|Max CVSS||5.0||Min CVSS||4.6||Total Count||3|
|ID||CVSS||Summary||Last (major) update||Published|
libvirt version before 4.2.0-rc1 is vulnerable to a resource exhaustion as a result of an incomplete fix for CVE-2018-5748 that affects QEMU monitor but now also triggered via QEMU guest agent.
|28-03-2018 - 14:29||28-03-2018 - 14:29|
util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.
|23-02-2018 - 12:29||23-02-2018 - 12:29|
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
|04-01-2018 - 08:29||04-01-2018 - 08:29|