Action not permitted
Modal body text goes here.
Modal Title
Modal Body
usn-7047-1
Vulnerability from osv_ubuntu
Vladimír Čunát discovered that Knot Resolver incorrectly handled input during DNSSEC validation. A remote attacker could possibly use this issue to bypass certain validations. (CVE-2019-10190)
Vladimír Čunát discovered that Knot Resolver incorrectly handled input during DNSSEC validation. A remote attacker could possibly use this issue to downgrade DNSSEC-secure domains to a DNSSEC-insecure state, resulting in a domain hijacking attack. (CVE-2019-10191)
Vladimír Čunát discovered that Knot Resolver incorrectly handled certain DNS replies with many resource records. An attacker could possibly use this issue to consume system resources, resulting in a denial of service. (CVE-2019-19331)
Lior Shafir, Yehuda Afek, and Anat Bremler-Barr discovered that Knot Resolver incorrectly handled certain queries. A remote attacker could use this issue to perform an amplification attack directed at a target. (CVE-2020-12667)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2019-10190",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-10191",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-19331",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2020-12667",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "3.2.1-3ubuntu2.2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "3.2.1-3ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@3.2.1-3ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.2.1-3ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.2.1-3",
"3.2.1-3ubuntu1",
"3.2.1-3ubuntu2",
"3.2.1-3ubuntu2.1"
]
}
],
"aliases": [],
"details": "Vladim\u00edr \u010cun\u00e1t discovered that Knot Resolver incorrectly handled input\nduring DNSSEC validation. A remote attacker could possibly use this issue\nto bypass certain validations. (CVE-2019-10190)\n\nVladim\u00edr \u010cun\u00e1t discovered that Knot Resolver incorrectly handled input\nduring DNSSEC validation. A remote attacker could possibly use this issue\nto downgrade DNSSEC-secure domains to a DNSSEC-insecure state, resulting \nin a domain hijacking attack. (CVE-2019-10191)\n\nVladim\u00edr \u010cun\u00e1t discovered that Knot Resolver incorrectly handled certain \nDNS replies with many resource records. An attacker could possibly use \nthis issue to consume system resources, resulting in a denial of service.\n(CVE-2019-19331)\n\nLior Shafir, Yehuda Afek, and Anat Bremler-Barr discovered that Knot\nResolver incorrectly handled certain queries. A remote attacker could \nuse this issue to perform an amplification attack directed at a target.\n(CVE-2020-12667)\n",
"id": "USN-7047-1",
"modified": "2026-04-27T14:11:37Z",
"published": "2024-10-01T06:53:06Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-10190"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-10191"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-19331"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-12667"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "knot-resolver vulnerabilities",
"upstream": [
"UBUNTU-CVE-2019-10190",
"UBUNTU-CVE-2019-10191",
"UBUNTU-CVE-2019-19331",
"UBUNTU-CVE-2020-12667"
]
}
ubuntu-cve-2019-10190
Vulnerability from osv_ubuntu
A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass DNSSEC validation for non-existence answer. NXDOMAIN answer would get passed through to the client even if its DNSSEC validation failed, instead of sending a SERVFAIL packet. Caching is not affected by this particular bug but see CVE-2019-10191.
| URL | Type | |
|---|---|---|
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "3.2.1-3ubuntu2.2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "3.2.1-3ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@3.2.1-3ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.2.1-3ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.2.1-3",
"3.2.1-3ubuntu1",
"3.2.1-3ubuntu2",
"3.2.1-3ubuntu2.1"
]
}
],
"aliases": [],
"details": "A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass DNSSEC validation for non-existence answer. NXDOMAIN answer would get passed through to the client even if its DNSSEC validation failed, instead of sending a SERVFAIL packet. Caching is not affected by this particular bug but see CVE-2019-10191.",
"id": "UBUNTU-CVE-2019-10190",
"modified": "2025-09-08T16:45:22Z",
"published": "2019-07-10T12:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-10190"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10190"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2019-10190"
]
}
ubuntu-cve-2019-10191
Vulnerability from osv_ubuntu
A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains to DNSSEC-insecure state, opening possibility of domain hijack using attacks against insecure DNS protocol.
