Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2280-1:ECE34
HistoryJul 19, 2011 - 1:27 a.m.

[SECURITY] [DSA 2280-1] libvirt security update

2011-07-1901:27:20
lists.debian.org
15

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

8.1

Confidence

Low

EPSS

0.022

Percentile

89.6%

JSON

Debian Security Advisory DSA-2280-1 [email protected]
http://www.debian.org/security/ Steffen Joeris
July 19, 2011 http://www.debian.org/security/faq

Package : libvirt
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2011-2511 CVE-2011-1486
Debian Bugs : 633630 623222

It was discovered that libvirt, a library for interfacing with different
virtualization systems, is prone to an integer overflow (CVE-2011-2511).
Additionally, the stable version is prone to a denial of service,
because its error reporting is not thread-safe (CVE-2011-1486).

For the stable distribution (squeeze), these problems have been fixed in
version 0.8.3-5+squeeze2.

For the oldstable distribution (lenny), this problem has been fixed in
version 0.4.6-10+lenny2.

For the testing distribution (wheezy), these problems will fixed soon.

For the unstable distribution (sid), these problems have been fixed in
version 0.9.2-7).

We recommend that you upgrade your libvirt packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian6i386libvirt0< 0.8.3-5+squeeze2libvirt0_0.8.3-5+squeeze2_i386.deb
Debian6s390libvirt-bin< 0.8.3-5+squeeze2libvirt-bin_0.8.3-5+squeeze2_s390.deb
Debian5mipslibvirt0-dbg< 0.4.6-10+lenny2libvirt0-dbg_0.4.6-10+lenny2_mips.deb
Debian6powerpclibvirt-bin< 0.8.3-5+squeeze2libvirt-bin_0.8.3-5+squeeze2_powerpc.deb
Debian5powerpcpython-libvirt< 0.4.6-10+lenny2python-libvirt_0.4.6-10+lenny2_powerpc.deb
Debian5sparcpython-libvirt< 0.4.6-10+lenny2python-libvirt_0.4.6-10+lenny2_sparc.deb
Debian5powerpclibvirt-dev< 0.4.6-10+lenny2libvirt-dev_0.4.6-10+lenny2_powerpc.deb
Debian5i386libvirt0< 0.4.6-10+lenny2libvirt0_0.4.6-10+lenny2_i386.deb
Debian6armellibvirt0< 0.8.3-5+squeeze2libvirt0_0.8.3-5+squeeze2_armel.deb
Debian6s390libvirt-dev< 0.8.3-5+squeeze2libvirt-dev_0.8.3-5+squeeze2_s390.deb
Rows per page:
1-10 of 1091

Related

nessus 34
openvas 32
debian 1
securityvulns 4
osv 17
fedora 5
gentoo 1
redhat 5
cve 2
centos 2
veracode 2
ubuntucve 2
nvd 2
debiancve 2
prion 2
oraclelinux 4
ubuntu 2
cvelist 2
nessus
nessus
Debian DSA-2280-1 : libvirt - several vulnerabilities
2011-07-20 00:00:00
GLSA-201202-07 : libvirt: Multiple vulnerabilities
2012-02-28 00:00:00
Ubuntu 10.04 LTS / 10.10 / 11.04 : libvirt vulnerability (USN-1180-1)
2011-07-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 2280-1 (libvirt)
2011-08-03 00:00:00
Debian: Security Advisory (DSA-2280-1)
2011-08-03 00:00:00
Fedora Update for libvirt FEDORA-2011-9062
2011-07-27 00:00:00
debian
debian
[BSA-052] Security Update for libvirt
2011-11-11 11:47:13
securityvulns
securityvulns
[SECURITY] [DSA 2280-1] libvirt security update
2011-07-22 00:00:00
libvirt integer overflow
2011-07-22 00:00:00
libvirt security vulnerabilities
2011-06-19 00:00:00
osv
osv
libvirt - several
2011-07-19 00:00:00
CVE-2022-0897
2022-03-25 19:15:10
CVE-2020-10703
2020-06-02 13:15:10
fedora
fedora
[SECURITY] Fedora 14 Update: libvirt-0.8.3-10.fc14
2011-07-22 19:34:03
[SECURITY] Fedora 15 Update: libvirt-0.8.8-4.fc15
2011-04-15 21:28:20
[SECURITY] Fedora 13 Update: libvirt-0.8.2-6.fc13
2011-04-18 21:23:20
gentoo
gentoo
libvirt: Multiple vulnerabilities
2012-02-27 00:00:00
redhat
redhat
(RHSA-2011:1019) Moderate: libvirt security, bug fix, and enhancement update
2011-07-21 00:00:00
(RHSA-2011:1197) Moderate: libvirt security and bug fix update
2011-08-23 00:00:00
(RHSA-2011:0478) Moderate: libvirt security update
2011-05-02 00:00:00
cve
cve
CVE-2011-2511
2011-08-10 20:55:01
CVE-2011-1486
2011-05-31 20:55:02
centos
centos
libvirt security update
2011-09-01 16:11:34
libvirt security update
2011-05-04 12:38:33
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:05
Denial Of Service (DoS)
2020-04-10 00:56:35
ubuntucve
ubuntucve
CVE-2011-2511
2011-07-12 00:00:00
CVE-2011-1486
2011-05-31 00:00:00
nvd
nvd
CVE-2011-2511
2011-08-10 20:55:01
CVE-2011-1486
2011-05-31 20:55:02
debiancve
debiancve
CVE-2011-2511
2011-08-10 20:55:01
CVE-2011-1486
2011-05-31 20:55:02
prion
prion
Integer overflow
2011-08-10 20:55:00
Code injection
2011-05-31 20:55:00
oraclelinux
oraclelinux
libvirt security and bug fix update
2011-08-23 00:00:00
libvirt security update
2011-05-02 00:00:00
libvirt security and bug fix update
2011-05-02 00:00:00
ubuntu
ubuntu
libvirt vulnerability
2011-07-28 00:00:00
libvirt vulnerabilities
2011-06-16 00:00:00
cvelist
cvelist
CVE-2011-2511
2011-08-10 20:00:00
CVE-2011-1486
2011-05-31 20:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

8.1

Confidence

Low

EPSS

0.022

Percentile

89.6%

JSON
Related for DEBIAN:DSA-2280-1:ECE34
nessus34openvas32debian1securityvulns4osv17fedora5gentoo1redhat5cve2centos2veracode2ubuntucve2nvd2debiancve2prion2oraclelinux4ubuntu2cvelist2