Search CVE reports

Toggle filters

21 – 30 of 93 results

CVE-2019-3886

Low priority
Fixed

An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which could lead to potentially disclosing unintended information or denial...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Fixed Not affected
Show less packages

CVE-2019-3840

Medium priority
Fixed

A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash libvirtd and cause a denial of service.

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Fixed
Show less packages

CVE-2019-20485

Low priority
Ignored

qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers to cause a denial of service (API blockage).

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Not affected Not affected
Show less packages

CVE-2019-11091

Medium priority

Some fixes available 87 of 92

Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a...

160 affected packages

linux-aws-5.8, linux-azure-5.8, linux-gcp-5.8, linux-oracle-5.8, linux-riscv-5.8...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-aws-5.8 Not in release Not in release Not affected Not in release
linux-azure-5.8 Not in release Not in release Not affected Not in release
linux-gcp-5.8 Not in release Not in release Not affected Not in release
linux-oracle-5.8 Not in release Not in release Not affected Not in release
linux-riscv-5.8 Not in release Not in release Not affected Not in release
linux-oem-5.6 Not in release Not in release Not affected Not in release
linux-hwe-5.11 Not in release Not in release Not affected Not in release
linux-riscv-5.11 Not in release Not in release Not affected Not in release
linux-aws-5.11 Not in release Not in release Not affected Not in release
linux-oem-5.13 Not in release Not in release Not affected Not in release
linux-azure-5.11 Not in release Not in release Not affected Not in release
linux-bluefield Not in release Not in release Not affected Not in release
linux-nvidia Not affected Not affected Not in release Not in release
linux-aws-5.3 Not in release Not in release Not in release Not affected
linux-aws-5.4 Not in release Not in release Not in release Not affected
linux-aws-5.0 Not in release Not in release Not in release Not affected
linux-gcp-5.11 Not in release Not in release Not affected Not in release
linux-oem-5.14 Not in release Not in release Not affected Not in release
linux Not affected Not affected Not affected Fixed
linux-gcp Not affected Not affected Not affected Fixed
linux-riscv Not affected Not affected Not affected Not in release
linux-intel-5.13 Not in release Not in release Not affected Not in release
linux-azure-5.13 Not in release Not in release Not affected Not in release
linux-gkeop-5.15 Not in release Not in release Not affected Not in release
linux-aws-5.19 Not in release Not affected Not in release Not in release
linux-gcp-5.19 Not in release Not affected Not in release Not in release
linux-riscv-5.19 Not in release Not affected Not in release Not in release
linux-hwe-5.8 Not in release Not in release Not affected Not in release
linux-gke-5.4 Not in release Not in release Not in release Not affected
linux-gkeop-5.4 Not in release Not in release Not in release Not affected
linux-aws-5.13 Not in release Not in release Not affected Not in release
linux-hwe-5.13 Not in release Not in release Not affected Not in release
linux-allwinner Not in release Not in release Not in release Not in release
linux-allwinner-5.19 Not in release Not affected Not in release Not in release
linux-ibm Not affected Not affected Not affected Not in release
linux-starfive Not in release Not in release Not in release Not in release
linux-starfive-5.19 Not in release Not affected Not in release Not in release
linux-fips Not in release Not affected Not affected Not affected
linux-gcp-5.13 Not in release Not in release Not affected Not in release
linux-azure-fde Not in release Not affected Not affected Not in release
linux-ibm-5.4 Not in release Not in release Not in release Not affected
linux-azure Not affected Not affected Not affected Fixed
linux-aws Not affected Not affected Not affected Fixed
linux-dell300x Not in release Not in release Not in release Not affected
linux-gkeop Not affected Not affected Not affected Not in release
linux-oem-5.10 Not in release Not in release Not affected Not in release
linux-oem-6.0 Not in release Not affected Not in release Not in release
linux-aws-6.2 Not in release Not affected Not in release Not in release
linux-hwe-6.2 Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-6.2 Not in release Not affected Not in release Not in release
linux-ibm-5.15 Not in release Not in release Not affected Not in release
linux-gcp-6.2 Not in release Not affected Not in release Not in release
linux-azure-6.2 Not in release Not affected Not in release Not in release
linux-azure-fde-6.2 Not in release Not affected Not in release Not in release
intel-microcode Not affected Not affected Not affected Fixed
linux-aws-hwe Not in release Not in release Not in release Not in release
linux-azure-edge Not in release Not in release Not in release Fixed
linux-euclid Not in release Not in release Not in release Not in release
linux-flo Not in release Not in release Not in release Not in release
linux-gcp-edge Not in release Not in release Not in release Fixed
linux-gke Not affected Not affected Not affected Not in release
linux-gke-4.15 Not in release Not in release Not in release Fixed
linux-gke-5.0 Not in release Not in release Not in release Not affected
linux-goldfish Not in release Not in release Not in release Not in release
linux-hwe Not in release Not in release Not in release Fixed
libvirt Fixed Fixed Fixed Fixed
linux-azure-4.15 Not in release Not in release Not in release Not affected
linux-gcp-5.4 Not in release Not in release Not in release Not affected
linux-lowlatency Not affected Not affected Not in release Not in release
linux-oem-5.17 Not in release Not affected Not in release Not in release
linux-intel-iotg Not in release Not affected Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Not affected Not in release
linux-lowlatency-hwe-5.15 Not in release Not in release Not affected Not in release
linux-hwe-5.15 Not in release Not in release Not affected Not in release
linux-aws-5.15 Not in release Not in release Not affected Not in release
linux-oracle-5.15 Not in release Not in release Not affected Not in release
linux-azure-5.15 Not in release Not in release Not affected Not in release
linux-gcp-5.15 Not in release Not in release Not affected Not in release
linux-gke-5.15 Not in release Not in release Not affected Not in release
linux-azure-fde-5.15 Not in release Not in release Ignored Not in release
linux-oem Not in release Not in release Not in release Fixed
linux-raspi2 Not in release Not in release Ignored Fixed
linux-snapdragon Not in release Not in release Not in release Fixed
linux-oem-6.1 Not in release Not affected Not in release Not in release
linux-hwe-5.19 Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-5.19 Not in release Not affected Not in release Not in release
linux-azure-5.19 Not in release Not affected Not in release Not in release
linux-iot Not in release Not in release Not affected Not in release
linux-azure-fde-5.19 Not in release Not affected Not in release Not in release
linux-riscv-5.15 Not in release Not in release Not affected Not in release
linux-xilinx-zynqmp Not in release Not affected Not affected Not in release
linux-azure-5.3 Not in release Not in release Not in release Not affected
linux-azure-5.4 Not in release Not in release Not in release Not affected
linux-gcp-4.15 Not in release Not in release Not in release Not affected
linux-gcp-5.3 Not in release Not in release Not in release Not affected
linux-gke-5.3 Not in release Not in release Not in release Not affected
linux-hwe-5.4 Not in release Not in release Not in release Not affected
linux-hwe-edge Not in release Not in release Not in release Not affected
linux-kvm Not in release Not affected Not affected Fixed
linux-lts-trusty Not in release Not in release Not in release Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-mako Not in release Not in release Not in release Not in release
linux-oem-osp1 Not in release Not in release Not in release Not affected
linux-oracle Not affected Not affected Not affected Fixed
linux-oracle-5.0 Not in release Not in release Not in release Not affected
linux-oracle-5.11 Not in release Not in release Not affected Not in release
linux-oracle-5.13 Not in release Not in release Not affected Not in release
linux-oracle-5.3 Not in release Not in release Not in release Not affected
linux-oracle-5.4 Not in release Not in release Not in release Not affected
linux-raspi Not affected Not affected Not affected Not in release
linux-raspi-5.4 Not in release Not in release Not in release Not affected
linux-raspi2-5.3 Not in release Not in release Not in release Not affected
qemu Fixed Fixed Fixed Fixed
qemu-kvm Not in release Not in release Not in release Not in release
linux-nvidia-6.2 Not in release Not affected Not in release Not in release
linux-starfive-6.2 Not in release Not affected Not in release Not in release
linux-laptop Not in release Not in release Not in release Not in release
linux-oem-6.5 Not in release Not affected Not in release Not in release
linux-hwe-6.5 Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-6.5 Not in release Not affected Not in release Not in release
linux-riscv-6.5 Not in release Not affected Not in release Not in release
linux-starfive-6.5 Not in release Not affected Not in release Not in release
linux-aws-6.5 Not in release Not affected Not in release Not in release
linux-azure-6.5 Not in release Not affected Not in release Not in release
linux-gcp-6.5 Not in release Not affected Not in release Not in release
linux-oracle-6.5 Not in release Not affected Not in release Not in release
linux-nvidia-6.5 Not in release Not affected Not in release Not in release
linux-aws-fips Not in release Not affected Not affected Not affected
linux-azure-fips Not in release Not affected Not affected Not affected
linux-gcp-fips Not in release Not affected Not affected Not affected
linux-oem-6.8 Not affected Not in release Not in release Not in release
linux-intel Not affected Not in release Not in release Not in release
linux-nvidia-6.8 Not in release Not affected Not in release Not in release
linux-nvidia-lowlatency Not affected Not in release Not in release Not in release
linux-hwe-6.8 Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-6.8 Not in release Not affected Not in release Not in release
linux-riscv-6.8 Not in release Not affected Not in release Not in release
linux-intel-iot-realtime Not in release Not affected Not in release Not in release
linux-raspi-realtime Not affected Not in release Not in release Not in release
linux-realtime Not affected Not affected Not in release Not in release
linux-aws-6.8 Not in release Not affected Not in release Not in release
linux-gcp-6.8 Not in release Not affected Not in release Not in release
linux-oracle-6.8 Not in release Not affected Not in release Not in release
linux-azure-6.8 Not in release Not affected Not in release Not in release
linux-oem-6.11 Not affected Not in release Not in release Not in release
linux-hwe-6.11 Ignored Not in release Not in release Not in release
linux-hwe-6.14 Not affected Not in release Not in release Not in release
linux-aws-6.14 Not affected Not in release Not in release Not in release
linux-azure-6.11 Ignored Not in release Not in release Not in release
linux-azure-nvidia Not affected Not in release Not in release Not in release
linux-gcp-6.11 Ignored Not in release Not in release Not in release
linux-gcp-6.14 Not affected Not in release Not in release Not in release
linux-ibm-6.8 Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-6.11 Ignored Not in release Not in release Not in release
linux-nvidia-tegra Not affected Not affected Not in release Not in release
linux-nvidia-tegra-5.15 Not in release Not in release Not affected Not in release
linux-nvidia-tegra-igx Not in release Not affected Not in release Not in release
linux-oracle-6.14 Not affected Not in release Not in release Not in release
linux-oem-6.14 Not affected Not in release Not in release Not in release
linux-riscv-6.14 Not affected Not in release Not in release Not in release
Show all 160 packages Show less packages

CVE-2019-10168

Medium priority
Fixed

The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Not affected
Show less packages

CVE-2019-10167

Medium priority
Fixed

The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Fixed
Show less packages

CVE-2019-10166

Medium priority
Fixed

It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify managed save state files. If a...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Fixed
Show less packages

CVE-2019-10161

Medium priority
Fixed

It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Fixed Fixed
Show less packages

CVE-2019-10132

Medium priority
Fixed

A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or...

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt Not affected
Show less packages

CVE-2018-6764

Low priority
Fixed

util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.

1 affected package

libvirt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libvirt
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON