Test ID:	1.3.6.1.4.1.25623.1.0.121032
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201309-18
Summary:	Gentoo Linux Local Security Checks GLSA 201309-18
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201309-18 Vulnerability Insight: An error in the virNetMessageFree() function in rpc/virnetserverclient.c can lead to a use-after-free. Additionally, a socket leak in the remoteDispatchStoragePoolListAllVolumes command can lead to file descriptor exhaustion. Solution: Update the affected packages to the latest available version. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0170 1028047 http://www.securitytracker.com/id/1028047 52001 http://secunia.com/advisories/52001 52003 http://secunia.com/advisories/52003 57578 http://www.securityfocus.com/bid/57578 89644 http://osvdb.org/89644 FEDORA-2013-1626 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098398.html FEDORA-2013-1642 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098370.html FEDORA-2013-1644 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098326.html RHSA-2013:0199 http://rhn.redhat.com/errata/RHSA-2013-0199.html SUSE-SU-2013:0320 http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00016.html USN-1708-1 http://www.ubuntu.com/usn/USN-1708-1 http://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=46532e3e8ed5f5a736a02f67d6c805492f9ca720 http://libvirt.org/news.html http://wiki.libvirt.org/page/Maintenance_Releases https://bugzilla.redhat.com/show_bug.cgi?id=893450 libvirt-virnetmessagefree-code-exec(81552) https://exchange.xforce.ibmcloud.com/vulnerabilities/81552 openSUSE-SU-2013:0274 http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html openSUSE-SU-2013:0275 http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00002.html Common Vulnerability Exposure (CVE) ID: CVE-2013-1962 1028577 http://www.securitytracker.com/id/1028577 53440 http://secunia.com/advisories/53440 53475 http://secunia.com/advisories/53475 59937 http://www.securityfocus.com/bid/59937 93451 http://osvdb.org/93451 FEDORA-2013-8635 http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106906.html FEDORA-2013-8681 http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106921.html RHSA-2013:0831 http://rhn.redhat.com/errata/RHSA-2013-0831.html USN-1895-1 http://www.ubuntu.com/usn/USN-1895-1 [libvir-list] 20130516 [libvirt] [PATCH] daemon: fix leak after listing all volumes https://www.redhat.com/archives/libvir-list/2013-May/msg01222.html [oss-security] 20130516 CVE-2013-1962 libvirt: DoS (max count of open files exhaustion) due sockets leak in the storage pool http://www.openwall.com/lists/oss-security/2013/05/16/9 http://libvirt.org/git/?p=libvirt.git%3Ba=commit%3Bh=ca697e90d5bd6a6dfb94bfb6d4438bdf9a44b739 https://bugzilla.redhat.com/show_bug.cgi?id=953107 libvirt-cve20131962-dos(84341) https://exchange.xforce.ibmcloud.com/vulnerabilities/84341 openSUSE-SU-2013:0885 http://lists.opensuse.org/opensuse-updates/2013-06/msg00022.html
Copyright	Copyright (C) 2015 Eero Volotinen

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.