| URL | Type | |
|---|---|---|
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "1.0.0~beta3-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@1.0.0~beta3-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.0.0~beta2-123-g6134920-1",
"1.0.0~beta3-1",
"1.0.0~beta3-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "libkres6",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@2.1.1-1ubuntu0.1~esm2?arch=source\u0026distro=esm-apps/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.3-1",
"1.5.0-4",
"1.5.1-1",
"1.5.2-1",
"2.0.0-3",
"2.1.0-1",
"2.1.0-2",
"2.1.1-1",
"2.1.1-1ubuntu0.1~esm2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "3.2.1-3ubuntu2.2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "3.2.1-3ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@3.2.1-3ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.2.1-3ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.2.1-3",
"3.2.1-3ubuntu1",
"3.2.1-3ubuntu2",
"3.2.1-3ubuntu2.1"
]
}
],
"aliases": [],
"details": "A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains to DNSSEC-insecure state, opening possibility of domain hijack using attacks against insecure DNS protocol.",
"id": "UBUNTU-CVE-2019-10191",
"modified": "2026-04-22T07:38:57Z",
"published": "2019-07-10T12:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-10191"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10191"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2019-10191"
]
}
ubuntu-cve-2019-19331
Vulnerability from osv_ubuntu
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "1.0.0~beta3-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@1.0.0~beta3-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.0.0~beta2-123-g6134920-1",
"1.0.0~beta3-1",
"1.0.0~beta3-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "libkres6",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@2.1.1-1ubuntu0.1~esm2?arch=source\u0026distro=esm-apps/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.3-1",
"1.5.0-4",
"1.5.1-1",
"1.5.2-1",
"2.0.0-3",
"2.1.0-1",
"2.1.0-2",
"2.1.1-1",
"2.1.1-1ubuntu0.1~esm2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "3.2.1-3ubuntu2.2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "3.2.1-3ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@3.2.1-3ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.2.1-3ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.2.1-3",
"3.2.1-3ubuntu1",
"3.2.1-3ubuntu2",
"3.2.1-3ubuntu2.1"
]
}
],
"aliases": [],
"details": "knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might be processed very inefficiently, in extreme cases taking even several CPU seconds for each such uncached message. For example, a few thousand A records can be squashed into one DNS message (limit is 64kB).",
"id": "UBUNTU-CVE-2019-19331",
"modified": "2026-04-22T07:39:11Z",
"published": "2019-12-16T16:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-19331"
},
{
"type": "REPORT",
"url": "https://www.openwall.com/lists/oss-security/2019/12/04/4"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-19331"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2019-19331"
]
}
ubuntu-cve-2020-12667
Vulnerability from osv_ubuntu
Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "1.0.0~beta3-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@1.0.0~beta3-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.0.0~beta2-123-g6134920-1",
"1.0.0~beta3-1",
"1.0.0~beta3-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
},
{
"binary_name": "libkres6",
"binary_version": "2.1.1-1ubuntu0.1~esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@2.1.1-1ubuntu0.1~esm2?arch=source\u0026distro=esm-apps/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.3-1",
"1.5.0-4",
"1.5.1-1",
"1.5.2-1",
"2.0.0-3",
"2.1.0-1",
"2.1.0-2",
"2.1.1-1",
"2.1.1-1ubuntu0.1~esm2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "knot-resolver",
"binary_version": "3.2.1-3ubuntu2.2"
},
{
"binary_name": "knot-resolver-module-http",
"binary_version": "3.2.1-3ubuntu2.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "knot-resolver",
"purl": "pkg:deb/ubuntu/knot-resolver@3.2.1-3ubuntu2.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.2.1-3ubuntu2.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.2.1-3",
"3.2.1-3ubuntu1",
"3.2.1-3ubuntu2",
"3.2.1-3ubuntu2.1"
]
}
],
"aliases": [],
"details": "Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an \"NXNSAttack\" issue. This is triggered by random subdomains in the NSDNAME in NS records.",
"id": "UBUNTU-CVE-2020-12667",
"modified": "2026-04-22T07:39:24Z",
"published": "2020-05-19T13:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2020-12667"
},
{
"type": "REPORT",
"url": "https://en.blog.nic.cz/2020/05/19/nxnsattack-upgrade-resolvers-to-stop-new-kind-of-random-subdomain-attack/"
},
{
"type": "REPORT",
"url": "http://cyber-security-group.cs.tau.ac.il/#"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2020/05/19/2"
},
{
"type": "REPORT",
"url": "https://www.knot-resolver.cz/2020-05-19-knot-resolver-5.1.1.html"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12667"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2020-12667"
]
}
ubuntu-cve-2025-12748
Vulnerability from osv_ubuntu
A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too much memory on the host. The excessive memory consumption could lead to a libvirt process crash on the host, resulting in a denial-of-service condition.
