Количество 15
Количество 15
CVE-2024-2494
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.
CVE-2024-2494
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.
CVE-2024-2494
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.
CVE-2024-2494
CVE-2024-2494
A flaw was found in the RPC library APIs of libvirt. The RPC server de ...
SUSE-SU-2024:1100-1
Security update for libvirt
SUSE-SU-2024:1083-1
Security update for libvirt
SUSE-SU-2024:1078-1
Security update for libvirt
GHSA-h9fq-4hj4-g596
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.
ELSA-2024-3253
ELSA-2024-3253: virt:ol and virt-devel:rhel security update (MODERATE)
BDU:2024-02380
Уязвимость функции g_new0() библиотеки управления виртуализацией Libvirt, позволяющая нарушителю вызвать отказ в обслуживании
RLSA-2024:2560
Moderate: libvirt security and bug fix update
ELSA-2024-2560
ELSA-2024-2560: libvirt security and bug fix update (MODERATE)
SUSE-SU-2024:1099-1
Security update for libvirt
ROS-20240423-02
Множественные уязвимости libvirt
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-2494 A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash. | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
 | CVE-2024-2494 A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash. | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
 | CVE-2024-2494 A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash. | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
 | CVSS3: 6.2 | 0% Низкий | около 1 года назад | |
| CVE-2024-2494 A flaw was found in the RPC library APIs of libvirt. The RPC server de ... | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
 | SUSE-SU-2024:1100-1 Security update for libvirt | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:1083-1 Security update for libvirt | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:1078-1 Security update for libvirt | 0% Низкий | около 1 года назад | |
| GHSA-h9fq-4hj4-g596 A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash. | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
| ELSA-2024-3253 ELSA-2024-3253: virt:ol and virt-devel:rhel security update (MODERATE) | около 1 года назад | ||
 | BDU:2024-02380 Уязвимость функции g_new0() библиотеки управления виртуализацией Libvirt, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.2 | 0% Низкий | больше 1 года назад |
 | RLSA-2024:2560 Moderate: libvirt security and bug fix update | около 1 года назад | ||
| ELSA-2024-2560 ELSA-2024-2560: libvirt security and bug fix update (MODERATE) | около 1 года назад | ||
| SUSE-SU-2024:1099-1 Security update for libvirt | около 1 года назад | ||
 | ROS-20240423-02 Множественные уязвимости libvirt | CVSS3: 6.2 | около 1 года назад |
Уязвимостей на страницу