VYPR

Libvirt

by Libvirt

Source repositories

CVEs (83)

  • CVE-2021-3975Aug 23, 2022
    risk 0.00cvss epss 0.01

    A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the…

  • CVE-2021-4147Mar 25, 2022
    risk 0.00cvss epss 0.00

    A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition.

  • CVE-2022-0897Mar 25, 2022
    risk 0.00cvss epss 0.01

    A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method failed to acquire the driver->nwfilters mutex before iterating over virNWFilterObj instances. There was no protection to stop another thread from concurrently modifying the…

  • CVE-2021-3631Mar 2, 2022
    risk 0.00cvss epss 0.00

    A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to…

  • CVE-2021-3667Mar 2, 2022
    risk 0.00cvss epss 0.01

    An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write…

  • CVE-2020-14301May 27, 2021
    risk 0.00cvss epss 0.01

    An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain…

  • CVE-2020-10701May 27, 2021
    risk 0.00cvss epss 0.01

    A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response timeout. This flaw allows read-only connections to adjust the time that libvirt waits for the QEMU guest agent to respond to agent commands. Depending on the timeout value…

  • CVE-2021-3559May 24, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI device and driver that supports mediated devices (e.g., GRID driver). This flaw could be used by an unprivileged client with a read-only connection to…

  • CVE-2020-14339Dec 3, 2020
    risk 0.00cvss epss 0.00

    A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform…

  • CVE-2020-25637Oct 6, 2020
    risk 0.00cvss epss 0.01

    A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the…

  • CVE-2020-10703Jun 2, 2020
    risk 0.00cvss epss 0.02

    A NULL pointer dereference was found in the libvirt API responsible introduced in upstream version 3.10.0, and fixed in libvirt 6.0.0, for fetching a storage pool based on its target path. In more detail, this flaw affects storage pools created without a target path such as…

  • CVE-2020-12430Apr 28, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetStats libvirt API that is responsible for retrieving domain statistics when managing QEMU guests. This flaw…

  • CVE-2019-20485Mar 19, 2020
    risk 0.00cvss epss 0.01

    qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of service (API blockage).

  • CVE-2019-10168Aug 2, 2019
    risk 0.00cvss epss 0.01

    The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe…

  • CVE-2019-10167Aug 2, 2019
    risk 0.00cvss epss 0.01

    The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities.…

  • CVE-2019-10166Aug 2, 2019
    risk 0.00cvss epss 0.00

    It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify managed save state files. If a managed save had already been created by a…

  • CVE-2019-10161Jul 30, 2019
    risk 0.00cvss epss 0.01

    It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the…

  • CVE-2019-10132May 22, 2019
    risk 0.00cvss epss 0.01

    A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative…

  • CVE-2016-10746Apr 18, 2019
    risk 0.00cvss epss 0.02

    libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to be required, a different vulnerability than CVE-2019-3886.

  • CVE-2019-3840Mar 27, 2019
    risk 0.00cvss epss 0.02

    A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash libvirtd and cause a denial of service.

Page 2 of 5