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libvirt-bin",
"binary_version": "1.2.2-0ubuntu13.1.28+esm1"
},
{
"binary_name": "libvirt0",
"binary_version": "1.2.2-0ubuntu13.1.28+esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@1.2.2-0ubuntu13.1.28+esm1?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.1.1-0ubuntu8",
"1.1.1-0ubuntu9",
"1.1.4-0ubuntu2",
"1.1.4-0ubuntu3",
"1.1.4-0ubuntu4",
"1.1.4-0ubuntu5",
"1.2.0-0ubuntu1",
"1.2.0-0ubuntu2",
"1.2.0-0ubuntu3",
"1.2.1-0ubuntu1",
"1.2.1-0ubuntu2",
"1.2.1-0ubuntu3",
"1.2.1-0ubuntu4",
"1.2.1-0ubuntu5",
"1.2.1-0ubuntu7",
"1.2.1-0ubuntu8",
"1.2.1-0ubuntu9",
"1.2.1-0ubuntu10",
"1.2.2-0ubuntu1",
"1.2.2-0ubuntu2",
"1.2.2-0ubuntu3",
"1.2.2-0ubuntu4",
"1.2.2-0ubuntu5",
"1.2.2-0ubuntu6",
"1.2.2-0ubuntu7",
"1.2.2-0ubuntu8",
"1.2.2-0ubuntu9",
"1.2.2-0ubuntu10",
"1.2.2-0ubuntu11",
"1.2.2-0ubuntu12",
"1.2.2-0ubuntu13",
"1.2.2-0ubuntu13.1",
"1.2.2-0ubuntu13.1.1",
"1.2.2-0ubuntu13.1.2",
"1.2.2-0ubuntu13.1.4",
"1.2.2-0ubuntu13.1.5",
"1.2.2-0ubuntu13.1.6",
"1.2.2-0ubuntu13.1.7",
"1.2.2-0ubuntu13.1.8",
"1.2.2-0ubuntu13.1.9",
"1.2.2-0ubuntu13.1.10",
"1.2.2-0ubuntu13.1.12",
"1.2.2-0ubuntu13.1.14",
"1.2.2-0ubuntu13.1.16",
"1.2.2-0ubuntu13.1.17",
"1.2.2-0ubuntu13.1.20",
"1.2.2-0ubuntu13.1.21",
"1.2.2-0ubuntu13.1.22",
"1.2.2-0ubuntu13.1.23",
"1.2.2-0ubuntu13.1.25",
"1.2.2-0ubuntu13.1.26",
"1.2.2-0ubuntu13.1.27",
"1.2.2-0ubuntu13.1.28",
"1.2.2-0ubuntu13.1.28+esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libvirt-bin",
"binary_version": "1.3.1-1ubuntu10.31"
},
{
"binary_name": "libvirt0",
"binary_version": "1.3.1-1ubuntu10.31"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@1.3.1-1ubuntu10.31?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.16-2ubuntu11",
"1.2.16-2ubuntu12",
"1.2.16-2ubuntu13",
"1.2.16-2ubuntu14",
"1.2.21-2ubuntu1",
"1.2.21-2ubuntu3",
"1.2.21-2ubuntu4",
"1.2.21-2ubuntu5",
"1.2.21-2ubuntu7",
"1.2.21-2ubuntu8",
"1.2.21-2ubuntu9",
"1.2.21-2ubuntu10",
"1.3.1-1ubuntu1",
"1.3.1-1ubuntu2",
"1.3.1-1ubuntu3",
"1.3.1-1ubuntu4",
"1.3.1-1ubuntu6",
"1.3.1-1ubuntu9",
"1.3.1-1ubuntu10",
"1.3.1-1ubuntu10.1",
"1.3.1-1ubuntu10.2",
"1.3.1-1ubuntu10.3",
"1.3.1-1ubuntu10.5",
"1.3.1-1ubuntu10.6",
"1.3.1-1ubuntu10.7",
"1.3.1-1ubuntu10.8",
"1.3.1-1ubuntu10.10",
"1.3.1-1ubuntu10.11",
"1.3.1-1ubuntu10.12",
"1.3.1-1ubuntu10.13",
"1.3.1-1ubuntu10.14",
"1.3.1-1ubuntu10.15",
"1.3.1-1ubuntu10.17",
"1.3.1-1ubuntu10.18",
"1.3.1-1ubuntu10.19",
"1.3.1-1ubuntu10.21",
"1.3.1-1ubuntu10.22",
"1.3.1-1ubuntu10.23",
"1.3.1-1ubuntu10.24",
"1.3.1-1ubuntu10.25",
"1.3.1-1ubuntu10.26",
"1.3.1-1ubuntu10.27",
"1.3.1-1ubuntu10.29",
"1.3.1-1ubuntu10.30",
"1.3.1-1ubuntu10.31"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-bin",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-clients",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-sheepdog",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt0",
"binary_version": "4.0.0-1ubuntu8.21"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@4.0.0-1ubuntu8.21?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.6.0-1ubuntu5",
"3.6.0-1ubuntu6",
"4.0.0-1ubuntu1",
"4.0.0-1ubuntu2",
"4.0.0-1ubuntu3",
"4.0.0-1ubuntu4",
"4.0.0-1ubuntu5",
"4.0.0-1ubuntu6",
"4.0.0-1ubuntu7",
