what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

Ubuntu Security Notice 1008-1: Posted Oct 22, 2010; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1008-1 - It was discovered that libvirt would probe disk backing stores without consulting the defined format for the disk. A privileged attacker in the guest could exploit this to read arbitrary files on the host. This issue only affected Ubuntu 10.04 LTS. By default, guests are confined by an AppArmor profile which provided partial protection against this flaw. It was discovered that libvirt would create new VMs without setting a backing store format. A privileged attacker in the guest could exploit this to read arbitrary files on the host. This issue did not affect Ubuntu 8.04 LTS. In Ubuntu 9.10 and later guests are confined by an AppArmor profile which provided partial protection against this flaw. Jeremy Nickurak discovered that libvirt created iptables rules with too lenient mappings of source ports. A privileged attacker in the guest could bypass intended restrictions to access privileged resources on the host.; tags | advisory, arbitrary; systems | linux, ubuntu; advisories | CVE-2010-2237, CVE-2010-2238, CVE-2010-2239, CVE-2010-2242; SHA-256 | c064ab38868a95bbd59b13f2896302bf08bc54ede0f09b2e2a8362053a7462e5; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 184 files
Ubuntu 64 files
Debian 22 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Google Security Research 6 files
Apple 6 files
malvuln 4 files
Ersin Erenler 4 files
E1.Coders 4 files

Recent News

Juniper Networks Publishes Dozens Of New Security Advisories: Posted Apr 15, 2024; tags | headline, flaw, juniper; Favorite | View

Ransomware Group Claims Theft Of Data From Chipmaker Nexperia: Posted Apr 15, 2024; tags | headline, hacker, malware, data loss, cryptography; Favorite | View

Palo Alto Networks Releases Fixes For Firewall Zero-Day As Attribution Attempts Emerge: Posted Apr 15, 2024; tags | headline, flaw, patch, zero day; Favorite | View

Roku Makes 2FA Mandatory For All After Nearly 600k Accounts Pwned: Posted Apr 15, 2024; tags | headline, hacker, data loss, flaw, password; Favorite | View

Delinea Secret Server Customers Should Apply Latest Patches: Posted Apr 15, 2024; tags | headline, flaw, patch; Favorite | View

LockBit Copycat DarkVault Spurs Rebranding Rumor: Posted Apr 12, 2024; tags | headline, hacker, malware, cybercrime, fraud, cryptography; Favorite | View

French Issue Alerte Rouge After Local Govs Knocked Offline By Cyberattack: Posted Apr 12, 2024; tags | headline, government, denial of service, france; Favorite | View

More Legal Acrimony For Truth Social, As Executive Says He Was Hacked: Posted Apr 12, 2024; tags | headline, hacker, password, social; Favorite | View

Palo Alto Networks Warns Of Exploited Firewall Vulnerability: Posted Apr 12, 2024; tags | headline, hacker, flaw; Favorite | View

Roku Says More Than 500,000 Accounts Impacted In Cyberattack: Posted Apr 12, 2024; tags | headline, hacker, privacy, data loss, flaw; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec