConnectListDefinedDomains API function.

  • CVE-2013-4154Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to "agent based cpu (un)plug," as demonstrated by the "virsh vcpucount foobar

  • CVE-2013-4153Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command.

  • CVE-2013-2230Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via unspecified vectors involving "multiple events registration."

  • CVE-2013-2218Sep 30, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    Double free vulnerability in the virConnectListAllInterfaces method in interface/interface_backend_netcf.c in libvirt 1.0.6 allows remote attackers to cause a denial of service (libvirtd crash) via a filtering flag that causes an interface to be skipped, as demonstrated by the "v

  • CVE-2013-1962May 29, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The remoteDispatchStoragePoolListAllVolumes function in the storage pool manager in libvirt 1.0.5 allows remote attackers to cause a denial of service (file descriptor consumption) via a large number of requests "to list all volumes for the particular pool."

  • CVE-2013-0170Feb 8, 2013
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of service (crash) and possibly execute arb

  • CVE-2012-3445Aug 7, 2012
    affected < 2.5.0-1.1fixed 2.5.0-1.1

    The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might allow remote authenticated users to cause a denial of service (libvirtd crash) via an RPC command with nparams set to zero, which triggers a