Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2020-0283)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2020.0283

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2020-0283)

Resumen: The remote host is missing an update for the 'libvirt' package(s) announced via the MGASA-2020-0283 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libvirt' package(s) announced via the MGASA-2020-0283 advisory.

Vulnerability Insight:
Updated libvirt packages fix security vulnerability:

A flaw was found in the way the libvirtd daemon issued the 'suspend'
command to a QEMU guest-agent running inside a guest, where it holds
a monitor job while issuing the 'suspend' command to a guest-agent.
A malicious guest-agent may use this flaw to block the libvirt daemon
indefinitely, resulting in a denial of service (CVE-2019-20485).

Affected Software/OS:
'libvirt' package(s) on Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
2.7

CVSS Vector:
AV:A/AC:L/Au:S/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-20485
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5GE6ISYUL3CIWO3FQRUGMKTKP2NYED2/
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953078
https://bugzilla.redhat.com/show_bug.cgi?id=1809740
https://security-tracker.debian.org/tracker/CVE-2019-20485
https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1730509.html

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2020.0283
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2020-0283)
Resumen:	The remote host is missing an update for the 'libvirt' package(s) announced via the MGASA-2020-0283 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libvirt' package(s) announced via the MGASA-2020-0283 advisory. Vulnerability Insight: Updated libvirt packages fix security vulnerability: A flaw was found in the way the libvirtd daemon issued the 'suspend' command to a QEMU guest-agent running inside a guest, where it holds a monitor job while issuing the 'suspend' command to a guest-agent. A malicious guest-agent may use this flaw to block the libvirt daemon indefinitely, resulting in a denial of service (CVE-2019-20485). Affected Software/OS: 'libvirt' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 2.7 CVSS Vector: AV:A/AC:L/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-20485 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5GE6ISYUL3CIWO3FQRUGMKTKP2NYED2/ https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953078 https://bugzilla.redhat.com/show_bug.cgi?id=1809740 https://security-tracker.debian.org/tracker/CVE-2019-20485 https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1730509.html
Copyright	Copyright (C) 2022 Greenbone AG