"4.0.0-1ubuntu8",
"4.0.0-1ubuntu8.1",
"4.0.0-1ubuntu8.2",
"4.0.0-1ubuntu8.3",
"4.0.0-1ubuntu8.4",
"4.0.0-1ubuntu8.5",
"4.0.0-1ubuntu8.6",
"4.0.0-1ubuntu8.7",
"4.0.0-1ubuntu8.8",
"4.0.0-1ubuntu8.9",
"4.0.0-1ubuntu8.10",
"4.0.0-1ubuntu8.11",
"4.0.0-1ubuntu8.12",
"4.0.0-1ubuntu8.13",
"4.0.0-1ubuntu8.14",
"4.0.0-1ubuntu8.15",
"4.0.0-1ubuntu8.16",
"4.0.0-1ubuntu8.17",
"4.0.0-1ubuntu8.19",
"4.0.0-1ubuntu8.20",
"4.0.0-1ubuntu8.21"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-clients",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt0",
"binary_version": "6.0.0-0ubuntu8.20"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@6.0.0-0ubuntu8.20?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-0ubuntu5",
"6.0.0-0ubuntu1",
"6.0.0-0ubuntu2",
"6.0.0-0ubuntu3",
"6.0.0-0ubuntu4",
"6.0.0-0ubuntu5",
"6.0.0-0ubuntu6",
"6.0.0-0ubuntu7",
"6.0.0-0ubuntu8",
"6.0.0-0ubuntu8.1",
"6.0.0-0ubuntu8.2",
"6.0.0-0ubuntu8.3",
"6.0.0-0ubuntu8.4",
"6.0.0-0ubuntu8.5",
"6.0.0-0ubuntu8.7",
"6.0.0-0ubuntu8.8",
"6.0.0-0ubuntu8.9",
"6.0.0-0ubuntu8.10",
"6.0.0-0ubuntu8.11",
"6.0.0-0ubuntu8.12",
"6.0.0-0ubuntu8.13",
"6.0.0-0ubuntu8.14",
"6.0.0-0ubuntu8.15",
"6.0.0-0ubuntu8.16",
"6.0.0-0ubuntu8.19",
"6.0.0-0ubuntu8.20"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-clients",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt0",
"binary_version": "8.0.0-1ubuntu7.15"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@8.0.0-1ubuntu7.15?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.0-1ubuntu7.15"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.6.0-0ubuntu1",
"7.6.0-0ubuntu3",
"8.0.0-1ubuntu3",
"8.0.0-1ubuntu4",
"8.0.0-1ubuntu5",
"8.0.0-1ubuntu6",
"8.0.0-1ubuntu7",
"8.0.0-1ubuntu7.1",
"8.0.0-1ubuntu7.2",
"8.0.0-1ubuntu7.3",
"8.0.0-1ubuntu7.4",
"8.0.0-1ubuntu7.5",
"8.0.0-1ubuntu7.6",
"8.0.0-1ubuntu7.7",
"8.0.0-1ubuntu7.8",
"8.0.0-1ubuntu7.9",
"8.0.0-1ubuntu7.10",
"8.0.0-1ubuntu7.11",
"8.0.0-1ubuntu7.12",
"8.0.0-1ubuntu7.13",
"8.0.0-1ubuntu7.14"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-clients",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt0",
"binary_version": "10.0.0-2ubuntu8.11"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@10.0.0-2ubuntu8.11?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "10.0.0-2ubuntu8.11"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"9.6.0-1ubuntu1",
"9.6.0-1ubuntu2",
"10.0.0-1ubuntu1",
"10.0.0-2ubuntu1",
"10.0.0-2ubuntu5",
"10.0.0-2ubuntu7",
"10.0.0-2ubuntu8",
"10.0.0-2ubuntu8.1",
"10.0.0-2ubuntu8.2",
"10.0.0-2ubuntu8.3",
"10.0.0-2ubuntu8.4",
"10.0.0-2ubuntu8.5",
"10.0.0-2ubuntu8.6",
"10.0.0-2ubuntu8.7",
"10.0.0-2ubuntu8.8",
"10.0.0-2ubuntu8.9",
"10.0.0-2ubuntu8.10"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-clients",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-common",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-common",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-interface",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-network",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-nodedev",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-nwfilter",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-secret",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-disk",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-logical",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-mpath",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-scsi",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-lock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-log",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-plugin-lockd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-plugin-sanlock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-ssh-proxy",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt0",
"binary_version": "11.6.0-1ubuntu3.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@11.6.0-1ubuntu3.2?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "11.6.0-1ubuntu3.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"11.0.0-2ubuntu6",
"11.0.0-2ubuntu8",
"11.4.0-1ubuntu1",
"11.4.0-1ubuntu2",
"11.6.0-1ubuntu1",
"11.6.0-1ubuntu2",
"11.6.0-1ubuntu3",
"11.6.0-1ubuntu3.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-clients",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-common",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-common",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-interface",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-network",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-nodedev",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-nwfilter",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-secret",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-disk",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-logical",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-mpath",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-scsi",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-lock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-log",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-plugin-lockd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-plugin-sanlock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-ssh-proxy",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt0",
"binary_version": "11.6.0-1ubuntu7"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@11.6.0-1ubuntu7?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "11.6.0-1ubuntu7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"11.6.0-1ubuntu3",
"11.6.0-1ubuntu5",
"11.6.0-1ubuntu6"
]
}
],
"aliases": [],
"details": "A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too much memory on the host. The excessive memory consumption could lead to a libvirt process crash on the host, resulting in a denial-of-service condition.",
"id": "UBUNTU-CVE-2025-12748",
"modified": "2026-05-20T15:16:02Z",
"published": "2025-11-11T20:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2025-12748"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12748"
},
{
"type": "REPORT",
"url": "https://lists.libvirt.org/archives/list/devel@lists.libvirt.org/thread/LTGHU3S4JEMCF5KJNJGWWZ7F2CS6L5SG/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2025-12748"
]
}
ubuntu-cve-2025-13193
Vulnerability from osv_ubuntu
A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to inspect the guest OS contents. This results in an information disclosure vulnerability.
