ALT Vulnerability

2024-03-12 15:02:39 +00:00 · 2024-03-12 15:02:39 +00:00 · 970d58cc38
commit 970d58cc38
parent b6ebe67160
1 changed files with 9 additions and 1 deletions
--- a/oval/p10/ALT-PU-2024-3467/definitions.json
+++ b/oval/p10/ALT-PU-2024-3467/definitions.json
@ -35,7 +35,7 @@
            "Source": "CVE"
          }
        ],
-        "Description": "This update upgrades libvirt to version 9.7.0-alt2.p10.1. \nSecurity Fix(es):\n\n * CVE-2024-1441: description unavailable",
+        "Description": "This update upgrades libvirt to version 9.7.0-alt2.p10.1. \nSecurity Fix(es):\n\n * CVE-2024-1441: An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending specially crafted data to the libvirt daemon, allowing an unprivileged client to perform a denial of service attack by causing the libvirt daemon to crash.",
        "Advisory": {
          "From": "errata.altlinux.org",
          "Severity": "Low",
@ -47,6 +47,14 @@
            "Date": "2024-03-09"
          },
          "bdu": null,
+          "Cves": [
+            {
+              "Href": "https://nvd.nist.gov/vuln/detail/CVE-2024-1441",
+              "Impact": "None",
+              "Public": "20240311",
+              "CveID": "CVE-2024-1441"
+            }
+          ],
          "AffectedCpeList": {
            "Cpe": [
              "cpe:/o:alt:kworkstation:10",