UBUNTU-CVE-2023-2700

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2023-2700

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-2700.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-2700

Related

Published

2023-05-15T22:15:00Z

Modified

2023-05-15T22:15:00Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.

References

Affected packages

Ubuntu:22.04:LTS / libvirt

Package

Name: libvirt
Purl: pkg:deb/ubuntu/libvirt?arch=src?distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0.0-1ubuntu7.5

Affected versions

7.*

7.6.0-0ubuntu1

7.6.0-0ubuntu3

8.*

8.0.0-1ubuntu3

8.0.0-1ubuntu4

8.0.0-1ubuntu5

8.0.0-1ubuntu6

8.0.0-1ubuntu7

8.0.0-1ubuntu7.1

8.0.0-1ubuntu7.2

8.0.0-1ubuntu7.3

8.0.0-1ubuntu7.4

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libnss-libvirt"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libnss-libvirt-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-clients"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-clients-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-config-network"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-config-nwfilter"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-lxc"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-lxc-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-qemu"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-qemu-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-gluster"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-gluster-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-iscsi-direct"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-iscsi-direct-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-rbd"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-rbd-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-zfs"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-zfs-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-vbox"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-vbox-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-xen"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-xen-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system-systemd"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system-sysv"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-dev"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-doc"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-login-shell"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-login-shell-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-sanlock"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-sanlock-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-wireshark"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-wireshark-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt0"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt0-dbgsym"
        }
    ]
}