3.3 - CVE-2014-1447

Executive Summary

Informations
Name	CVE-2014-1447	First vendor Publication	2014-01-24
Vendor	Cve	Last vendor Modification	2015-01-03

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	3.3	Attack Range	Adjacent network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	6.5	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1447

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-362	Race Condition

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:22041

Oval ID:	oval:org.mitre.oval:def:22041
Title:	DSA-2846-1 libvirt - several
Description:	Multiple security issues have been found in Libvirt, a virtualization abstraction library.
Family:	unix	Class:	patch
Reference(s):	DSA-2846-1 CVE-2013-6458 CVE-2014-1447	Version:	5
Platform(s):	Debian GNU/Linux 7 Debian GNU/kFreeBSD 7	Product(s):	libvirt
Definition Synopsis:
Debian 7 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND libvirt DPKG is earlier than 0:0.9.12.3-1

Definition Id: oval:org.mitre.oval:def:22368

Oval ID:	oval:org.mitre.oval:def:22368
Title:	USN-2093-1 -- libvirt vulnerabilities
Description:	Several security issues were fixed in libvirt.
Family:	unix	Class:	patch
Reference(s):	USN-2093-1 CVE-2013-6436 CVE-2013-6457 CVE-2013-6458 CVE-2014-0028 CVE-2014-1447	Version:	5
Platform(s):	Ubuntu 13.10 Ubuntu 12.10 Ubuntu 12.04	Product(s):	libvirt
Definition Synopsis:
Ubuntu 13.10 release section Ubuntu 13.10 is installed Packages match section libvirt-bin DPKG is earlier than 0:1.1.1-0ubuntu8.5 AND libvirt0 DPKG is earlier than 0:1.1.1-0ubuntu8.5 AND Ubuntu 12.10 release section Ubuntu 12.10 is installed Packages match section libvirt-bin DPKG is earlier than 0:0.9.13-0ubuntu12.6 AND libvirt0 DPKG is earlier than 0:0.9.13-0ubuntu12.6 AND Ubuntu 12.04 release section Ubuntu 12.04 is installed Packages match section libvirt-bin DPKG is earlier than 0:0.9.8-2ubuntu17.17 AND libvirt0 DPKG is earlier than 0:0.9.8-2ubuntu17.17

Definition Id: oval:org.mitre.oval:def:22528

Oval ID:	oval:org.mitre.oval:def:22528
Title:	RHSA-2014:0103: libvirt security and bug fix update (Moderate)
Description:	Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.
Family:	unix	Class:	patch
Reference(s):	RHSA-2014:0103-00 CESA-2014:0103 CVE-2013-6458 CVE-2014-1447	Version:	21
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	libvirt
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND The operating system installed on the system is CentOS Linux 6.x Packages section libvirt-devel is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-client is earlier than 0:0.10.2-29.el6_5.3 AND libvirt is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-python is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-lock-sanlock is earlier than 0:0.10.2-29.el6_5.3

Definition Id: oval:org.mitre.oval:def:23914

Oval ID:	oval:org.mitre.oval:def:23914
Title:	ELSA-2014:0103: libvirt security and bug fix update (Moderate)
Description:	Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.
Family:	unix	Class:	patch
Reference(s):	ELSA-2014:0103-00 CVE-2013-6458 CVE-2014-1447	Version:	13
Platform(s):	Oracle Linux 6	Product(s):	libvirt
Definition Synopsis:
Oracle Linux 6.x rpm test libvirt-devel is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-client is earlier than 0:0.10.2-29.el6_5.3 AND libvirt is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-python is earlier than 0:0.10.2-29.el6_5.3 AND libvirt-lock-sanlock is earlier than 0:0.10.2-29.el6_5.3

Definition Id: oval:org.mitre.oval:def:25025

Oval ID:	oval:org.mitre.oval:def:25025
Title:	SUSE-SU-2014:0318-1 -- Security update for libvirt
Description:	This update fixes the following one non-security and two security issues with libvirt: * bnc#817407: Fixing device assignment problem with Broadcom 57810 NIC to Guest OS. * bnc#857492: qemu job usage issue in several API leading to libvirtd crash (CVE-2013-6458) * bnc#858817: denial of service with keepalive (CVE-2014-1447)
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2014:0318-1 CVE-2013-6458 CVE-2014-1447	Version:	3
Platform(s):	SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Desktop 11	Product(s):	libvirt
Definition Synopsis:
SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section Operation system section SUSE Linux Enterprise Server 11.x is installed AND SUSE Linux Enterprise Desktop 11.x is installed Packages match section libvirt RPM is earlier than 0:1.0.5.9-0.7.1 AND libvirt-client RPM is earlier than 0:1.0.5.9-0.7.1 AND libvirt-doc RPM is earlier than 0:1.0.5.9-0.7.1 AND libvirt-python RPM is earlier than 0:1.0.5.9-0.7.1 AND libvirt-client-32bit RPM is earlier than 0:1.0.5.9-0.7.1 AND SUSE Linux Enterprise Server 11 release section SUSE Linux Enterprise Server 11.x is installed AND libvirt-lock-sanlock RPM is earlier than 0:1.0.5.9-0.7.1

Definition Id: oval:org.mitre.oval:def:26748

Oval ID:	oval:org.mitre.oval:def:26748
Title:	DEPRECATED: ELSA-2014-0103 -- libvirt security and bug fix update (moderate)
Description:	[0.10.2-29.0.1.el6_5.3] - Replace docs/et.png in tarball with blank image [0.10.2-29.el6_5.3] - qemu: Avoid operations on NULL monitor if VM fails early (rhbz#1055578) - qemu: Do not access stale data in virDomainBlockStats (CVE-2013-6458) - qemu: Avoid using stale data in virDomainGetBlockInfo (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockJobImpl (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockCopy (rhbz#1054804) - qemu: Fix job usage in virDomainGetBlockIoTune (CVE-2013-6458) - Don't crash if a connection closes early (CVE-2014-1447) - Really don't crash if a connection closes early (CVE-2014-1447)
Family:	unix	Class:	patch
Reference(s):	ELSA-2014-0103 CVE-2013-6458 CVE-2014-1447	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	libvirt
Definition Synopsis:
Oracle Linux 6.x Packages match section libvirt is earlier than 0:0.10.2-29.0.1.el6_5.3 AND libvirt-client is earlier than 0:0.10.2-29.0.1.el6_5.3 AND libvirt-devel is earlier than 0:0.10.2-29.0.1.el6_5.3 AND libvirt-python is earlier than 0:0.10.2-29.0.1.el6_5.3

CPE : Common Platform Enumeration

Type	Description	Count
Application	Redhat Libvirt cpe:2.3:a:redhat:libvirt:1.2.0:rc1:::::: cpe:2.3:a:redhat:libvirt:1.2.0:rc2:::::: cpe:2.3:a:redhat:libvirt:1.2.0:-:::::: cpe:2.3:a:redhat:libvirt:1.1.4:rc1:::::: cpe:2.3:a:redhat:libvirt:1.1.4:rc2:::::: cpe:2.3:a:redhat:libvirt:1.1.4:-:::::: cpe:2.3:a:redhat:libvirt:1.1.3.9:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.8:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.7:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.6:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.5:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.4:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.3:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.2:::::::* cpe:2.3:a:redhat:libvirt:1.1.3.1:::::::* cpe:2.3:a:redhat:libvirt:1.1.3:rc1:::::: cpe:2.3:a:redhat:libvirt:1.1.3:rc2:::::: cpe:2.3:a:redhat:libvirt:1.1.3:-:::::: cpe:2.3:a:redhat:libvirt:1.1.2:rc1:::::: cpe:2.3:a:redhat:libvirt:1.1.2:rc2:::::: cpe:2.3:a:redhat:libvirt:1.1.2:-:::::: cpe:2.3:a:redhat:libvirt:1.1.1:rc1:::::: cpe:2.3:a:redhat:libvirt:1.1.1:rc2:::::: cpe:2.3:a:redhat:libvirt:1.1.1:-:::::: cpe:2.3:a:redhat:libvirt:1.1.0:rc1:::::: cpe:2.3:a:redhat:libvirt:1.1.0:rc2:::::: cpe:2.3:a:redhat:libvirt:1.1.0:-:::::: cpe:2.3:a:redhat:libvirt:1.0.6:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.6:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.6:-:::::: cpe:2.3:a:redhat:libvirt:1.0.5.9:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.8:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.7:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.6:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.5:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.4:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.3:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.2:::::::* cpe:2.3:a:redhat:libvirt:1.0.5.1:::::::* cpe:2.3:a:redhat:libvirt:1.0.5:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.5:-:::::: cpe:2.3:a:redhat:libvirt:1.0.4:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.4:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.4:-:::::: cpe:2.3:a:redhat:libvirt:1.0.3:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.3:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.3:-:::::: cpe:2.3:a:redhat:libvirt:1.0.2:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.2:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.2:-:::::: cpe:2.3:a:redhat:libvirt:1.0.1:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.1:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.1:-:::::: cpe:2.3:a:redhat:libvirt:1.0.0:rc1:::::: cpe:2.3:a:redhat:libvirt:1.0.0:rc2:::::: cpe:2.3:a:redhat:libvirt:1.0.0:rc3:::::: cpe:2.3:a:redhat:libvirt:1.0.0:-:::::: cpe:2.3:a:redhat:libvirt:0.9.9:::::::* cpe:2.3:a:redhat:libvirt:0.9.9:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.9:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.8:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.8:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.8:-:::::: cpe:2.3:a:redhat:libvirt:0.9.7:::::::* cpe:2.3:a:redhat:libvirt:0.9.7:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.6.4:::::::* cpe:2.3:a:redhat:libvirt:0.9.6.3:::::::* cpe:2.3:a:redhat:libvirt:0.9.6.2:::::::* cpe:2.3:a:redhat:libvirt:0.9.6.1:::::::* cpe:2.3:a:redhat:libvirt:0.9.6:::::::* cpe:2.3:a:redhat:libvirt:0.9.5:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.5:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.5:rc3:::::: cpe:2.3:a:redhat:libvirt:0.9.5:-:::::: cpe:2.3:a:redhat:libvirt:0.9.4:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.4:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.4:-:::::: cpe:2.3:a:redhat:libvirt:0.9.3:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.3:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.3:-:::::: cpe:2.3:a:redhat:libvirt:0.9.2:::::::* cpe:2.3:a:redhat:libvirt:0.9.13:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.13:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.13:-:::::: cpe:2.3:a:redhat:libvirt:0.9.12.3:::::::* cpe:2.3:a:redhat:libvirt:0.9.12.2:::::::* cpe:2.3:a:redhat:libvirt:0.9.12.1:::::::* cpe:2.3:a:redhat:libvirt:0.9.12:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.12:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.12:-:::::: cpe:2.3:a:redhat:libvirt:0.9.11.9:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.8:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.7:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.6:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.5:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.4:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.3:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.2:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.10:::::::* cpe:2.3:a:redhat:libvirt:0.9.11.1:::::::* cpe:2.3:a:redhat:libvirt:0.9.11:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.11:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.11:-:::::: cpe:2.3:a:redhat:libvirt:0.9.10:rc1:::::: cpe:2.3:a:redhat:libvirt:0.9.10:rc2:::::: cpe:2.3:a:redhat:libvirt:0.9.10:-:::::: cpe:2.3:a:redhat:libvirt:0.9.1:::::::* cpe:2.3:a:redhat:libvirt:0.9.0:::::::* cpe:2.3:a:redhat:libvirt:0.8.8:::::::* cpe:2.3:a:redhat:libvirt:0.8.7:::::::* cpe:2.3:a:redhat:libvirt:0.8.6:::::::* cpe:2.3:a:redhat:libvirt:0.8.5:::::::* cpe:2.3:a:redhat:libvirt:0.8.4:::::::* cpe:2.3:a:redhat:libvirt:0.8.3:::::::* cpe:2.3:a:redhat:libvirt:0.8.2:::::::* cpe:2.3:a:redhat:libvirt:0.8.1:::::::* cpe:2.3:a:redhat:libvirt:0.8.0:::::::* cpe:2.3:a:redhat:libvirt:0.7.7:::::::* cpe:2.3:a:redhat:libvirt:0.7.6:::::::* cpe:2.3:a:redhat:libvirt:0.7.5:::::::* cpe:2.3:a:redhat:libvirt:0.7.4:::::::* cpe:2.3:a:redhat:libvirt:0.7.3:::::::* cpe:2.3:a:redhat:libvirt:0.7.2:::::::* cpe:2.3:a:redhat:libvirt:0.7.1:::::::* cpe:2.3:a:redhat:libvirt:0.7.0:::::::* cpe:2.3:a:redhat:libvirt:0.6.5:::::::* cpe:2.3:a:redhat:libvirt:0.6.4:::::::* cpe:2.3:a:redhat:libvirt:0.6.3:::::::* cpe:2.3:a:redhat:libvirt:0.6.2:::::::* cpe:2.3:a:redhat:libvirt:0.6.1:::::::* cpe:2.3:a:redhat:libvirt:0.6.0:::::::* cpe:2.3:a:redhat:libvirt:0.5.1:::::::* cpe:2.3:a:redhat:libvirt:0.5.0:::::::* cpe:2.3:a:redhat:libvirt:0.4.6:::::::* cpe:2.3:a:redhat:libvirt:0.4.5:::::::* cpe:2.3:a:redhat:libvirt:0.4.4:::::::* cpe:2.3:a:redhat:libvirt:0.4.3:::::::* cpe:2.3:a:redhat:libvirt:0.4.2:::::::* cpe:2.3:a:redhat:libvirt:0.4.1:::::::* cpe:2.3:a:redhat:libvirt:0.4.0:::::::* cpe:2.3:a:redhat:libvirt:0.3.3:::::::* cpe:2.3:a:redhat:libvirt:0.3.2:::::::* cpe:2.3:a:redhat:libvirt:0.3.1:::::::* cpe:2.3:a:redhat:libvirt:0.3.0:::::::* cpe:2.3:a:redhat:libvirt:0.2.3:::::::* cpe:2.3:a:redhat:libvirt:0.2.2:::::::* cpe:2.3:a:redhat:libvirt:0.2.1:::::::* cpe:2.3:a:redhat:libvirt:0.2.0:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.8:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.7:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.6:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.5:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.4:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.3:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.2:::::::* cpe:2.3:a:redhat:libvirt:0.10.2.1:::::::* cpe:2.3:a:redhat:libvirt:0.10.2:rc1:::::: cpe:2.3:a:redhat:libvirt:0.10.2:rc2:::::: cpe:2.3:a:redhat:libvirt:0.10.2:-:::::: cpe:2.3:a:redhat:libvirt:0.10.1:::::::* cpe:2.3:a:redhat:libvirt:0.10.0:rc0:::::: cpe:2.3:a:redhat:libvirt:0.10.0:rc1:::::: cpe:2.3:a:redhat:libvirt:0.10.0:rc2:::::: cpe:2.3:a:redhat:libvirt:0.10.0:-:::::: cpe:2.3:a:redhat:libvirt:0.1.9:::::::* cpe:2.3:a:redhat:libvirt:0.1.8:::::::* cpe:2.3:a:redhat:libvirt:0.1.7:::::::* cpe:2.3:a:redhat:libvirt:0.1.6:::::::* cpe:2.3:a:redhat:libvirt:0.1.5:::::::* cpe:2.3:a:redhat:libvirt:0.1.4:::::::* cpe:2.3:a:redhat:libvirt:0.1.3:::::::* cpe:2.3:a:redhat:libvirt:0.1.11:::::::* cpe:2.3:a:redhat:libvirt:0.1.10:::::::* cpe:2.3:a:redhat:libvirt:0.1.1:::::::* cpe:2.3:a:redhat:libvirt:0.1.0:::::::* cpe:2.3:a:redhat:libvirt:0.0.6:::::::* cpe:2.3:a:redhat:libvirt:0.0.5:::::::* cpe:2.3:a:redhat:libvirt:0.0.4:::::::* cpe:2.3:a:redhat:libvirt:0.0.3:::::::* cpe:2.3:a:redhat:libvirt:0.0.2:::::::* cpe:2.3:a:redhat:libvirt:0.0.1:::::::* cpe:2.3:a:redhat:libvirt::0.9.11.4::::::* cpe:2.3:a:redhat:libvirt::0.9.11::::::* cpe:2.3:a:redhat:libvirt::0.9.11.8::::::* cpe:2.3:a:redhat:libvirt::0.9.11.3::::::* cpe:2.3:a:redhat:libvirt::0.9.11.7::::::* cpe:2.3:a:redhat:libvirt::0.9.11.2::::::* cpe:2.3:a:redhat:libvirt::0.9.11.1::::::* cpe:2.3:a:redhat:libvirt::0.9.11.5::::::* cpe:2.3:a:redhat:libvirt::0.9.11.6::::::* cpe:2.3:a:redhat:libvirt:::::::: cpe:2.3:a:redhat:libvirt:-:::::::*	192

