Showing 1 - 6 of 6

CVE-2018-5748

Status Candidate

Overview

qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.

Red Hat Security Advisory 2018-1929-01: Posted Jun 20, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-1929-01 - The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. Issues addressed include a resource exhaustion vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2018-1064, CVE-2018-5748; SHA-256 | a22fcf91b1a25f0218b6cf05d957422e71b31f08cce0e0c611b3582aa4c39494; Download | Favorite | View

Red Hat Security Advisory 2018-1396-01: Posted May 15, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-1396-01 - The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. Issues addressed include a resource exhaustion vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2018-1064, CVE-2018-5748; SHA-256 | 1a37de7638de63ae4974186c8864d405fa655d2fb9b209f0f39bffdb250557aa; Download | Favorite | View

Gentoo Linux Security Advisory 201804-08: Posted Apr 9, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201804-8 - Multiple vulnerabilities have been found in QEMU, the worst of which may allow an attacker to execute arbitrary code. Versions less than 2.11.1-r1 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2017-13672, CVE-2017-15124, CVE-2017-16845, CVE-2017-17381, CVE-2017-18030, CVE-2017-18043, CVE-2017-5715, CVE-2018-5683, CVE-2018-5748, CVE-2018-7550; SHA-256 | c0cac496b3a521f32ee1d0f652fd3355c954a2f4b374b783fe8e570dad67297a; Download | Favorite | View

Gentoo Linux Security Advisory 201804-07: Posted Apr 9, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201804-7 - Multiple vulnerabilities have been discovered in libvirt, the worst of which may result in the execution of arbitrary commands. Versions less than 4.1.0 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2018-5748, CVE-2018-6764; SHA-256 | cb3f93c9b3e0a479b010f996073edf699e0fa20b3ce9bb33683651094342f1ff; Download | Favorite | View

Debian Security Advisory 4137-1: Posted Mar 14, 2018; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4137-1 - Several vulnerabilities were discovered in Libvirt, a virtualisation abstraction library.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2018-1064, CVE-2018-5748, CVE-2018-6764; SHA-256 | 2e28cb54079712a1c15c0369a23af4ed15a476264ecf631fe44b7482bc005d57; Download | Favorite | View

Ubuntu Security Notice USN-3576-1: Posted Feb 20, 2018; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3576-1 - Vivian Zhang and Christoph Anton Mitterer discovered that libvirt incorrectly disabled password authentication when the VNC password was set to an empty string. A remote attacker could possibly use this issue to bypass authentication, contrary to expectations. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. Daniel P. Berrange discovered that libvirt incorrectly handled validating SSL/TLS certificates. A remote attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 17.10. Various other issues were also addressed.; tags | advisory, remote; systems | linux, ubuntu; advisories | CVE-2016-5008, CVE-2017-1000256, CVE-2018-5748, CVE-2018-6764; SHA-256 | 90c6d4cdd362e55904c6d76f4118ef039e8e85b0aab04a6669ee178da97eb658; Download | Favorite | View

Page 1 of 1 Back 1 Next