from 0, < 0.9.12.3-1+deb7u2
from 0, < 2.0.0-1
from 0, < 1.2.9-9+deb8u3
HIGH8.8A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process.
from 0, < 6.6.0-1
HIGH8.8A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units.
from 0, < 5.0.0-3
HIGH8.1libvirt - security update
from 0, < 3.8.0-3
HIGH8.1libvirt - security update
from 0, < 3.0.0-4+deb9u1
HIGH7.8The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept…
from 0, < 5.0.0-4
HIGH7.8The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument t…
from 0, < 5.0.0-4
HIGH7.8It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainMan…
from 0, < 5.0.0-4
HIGH7.8libvirt - security update
from 0, < 5.0.0-4
HIGH7.8libvirt - security update
from 0, < 1.2.9-9+deb8u7
HIGH7.8libvirt - security update
from 0, < 3.0.0-4+deb9u4
HIGH7.8util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an…
from 0, < 4.0.0-2
HIGH7.5libvirt - security update
from 0, < 1.2.9-9+deb8u6
HIGH7.5libvirt - security update
from 0, < 1.3.1-1
HIGH7.5libvirt - security update
from 0, < 4.1.0-1
HIGH7.5libvirt - security update
from 0, < 0.9.12.3-1+deb7u3
HIGH7.5libvirt - security update
from 0, < 1.2.9-9+deb8u5
HIGH7.5qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
from 0, < 4.0.0-1
MEDIUM6.7libvirt - security update
from 0, < 3.0.0-4+deb9u5
MEDIUM6.7libvirt - security update
from 0, < 6.8.0-1
MEDIUM6.5A use-after-free flaw was found in libvirt.
from 0, < 7.0.0-3+deb11u3
MEDIUM6.5A flaw was found in the libvirt libxl driver.
from 0, < 7.0.0-3+deb11u3
MEDIUM6.5An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt.
from 0, < 7.0.0-3+deb11u3
MEDIUM6.5A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response timeout.
from 0, < 6.0.0-7
MEDIUM6.5libvirt - security update
from 0, < 6.0.0-2
MEDIUM6.5libvirt - security update
from 0, < 5.0.0-4+deb10u2
MEDIUM6.5An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0.
from 0, < 6.4.0-2
MEDIUM6.5A NULL pointer deference flaw was found in the way libvirt from 2.5.0 to 3.0.0 handled empty drives.
from 0, < 3.0.0-3
MEDIUM6.5The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows remote authenticated users with a read-write connection to cause a d…
from 0, < 1.2.20-1
MEDIUM6.3A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels.
from 0, < 7.0.0-3+deb11u3
MEDIUM6.3A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU ag…
from 0, < 5.0.0-1
MEDIUM6.2A flaw was found in libvirt.
from 0, < 10.7.0-1
MEDIUM6.2A race condition leading to a stack use-after-free flaw was found in libvirt.
from 0, < 10.3.0-1
MEDIUM6.2A flaw was found in the RPC library APIs of libvirt.
from 0, < 7.0.0-3+deb11u3
MEDIUM5.9The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridg…
from 0, < 0.9.9-1
MEDIUM5.7qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers…
from 0, < 6.0.0-2
MEDIUM5.5A flaw was found in libvirt.
from 0, < 11.3.0-3+deb13u2
MEDIUM5.5A flaw was discovered in libvirt in the XML file processing.
from 0
MEDIUM5.5A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt.
from 0, < 7.0.0-3+deb11u3
MEDIUM5.5An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size o…
from 0, < 7.0.0-3+deb11u3
MEDIUM5.5A vulnerability was found in libvirt.
from 0, < 9.0.0-4
MEDIUM5.5libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to…
from 0, < 2.2.0-1
MEDIUM5.4An incorrect permissions check was discovered in libvirt 4.8.0 and above.
from 0, < 5.0.0-2
MEDIUM5.3A flaw was found in libvirt.
