ALSA-2024:4757

Source
https://errata.almalinux.org/9/ALSA-2024-4757.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:4757.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2024:4757
Related
Published
2024-07-23T00:00:00Z
Modified
2024-07-25T08:13:20Z
Summary
Moderate: libvirt security update
Details

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems.

Security Fix(es):

  • libvirt: stack use-after-free in virNetClientIOEventLoop() (CVE-2024-4418)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:9 / libvirt

Package

Name
libvirt

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-client

Package

Name
libvirt-client

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-client-qemu

Package

Name
libvirt-client-qemu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon

Package

Name
libvirt-daemon

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-common

Package

Name
libvirt-daemon-common

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-config-network

Package

Name
libvirt-daemon-config-network

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-config-nwfilter

Package

Name
libvirt-daemon-config-nwfilter

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-interface

Package

Name
libvirt-daemon-driver-interface

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-network

Package

Name
libvirt-daemon-driver-network

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-nodedev

Package

Name
libvirt-daemon-driver-nodedev

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-nwfilter

Package

Name
libvirt-daemon-driver-nwfilter

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-qemu

Package

Name
libvirt-daemon-driver-qemu

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-secret

Package

Name
libvirt-daemon-driver-secret

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage

Package

Name
libvirt-daemon-driver-storage

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-core

Package

Name
libvirt-daemon-driver-storage-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-disk

Package

Name
libvirt-daemon-driver-storage-disk

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-iscsi

Package

Name
libvirt-daemon-driver-storage-iscsi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-logical

Package

Name
libvirt-daemon-driver-storage-logical

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-mpath

Package

Name
libvirt-daemon-driver-storage-mpath

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-rbd

Package

Name
libvirt-daemon-driver-storage-rbd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-driver-storage-scsi

Package

Name
libvirt-daemon-driver-storage-scsi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-kvm

Package

Name
libvirt-daemon-kvm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-lock

Package

Name
libvirt-daemon-lock

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-log

Package

Name
libvirt-daemon-log

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-plugin-lockd

Package

Name
libvirt-daemon-plugin-lockd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-plugin-sanlock

Package

Name
libvirt-daemon-plugin-sanlock

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-daemon-proxy

Package

Name
libvirt-daemon-proxy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-devel

Package

Name
libvirt-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-docs

Package

Name
libvirt-docs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-libs

Package

Name
libvirt-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1

AlmaLinux:9 / libvirt-nss

Package

Name
libvirt-nss

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-6.6.el9_4.alma.1