| URL | Type | |
|---|---|---|
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libvirt-bin",
"binary_version": "1.2.2-0ubuntu13.1.28+esm1"
},
{
"binary_name": "libvirt0",
"binary_version": "1.2.2-0ubuntu13.1.28+esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@1.2.2-0ubuntu13.1.28+esm1?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.1.1-0ubuntu8",
"1.1.1-0ubuntu9",
"1.1.4-0ubuntu2",
"1.1.4-0ubuntu3",
"1.1.4-0ubuntu4",
"1.1.4-0ubuntu5",
"1.2.0-0ubuntu1",
"1.2.0-0ubuntu2",
"1.2.0-0ubuntu3",
"1.2.1-0ubuntu1",
"1.2.1-0ubuntu2",
"1.2.1-0ubuntu3",
"1.2.1-0ubuntu4",
"1.2.1-0ubuntu5",
"1.2.1-0ubuntu7",
"1.2.1-0ubuntu8",
"1.2.1-0ubuntu9",
"1.2.1-0ubuntu10",
"1.2.2-0ubuntu1",
"1.2.2-0ubuntu2",
"1.2.2-0ubuntu3",
"1.2.2-0ubuntu4",
"1.2.2-0ubuntu5",
"1.2.2-0ubuntu6",
"1.2.2-0ubuntu7",
"1.2.2-0ubuntu8",
"1.2.2-0ubuntu9",
"1.2.2-0ubuntu10",
"1.2.2-0ubuntu11",
"1.2.2-0ubuntu12",
"1.2.2-0ubuntu13",
"1.2.2-0ubuntu13.1",
"1.2.2-0ubuntu13.1.1",
"1.2.2-0ubuntu13.1.2",
"1.2.2-0ubuntu13.1.4",
"1.2.2-0ubuntu13.1.5",
"1.2.2-0ubuntu13.1.6",
"1.2.2-0ubuntu13.1.7",
"1.2.2-0ubuntu13.1.8",
"1.2.2-0ubuntu13.1.9",
"1.2.2-0ubuntu13.1.10",
"1.2.2-0ubuntu13.1.12",
"1.2.2-0ubuntu13.1.14",
"1.2.2-0ubuntu13.1.16",
"1.2.2-0ubuntu13.1.17",
"1.2.2-0ubuntu13.1.20",
"1.2.2-0ubuntu13.1.21",
"1.2.2-0ubuntu13.1.22",
"1.2.2-0ubuntu13.1.23",
"1.2.2-0ubuntu13.1.25",
"1.2.2-0ubuntu13.1.26",
"1.2.2-0ubuntu13.1.27",
"1.2.2-0ubuntu13.1.28",
"1.2.2-0ubuntu13.1.28+esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libvirt-bin",
"binary_version": "1.3.1-1ubuntu10.31"
},
{
"binary_name": "libvirt0",
"binary_version": "1.3.1-1ubuntu10.31"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@1.3.1-1ubuntu10.31?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.16-2ubuntu11",
"1.2.16-2ubuntu12",
"1.2.16-2ubuntu13",
"1.2.16-2ubuntu14",
"1.2.21-2ubuntu1",
"1.2.21-2ubuntu3",
"1.2.21-2ubuntu4",
"1.2.21-2ubuntu5",
"1.2.21-2ubuntu7",
"1.2.21-2ubuntu8",
"1.2.21-2ubuntu9",
"1.2.21-2ubuntu10",
"1.3.1-1ubuntu1",
"1.3.1-1ubuntu2",
"1.3.1-1ubuntu3",
"1.3.1-1ubuntu4",
"1.3.1-1ubuntu6",
"1.3.1-1ubuntu9",
"1.3.1-1ubuntu10",
"1.3.1-1ubuntu10.1",
"1.3.1-1ubuntu10.2",
"1.3.1-1ubuntu10.3",
"1.3.1-1ubuntu10.5",
"1.3.1-1ubuntu10.6",
"1.3.1-1ubuntu10.7",
"1.3.1-1ubuntu10.8",
"1.3.1-1ubuntu10.10",
"1.3.1-1ubuntu10.11",
"1.3.1-1ubuntu10.12",
"1.3.1-1ubuntu10.13",
"1.3.1-1ubuntu10.14",
"1.3.1-1ubuntu10.15",
"1.3.1-1ubuntu10.17",
"1.3.1-1ubuntu10.18",
"1.3.1-1ubuntu10.19",
"1.3.1-1ubuntu10.21",
"1.3.1-1ubuntu10.22",
"1.3.1-1ubuntu10.23",
"1.3.1-1ubuntu10.24",
"1.3.1-1ubuntu10.25",
"1.3.1-1ubuntu10.26",
"1.3.1-1ubuntu10.27",
"1.3.1-1ubuntu10.29",
"1.3.1-1ubuntu10.30",
"1.3.1-1ubuntu10.31"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-bin",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-clients",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-sheepdog",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "4.0.0-1ubuntu8.21"
},
{
"binary_name": "libvirt0",
"binary_version": "4.0.0-1ubuntu8.21"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@4.0.0-1ubuntu8.21?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.6.0-1ubuntu5",
"3.6.0-1ubuntu6",
"4.0.0-1ubuntu1",
"4.0.0-1ubuntu2",
"4.0.0-1ubuntu3",
"4.0.0-1ubuntu4",
"4.0.0-1ubuntu5",
"4.0.0-1ubuntu6",
"4.0.0-1ubuntu7",
"4.0.0-1ubuntu8",
"4.0.0-1ubuntu8.1",
"4.0.0-1ubuntu8.2",
"4.0.0-1ubuntu8.3",
"4.0.0-1ubuntu8.4",
"4.0.0-1ubuntu8.5",
"4.0.0-1ubuntu8.6",
"4.0.0-1ubuntu8.7",
"4.0.0-1ubuntu8.8",
"4.0.0-1ubuntu8.9",
"4.0.0-1ubuntu8.10",
"4.0.0-1ubuntu8.11",
"4.0.0-1ubuntu8.12",
"4.0.0-1ubuntu8.13",
"4.0.0-1ubuntu8.14",
"4.0.0-1ubuntu8.15",
"4.0.0-1ubuntu8.16",
"4.0.0-1ubuntu8.17",
"4.0.0-1ubuntu8.19",
"4.0.0-1ubuntu8.20",
"4.0.0-1ubuntu8.21"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-clients",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "6.0.0-0ubuntu8.20"
},
{
"binary_name": "libvirt0",
"binary_version": "6.0.0-0ubuntu8.20"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@6.0.0-0ubuntu8.20?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-0ubuntu5",
"6.0.0-0ubuntu1",
"6.0.0-0ubuntu2",
"6.0.0-0ubuntu3",
"6.0.0-0ubuntu4",
"6.0.0-0ubuntu5",
"6.0.0-0ubuntu6",
"6.0.0-0ubuntu7",
"6.0.0-0ubuntu8",
"6.0.0-0ubuntu8.1",
"6.0.0-0ubuntu8.2",
"6.0.0-0ubuntu8.3",
"6.0.0-0ubuntu8.4",
"6.0.0-0ubuntu8.5",
"6.0.0-0ubuntu8.7",
"6.0.0-0ubuntu8.8",
"6.0.0-0ubuntu8.9",
"6.0.0-0ubuntu8.10",
"6.0.0-0ubuntu8.11",
"6.0.0-0ubuntu8.12",
"6.0.0-0ubuntu8.13",
"6.0.0-0ubuntu8.14",
"6.0.0-0ubuntu8.15",
"6.0.0-0ubuntu8.16",
"6.0.0-0ubuntu8.19",
"6.0.0-0ubuntu8.20"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-clients",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "8.0.0-1ubuntu7.15"
},
{
"binary_name": "libvirt0",
"binary_version": "8.0.0-1ubuntu7.15"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@8.0.0-1ubuntu7.15?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.0-1ubuntu7.15"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.6.0-0ubuntu1",
"7.6.0-0ubuntu3",
"8.0.0-1ubuntu3",
"8.0.0-1ubuntu4",
"8.0.0-1ubuntu5",
"8.0.0-1ubuntu6",
"8.0.0-1ubuntu7",
"8.0.0-1ubuntu7.1",
"8.0.0-1ubuntu7.2",
"8.0.0-1ubuntu7.3",
"8.0.0-1ubuntu7.4",
"8.0.0-1ubuntu7.5",
"8.0.0-1ubuntu7.6",
"8.0.0-1ubuntu7.7",
"8.0.0-1ubuntu7.8",
"8.0.0-1ubuntu7.9",
"8.0.0-1ubuntu7.10",
"8.0.0-1ubuntu7.11",
"8.0.0-1ubuntu7.12",
"8.0.0-1ubuntu7.13",
"8.0.0-1ubuntu7.14"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-clients",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "10.0.0-2ubuntu8.11"
},
{
"binary_name": "libvirt0",
"binary_version": "10.0.0-2ubuntu8.11"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@10.0.0-2ubuntu8.11?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "10.0.0-2ubuntu8.11"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"9.6.0-1ubuntu1",
"9.6.0-1ubuntu2",
"10.0.0-1ubuntu1",
"10.0.0-2ubuntu1",
"10.0.0-2ubuntu5",
"10.0.0-2ubuntu7",
"10.0.0-2ubuntu8",
"10.0.0-2ubuntu8.1",
"10.0.0-2ubuntu8.2",
"10.0.0-2ubuntu8.3",
"10.0.0-2ubuntu8.4",
"10.0.0-2ubuntu8.5",
"10.0.0-2ubuntu8.6",
"10.0.0-2ubuntu8.7",
"10.0.0-2ubuntu8.8",
"10.0.0-2ubuntu8.9",
"10.0.0-2ubuntu8.10"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-clients",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-common",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-common",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-interface",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-network",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-nodedev",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-nwfilter",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-secret",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-disk",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-logical",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-mpath",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-scsi",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-lock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-log",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-plugin-lockd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-plugin-sanlock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-ssh-proxy",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "11.6.0-1ubuntu3.2"
},
{
"binary_name": "libvirt0",
"binary_version": "11.6.0-1ubuntu3.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@11.6.0-1ubuntu3.2?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "11.6.0-1ubuntu3.2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"11.0.0-2ubuntu6",
"11.0.0-2ubuntu8",
"11.4.0-1ubuntu1",
"11.4.0-1ubuntu2",
"11.6.0-1ubuntu1",
"11.6.0-1ubuntu2",
"11.6.0-1ubuntu3",
"11.6.0-1ubuntu3.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libnss-libvirt",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-clients",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-clients-qemu",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-common",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-common",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-config-network",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-config-nwfilter",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-interface",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-lxc",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-network",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-nodedev",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-nwfilter",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-qemu",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-secret",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-disk",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-gluster",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-iscsi-direct",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-logical",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-mpath",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-rbd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-scsi",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-storage-zfs",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-vbox",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-driver-xen",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-lock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-log",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-plugin-lockd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-plugin-sanlock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system-systemd",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-daemon-system-sysv",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-l10n",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-login-shell",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-sanlock",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-ssh-proxy",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt-wireshark",
"binary_version": "11.6.0-1ubuntu7"
},
{
"binary_name": "libvirt0",
"binary_version": "11.6.0-1ubuntu7"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "libvirt",
"purl": "pkg:deb/ubuntu/libvirt@11.6.0-1ubuntu7?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "11.6.0-1ubuntu7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"11.6.0-1ubuntu3",
"11.6.0-1ubuntu5",
"11.6.0-1ubuntu6"
]
}
],
"aliases": [],
"details": "A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to inspect the guest OS contents. This results in an information disclosure vulnerability.",
"id": "UBUNTU-CVE-2025-13193",
"modified": "2026-05-20T15:16:03Z",
"published": "2025-11-17T17:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2025-13193"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13193"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7047-1"
}
],
"related": [
"USN-7047-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2025-13193"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.