from 0, < 9.0.0-4+deb12u1
MEDIUM4.3A flaw was found in the libvirt nwfilter driver.
from 0, < 7.0.0-3+deb11u3
LOW2.5Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in libvirt, when fin…
from 0, < 1.3.0-1
—libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1…
from 0, < 1.2.9-8
—The qemu implementation of virConnectGetAllDomainStats in libvirt before 1.2.11 does not properly handle locks when a domain is skipped due…
from 0, < 1.2.9-7
—The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when…
from 0, < 1.2.9-7
—The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows loca…
from 0, < 1.2.9-7
—The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes ev…
from 0, < 1.1.4-1
—The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_M…
from 0, < 1.2.9-4
—The virDomainListPopulate function in conf/domain_conf.c in libvirt before 1.2.9 does not clean up the lock on the list of domains, which a…
from 0, < 1.2.9-1
—The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1.2.9, when a disk has been hot-plugged or removed from the l…
from 0, < 1.2.8-2
—libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a cra…
from 0, < 1.2.4-1
—libvirt - security update
from 0, < 0.9.12.3-1+deb7u1
—libvirt - security update
from 0, < 1.2.4-1
—The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing s…
from 0, < 1.1.4-1
—The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainD…
from 0, < 1.2.3-1
—Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of servic…
from 0, < 1.2.1-1
—libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs…
from 0, < 1.2.1-1
—libvirt - several
from 0, < 0.9.12.3-1
—libvirt - several
from 0, < 1.2.1-1
—The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize t…
from 0, < 1.2.1-1
—The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests…
from 0, < 1.2.0-1
—virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecifie…
from 0, < 1.1.4-1
—The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:w…
from 0, < 1.1.4-1
—libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x before 0.9.12.2 allows local users to bypass intended access restric…
from 0, < 1.1.3~rc1-1
—The virBitmapParse function in util/virbitmap.c in libvirt before 1.1.2 allows context-dependent attackers to cause a denial of service (ou…
from 0, < 1.1.2~rc1-1
—The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial o…
from 0, < 1.1.2-2
—libvirt - programming error
from 0, < 0.9.12-11+deb7u4
—libvirt - programming error
from 0, < 1.1.4-1
—libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameter…
from 0, < 1.1.2~rc2-1
—The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not…
from 0, < 1.1.2-2
—The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of ser…
from 0, < 1.1.2~rc1-1
—The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of s…
from 0, < 1.1.0-4
—Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to…
from 0, < 1.1.0-4
—The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash)…
from 0, < 1.1.0-3
—Double free vulnerability in the virConnectListAllInterfaces method in interface/interface_backend_netcf.c in libvirt 1.0.6 allows remote a…
from 0, < 1.1.0-1
—libvirt - files and device nodes ownership change to kvm group
from 0, < 0.8.3-5+squeeze4
—libvirt - files and device nodes ownership change to kvm group
from 0, < 0.9.12-8
—Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.1…
from 0, < 0.9.12-6
—The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service (NULL pointer de…
from 0, < 0.9.12-5
—The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might…
from 0, < 0.9.12-4
—libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and pr…
from 0, < 0.9.12-1
—Integer overflow in libvirt before 0.9.3 allows remote authenticated users to cause a denial of service (libvirtd crash) and possibly execu…
from 0, < 0.9.2-7
—The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a s…
from 0, < 0.9.1-2
—libvirt - several
from 0, < 0.8.3-5+squeeze2
—libvirt - several
from 0, < 0.9.0-1
—libvirt - privilege escalation
from 0, < 0.8.8-3
—libvirt - privilege escalation
from 0, < 0.8.3-5+squeeze1
—Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users t…
from 0, < 0.8.3-1
—Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest…
from 0, < 0.8.3-1
—Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store fo…
from 0, < 0.8.3-1
—Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which m…
from 0, < 0.8.3-1
—Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privi…
from 0, < 0.5.1-7
—Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended acce…
from 0, < 0.4.6-10