Nessus® Vulnerability Scanner

Date	Description
2014-12-09	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201412-04.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-151.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-154.nasl - Type : ACT_GATHER_INFO
2014-03-03	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libvirt-140211.nasl - Type : ACT_GATHER_INFO
2014-01-31	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-2093-1.nasl - Type : ACT_GATHER_INFO
2014-01-30	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2014-0103.nasl - Type : ACT_GATHER_INFO
2014-01-29	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2014-0103.nasl - Type : ACT_GATHER_INFO
2014-01-29	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2014-0103.nasl - Type : ACT_GATHER_INFO
2014-01-29	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20140128_libvirt_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2014-01-27	Name : The remote Fedora host is missing a security update. File : fedora_2014-1090.nasl - Type : ACT_GATHER_INFO
2014-01-21	Name : The remote Fedora host is missing a security update. File : fedora_2014-1042.nasl - Type : ACT_GATHER_INFO
2014-01-20	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2846.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
CONFIRM	http://libvirt.org/news.html https://bugzilla.redhat.com/show_bug.cgi?id=1047577
DEBIAN	http://www.debian.org/security/2014/dsa-2846
GENTOO	http://security.gentoo.org/glsa/glsa-201412-04.xml
REDHAT	http://rhn.redhat.com/errata/RHSA-2014-0103.html
SECTRACK	http://www.securitytracker.com/id/1029695
SECUNIA	http://secunia.com/advisories/56321 http://secunia.com/advisories/56446 http://secunia.com/advisories/60895
SUSE	http://lists.opensuse.org/opensuse-updates/2014-02/msg00060.html http://lists.opensuse.org/opensuse-updates/2014-02/msg00062.html
UBUNTU	http://www.ubuntu.com/usn/USN-2093-1

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-02-02 01:26:26	Multiple Updates
2024-02-01 12:07:48	Multiple Updates
2023-09-05 12:25:02	Multiple Updates
2023-09-05 01:07:42	Multiple Updates
2023-09-02 12:25:00	Multiple Updates
2023-09-02 01:07:48	Multiple Updates
2023-08-12 12:27:15	Multiple Updates
2023-08-12 01:07:19	Multiple Updates
2023-08-11 12:23:08	Multiple Updates
2023-08-11 01:07:29	Multiple Updates
2023-08-06 12:22:30	Multiple Updates
2023-08-06 01:07:17	Multiple Updates
2023-08-04 12:22:32	Multiple Updates
2023-08-04 01:07:21	Multiple Updates
2023-07-14 12:22:30	Multiple Updates
2023-07-14 01:07:20	Multiple Updates
2023-03-29 01:24:25	Multiple Updates
2023-03-28 12:07:41	Multiple Updates
2022-10-11 12:20:19	Multiple Updates
2022-10-11 01:07:29	Multiple Updates
2021-05-04 12:29:57	Multiple Updates
2021-04-22 01:36:10	Multiple Updates
2020-05-23 01:51:09	Multiple Updates
2020-05-23 00:39:54	Multiple Updates
2019-10-04 12:06:10	Multiple Updates
2019-04-23 12:05:27	Multiple Updates
2016-04-27 00:14:01	Multiple Updates
2015-01-03 09:23:35	Multiple Updates
2014-12-24 09:23:23	Multiple Updates
2014-12-10 13:26:55	Multiple Updates
2014-06-14 13:37:00	Multiple Updates
2014-03-06 13:24:56	Multiple Updates
2014-03-04 13:21:17	Multiple Updates
2014-02-21 13:23:38	Multiple Updates
2014-02-17 11:25:11	Multiple Updates
2014-01-29 21:22:33	Multiple Updates
2014-01-25 13:19:31	Multiple Updates
2014-01-24 21:21:49	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	6
CPE ID(s)	192
Sources(s)	12
Nessus® Exploit(s)	12

	Related
8.5	GLSA-201412-04
6.8	USN-2093-1
6.8	RHSA-2014:0103
6.8	DSA-2846
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 4 more Alert(s)

3.3 - CVE-2014-1447

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU