VYPR

rpm package

suse/libvirt&distro=SUSE Linux Micro 6.0

pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Micro%206.0

Vulnerabilities (3)

  • CVE-2025-13193MedNov 17, 2025
    affected < 10.0.0-4.1fixed 10.0.0-4.1

    A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to inspect the guest OS contents. This results in an information disclosure vulnerability.

  • CVE-2025-12748MedNov 11, 2025
    affected < 10.0.0-4.1fixed 10.0.0-4.1

    A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvir

  • CVE-2024-4418MedMay 8, 2024
    affected < 10.0.0-3.1fixed 10.0.0-3.1

    A race condition leading to a stack use-after-free flaw was found in libvirt. Due to a bad assumption in the virNetClientIOEventLoop() method, the `data` pointer to a stack-allocated virNetClientIOEventData structure ended up being used in the virNetClientIOEventFD callback while