Oval Definition:	oval:org.mitre.oval:tst:38518
Comment: libvirt-python is earlier than 0:0.3.3-14.el5_3.1 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:15191 State: oval:org.mitre.oval:ste:10975 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:8765 V Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions. 2013-04-29 oval:org.mitre.oval:def:10127 V Buffer overflow in the proxyReadClientSocket function in proxy/libvirt_proxy.c in libvirt_proxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to use of uninitialized memory in a validation check. 2013-04-29
BACK