Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1708-1
HistoryJan 29, 2013 - 12:00 a.m.

libvirt vulnerabilities

2013-01-2900:00:00
ubuntu.com
43

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.13

Percentile

95.5%

JSON

Releases

  • Ubuntu 12.10
  • Ubuntu 12.04

Packages

  • libvirt - Libvirt virtualization toolkit

Details

Wenlong Huang discovered that libvirt incorrectly handled certain RPC
calls. A remote attacker could exploit this and cause libvirt to crash,
resulting in a denial of service. This issue only affected Ubuntu 12.04
LTS. (CVE-2012-4423)

Tingting Zheng discovered that libvirt incorrectly handled cleanup under
certain error conditions. A remote attacker could exploit this and cause
libvirt to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2013-0170)

OSVersionArchitecturePackageVersionFilename
Ubuntu12.10noarchlibvirt0< 0.9.13-0ubuntu12.2UNKNOWN
Ubuntu12.10noarchlibvirt-bin< 0.9.13-0ubuntu12.2UNKNOWN
Ubuntu12.10noarchlibvirt-dev< 0.9.13-0ubuntu12.2UNKNOWN
Ubuntu12.10noarchlibvirt0-dbg< 0.9.13-0ubuntu12.2UNKNOWN
Ubuntu12.10noarchpython-libvirt< 0.9.13-0ubuntu12.2UNKNOWN
Ubuntu12.04noarchlibvirt0< 0.9.8-2ubuntu17.7UNKNOWN
Ubuntu12.04noarchlibvirt-bin< 0.9.8-2ubuntu17.7UNKNOWN
Ubuntu12.04noarchlibvirt-dev< 0.9.8-2ubuntu17.7UNKNOWN
Ubuntu12.04noarchlibvirt0-dbg< 0.9.8-2ubuntu17.7UNKNOWN
Ubuntu12.04noarchpython-libvirt< 0.9.8-2ubuntu17.7UNKNOWN

Related

nessus 20
securityvulns 2
openvas 36
suse 4
fedora 8
oraclelinux 3
nvd 2
debiancve 2
ubuntucve 2
cvelist 2
prion 2
centos 2
cve 2
veracode 3
redhat 3
gentoo 1
osv 16
nessus
nessus
Ubuntu 12.04 LTS / 12.10 : libvirt vulnerabilities (USN-1708-1)
2013-01-30 00:00:00
openSUSE Security Update : libvirt (openSUSE-SU-2013:0274-1)
2014-06-13 00:00:00
RHEL 6 : libvirt (RHSA-2012:1359)
2012-10-12 00:00:00
securityvulns
securityvulns
libvirt DoS vulnerabilities
2013-02-04 00:00:00
[USN-1708-1] libvirt vulnerabilities
2013-02-04 00:00:00
openvas
openvas
Ubuntu Update for libvirt USN-1708-1
2013-01-31 00:00:00
openSUSE: Security Advisory for libvirt (openSUSE-SU-2013:0274-1)
2013-03-11 00:00:00
Ubuntu: Security Advisory (USN-1708-1)
2013-01-31 00:00:00
suse
suse
libvirt to fix use-after-free in virNetMessageFree() (important)
2013-02-12 10:04:34
Security update for libvirt (important)
2013-02-21 18:04:26
update for libvirt (important)
2013-02-12 10:06:10
fedora
fedora
[SECURITY] Fedora 16 Update: libvirt-0.9.6.4-1.fc16
2013-02-08 02:07:48
[SECURITY] Fedora 17 Update: libvirt-0.9.11.9-1.fc17
2013-02-08 02:28:22
[SECURITY] Fedora 18 Update: libvirt-0.10.2.3-1.fc18
2013-02-05 16:55:04
oraclelinux
oraclelinux
libvirt security and bug fix update
2012-10-11 00:00:00
libvirt security update
2013-01-28 00:00:00
libvirt security, bug fix, and enhancement update
2013-02-27 00:00:00
nvd
nvd
CVE-2012-4423
2012-11-19 12:10:52
CVE-2013-0170
2013-02-08 20:55:01
debiancve
debiancve
CVE-2012-4423
2012-11-19 12:10:52
CVE-2013-0170
2013-02-08 20:55:01
ubuntucve
ubuntucve
CVE-2012-4423
2012-11-19 00:00:00
CVE-2013-0170
2013-01-28 00:00:00
cvelist
cvelist
CVE-2012-4423
2012-11-19 11:00:00
CVE-2013-0170
2013-02-08 20:00:00
prion
prion
Null pointer dereference
2012-11-19 12:10:00
Design/Logic Flaw
2013-02-08 20:55:00
centos
centos
libvirt security update
2012-10-11 22:31:47
libvirt security update
2013-01-28 21:41:46
cve
cve
CVE-2012-4423
2012-11-19 12:10:52
CVE-2013-0170
2013-02-08 20:55:01
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:43
Denial Of Service (DoS)
2019-01-15 08:54:43
Denial Of Service (DoS)
2018-07-25 09:17:44
redhat
redhat
(RHSA-2012:1359) Moderate: libvirt security and bug fix update
2012-10-11 00:00:00
(RHSA-2013:0199) Important: libvirt security update
2013-01-28 00:00:00
(RHSA-2012:1375) Important: rhev-hypervisor6 security and bug fix update
2012-10-18 00:00:00
gentoo
gentoo
libvirt: Multiple vulnerabilities
2013-09-25 00:00:00
osv
osv
CVE-2022-0897
2022-03-25 19:15:10
CVE-2020-25637
2020-10-06 14:15:12
CVE-2021-3667
2022-03-02 23:15:08

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.13

Percentile

95.5%

JSON
Related for USN-1708-1
nessus20securityvulns2openvas36suse4fedora8oraclelinux3nvd2debiancve2ubuntucve2cvelist2prion2centos2cve2veracode3redhat3gentoo1osv16