| Bug | Description |
|---|
| CVE-2018-6764 | util/virlog.c in libvirt does not properly determine the hostname on ... |
| CVE-2018-5748 | qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of ... |
| CVE-2018-1064 | libvirt version before 4.2.0-rc1 is vulnerable to a resource ... |
| CVE-2017-2635 | A NULL pointer deference flaw was found in the way libvirt from 2.5.0 ... |
| CVE-2017-1000256 | libvirt version 2.3.0 and later is vulnerable to a bad default ... |
| CVE-2016-5008 | libvirt before 2.0.0 improperly disables password checking when the ... |
| CVE-2015-5313 | Directory traversal vulnerability in the ... |
| CVE-2015-5247 | The virStorageVolCreateXML API in libvirt 1.2.14 through 1.2.19 allows ... |
| CVE-2015-0236 | libvirt before 1.2.12 allow remote authenticated users to obtain the ... |
| CVE-2014-8136 | The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 ... |
| CVE-2014-8135 | The storageVolUpload function in storage/storage_driver.c in libvirt ... |
| CVE-2014-8131 | The qemu implementation of virConnectGetAllDomainStats in libvirt ... |
| CVE-2014-7823 | The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote ... |
| CVE-2014-5177 | libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access ... |
| CVE-2014-3657 | The virDomainListPopulate function in conf/domain_conf.c in libvirt ... |
| CVE-2014-3633 | The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt ... |
| CVE-2014-1447 | Race condition in the virNetServerClientStartKeepAlive function in ... |
| CVE-2014-0179 | libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a ... |
| CVE-2014-0028 | libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to ... |
| CVE-2013-7336 | The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in ... |
| CVE-2013-6458 | Multiple race conditions in the (1) virDomainBlockStats, (2) ... |
| CVE-2013-6457 | The libxlDomainGetNumaParameters function in the libxl driver ... |
| CVE-2013-6456 | The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 ... |
| CVE-2013-6436 | The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt ... |
| CVE-2013-5651 | The virBitmapParse function in util/virbitmap.c in libvirt before ... |
| CVE-2013-4401 | The virConnectDomainXMLToNative API function in libvirt 1.1.0 through ... |
| CVE-2013-4400 | virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to ... |
| CVE-2013-4399 | The remoteClientFreeFunc function in daemon/remote.c in libvirt before ... |
| CVE-2013-4311 | libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x ... |
| CVE-2013-4297 | The virFileNBDDeviceAssociate function in util/virfile.c in libvirt ... |
| CVE-2013-4296 | The remoteDispatchDomainMemoryStats function in daemon/remote.c in ... |
| CVE-2013-4292 | libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of ... |
| CVE-2013-4291 | The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, ... |
| CVE-2013-4239 | The xenDaemonListDefinedDomains function in xen/xend_internal.c in ... |
| CVE-2013-4154 | The qemuAgentCommand function in libvirt before 1.1.1, when a guest ... |
| CVE-2013-4153 | Double free vulnerability in the qemuAgentGetVCPUs function in ... |
| CVE-2013-2230 | The qemu driver (qemu/qemu_driver.c) in libvirt before 1.1.1 allows ... |
| CVE-2013-2218 | Double free vulnerability in the virConnectListAllInterfaces method in ... |
| CVE-2013-1962 | The remoteDispatchStoragePoolListAllVolumes function in the storage ... |
| CVE-2013-1766 | libvirt 1.0.2 and earlier sets the group owner to kvm for device ... |
| CVE-2013-0170 | Use-after-free vulnerability in the virNetMessageFree function in ... |
| CVE-2012-4423 | The virNetServerProgramDispatchCall function in libvirt before 0.10.2 ... |
| CVE-2012-3445 | The virTypedParameterArrayClear function in libvirt 0.9.13 does not ... |
| CVE-2012-2693 | libvirt, possibly before 0.9.12, does not properly assign USB devices ... |
| CVE-2011-4600 | The networkReloadIptablesRules function in network/bridge_driver.c in ... |
| CVE-2011-2511 | Integer overflow in libvirt before 0.9.3 allows remote authenticated ... |
| CVE-2011-2178 | The virSecurityManagerGetPrivateData function in ... |
| CVE-2011-1486 | libvirtd in libvirt before 0.9.0 does not use thread-safe error ... |
| CVE-2011-1146 | libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly ... |
| CVE-2010-2242 | Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with ... |
| CVE-2010-2239 | Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images ... |
| CVE-2010-2238 | Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into ... |
| CVE-2010-2237 | Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing ... |
| CVE-2009-0036 | Buffer overflow in the proxyReadClientSocket function in ... |
| CVE-2008-5086 | Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a ... |