pkg:Debian/libvirt
99 total CVEsCRITICAL3HIGH17MEDIUM27LOW1
✅ Check your installed version
All known vulnerabilities
- from 0, < 0.9.12.3-1+deb7u2
- from 0, < 2.0.0-1
- from 0, < 1.2.9-9+deb8u3
- HIGH8.8CVE-2020-14339A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process.from 0, < 6.6.0-1
- HIGH8.8CVE-2019-10132A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units.from 0, < 5.0.0-3
- from 0, < 3.8.0-3
- from 0, < 3.0.0-4+deb9u1
- HIGH7.8CVE-2019-10168The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept…from 0, < 5.0.0-4
- HIGH7.8CVE-2019-10167The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument t…from 0, < 5.0.0-4
- HIGH7.8CVE-2019-10166It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainMan…from 0, < 5.0.0-4
- from 0, < 5.0.0-4
- from 0, < 1.2.9-9+deb8u7
- from 0, < 3.0.0-4+deb9u4
- HIGH7.8CVE-2018-6764util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an…from 0, < 4.0.0-2
- from 0, < 1.2.9-9+deb8u6
- from 0, < 1.3.1-1
- from 0, < 4.1.0-1
- from 0, < 0.9.12.3-1+deb7u3
- from 0, < 1.2.9-9+deb8u5
- HIGH7.5CVE-2018-5748qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.from 0, < 4.0.0-1
- from 0, < 3.0.0-4+deb9u5
- from 0, < 6.8.0-1
- from 0, < 7.0.0-3+deb11u3
- from 0, < 7.0.0-3+deb11u3
- MEDIUM6.5CVE-2021-3667An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt.from 0, < 7.0.0-3+deb11u3
- MEDIUM6.5CVE-2020-10701A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response timeout.from 0, < 6.0.0-7
- from 0, < 6.0.0-2
- from 0, < 5.0.0-4+deb10u2
- MEDIUM6.5CVE-2020-12430An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0.from 0, < 6.4.0-2
- MEDIUM6.5CVE-2017-2635A NULL pointer deference flaw was found in the way libvirt from 2.5.0 to 3.0.0 handled empty drives.from 0, < 3.0.0-3
- MEDIUM6.5CVE-2015-5247The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows remote authenticated users with a read-write connection to cause a d…from 0, < 1.2.20-1
- MEDIUM6.3CVE-2021-3631A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels.from 0, < 7.0.0-3+deb11u3
- MEDIUM6.3CVE-2019-3840A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU ag…from 0, < 5.0.0-1
- from 0, < 10.7.0-1
- from 0, < 10.3.0-1
- from 0, < 7.0.0-3+deb11u3
- MEDIUM5.9CVE-2011-4600The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridg…from 0, < 0.9.9-1
- MEDIUM5.7CVE-2019-20485qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query to a guest agent, which allows attackers…from 0, < 6.0.0-2
- from 0, < 11.3.0-3+deb13u2
- from 0
- MEDIUM5.5CVE-2024-2496A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt.from 0, < 7.0.0-3+deb11u3
- MEDIUM5.5CVE-2024-1441An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size o…from 0, < 7.0.0-3+deb11u3
- from 0, < 9.0.0-4
- MEDIUM5.5CVE-2015-5160libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to…from 0, < 2.2.0-1
- from 0, < 5.0.0-2
- from 0, < 9.0.0-4+deb12u1
- from 0, < 7.0.0-3+deb11u3
- LOW2.5CVE-2015-5313Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in libvirt, when fin…from 0, < 1.3.0-1
- —CVE-2015-0236libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1…from 0, < 1.2.9-8
- —CVE-2014-8131The qemu implementation of virConnectGetAllDomainStats in libvirt before 1.2.11 does not properly handle locks when a domain is skipped due…from 0, < 1.2.9-7
- —CVE-2014-8136The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when…from 0, < 1.2.9-7
- —CVE-2014-8135The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does not check a certain return value, which allows loca…from 0, < 1.2.9-7
- —CVE-2013-4399The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes ev…from 0, < 1.1.4-1
- —CVE-2014-7823The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_M…from 0, < 1.2.9-4
- —CVE-2014-3657The virDomainListPopulate function in conf/domain_conf.c in libvirt before 1.2.9 does not clean up the lock on the list of domains, which a…from 0, < 1.2.9-1
- —CVE-2014-3633The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1.2.9, when a disk has been hot-plugged or removed from the l…from 0, < 1.2.8-2
- —CVE-2014-5177libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a cra…from 0, < 1.2.4-1
- from 0, < 0.9.12.3-1+deb7u1
- from 0, < 1.2.4-1
- —CVE-2013-7336The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing s…from 0, < 1.1.4-1
- —CVE-2013-6456The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainD…from 0, < 1.2.3-1
- —CVE-2014-1447Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of servic…from 0, < 1.2.1-1
- —CVE-2014-0028libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs…from 0, < 1.2.1-1
- from 0, < 0.9.12.3-1
- from 0, < 1.2.1-1
- —CVE-2013-6457The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize t…from 0, < 1.2.1-1
- —CVE-2013-6436The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests…from 0, < 1.2.0-1
- —CVE-2013-4400virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecifie…from 0, < 1.1.4-1
- —CVE-2013-4401The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:w…from 0, < 1.1.4-1
- —CVE-2013-4311libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x before 0.9.12.2 allows local users to bypass intended access restric…from 0, < 1.1.3~rc1-1
- —CVE-2013-5651The virBitmapParse function in util/virbitmap.c in libvirt before 1.1.2 allows context-dependent attackers to cause a denial of service (ou…from 0, < 1.1.2~rc1-1
- —CVE-2013-4297The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial o…from 0, < 1.1.2-2
- from 0, < 0.9.12-11+deb7u4
- from 0, < 1.1.4-1
- —CVE-2013-4292libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameter…from 0, < 1.1.2~rc2-1
- —CVE-2013-4291The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not…from 0, < 1.1.2-2
- —CVE-2013-4239The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of ser…from 0, < 1.1.2~rc1-1
- —CVE-2013-4154The qemuAgentCommand function in libvirt before 1.1.1, when a guest agent is not configured, allows remote attackers to cause a denial of s…from 0, < 1.1.0-4
- —CVE-2013-4153Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to…from 0, < 1.1.0-4
- —CVE-2013-2230The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows remote authenticated users to cause a denial of service (daemon crash)…from 0, < 1.1.0-3
- —CVE-2013-2218Double free vulnerability in the virConnectListAllInterfaces method in interface/interface_backend_netcf.c in libvirt 1.0.6 allows remote a…from 0, < 1.1.0-1
- from 0, < 0.8.3-5+squeeze4
- from 0, < 0.9.12-8
- —CVE-2013-0170Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.1…from 0, < 0.9.12-6
- —CVE-2012-4423The virNetServerProgramDispatchCall function in libvirt before 0.10.2 allows remote attackers to cause a denial of service (NULL pointer de…from 0, < 0.9.12-5
- —CVE-2012-3445The virTypedParameterArrayClear function in libvirt 0.9.13 does not properly handle virDomain* API calls with typed parameters, which might…from 0, < 0.9.12-4
- —CVE-2012-2693libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and pr…from 0, < 0.9.12-1
- —CVE-2011-2511Integer overflow in libvirt before 0.9.3 allows remote authenticated users to cause a denial of service (libvirtd crash) and possibly execu…from 0, < 0.9.2-7
- —CVE-2011-2178The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a s…from 0, < 0.9.1-2
- from 0, < 0.8.3-5+squeeze2
- from 0, < 0.9.0-1
- from 0, < 0.8.8-3
- from 0, < 0.8.3-5+squeeze1
- —CVE-2010-2242Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users t…from 0, < 0.8.3-1
- —CVE-2010-2239Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest…from 0, < 0.8.3-1
- —CVE-2010-2238Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store fo…from 0, < 0.8.3-1
- —CVE-2010-2237Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which m…from 0, < 0.8.3-1
- —CVE-2009-0036Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privi…from 0, < 0.5.1-7
- —CVE-2008-5086Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended acce…from 0, < 0.4.6-10