[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2014-0243":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":60,"epss":9,"epss_history":61,"metrics":62,"affected":63},"MGASA-2014-0243","Updated libvirt packages fix multiple vulnerabilities\n\nUpdated libvirt packages fix security vulnerabilities:\n\nThe LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through\n1.2.1 allows local users to (1) delete arbitrary host devices\nvia the virDomainDeviceDettach API and a symlink attack on /dev\nin the container; (2) create arbitrary nodes (mknod) via the\nvirDomainDeviceAttach API and a symlink attack on /dev in the\ncontainer; and cause a denial of service (shutdown or reboot host\nOS) via the (3) virDomainShutdown or (4) virDomainReboot API and a\nsymlink attack on /dev/initctl in the container, related to paths under\n/proc//root and the virInitctlSetRunLevel function (CVE-2013-6456).\n\nlibvirt was patched to prevent expansion of entities when parsing XML\nfiles. This vulnerability allowed malicious users to read arbitrary\nfiles or cause a denial of service (CVE-2014-0179).\n",null,[],[],[],[14,16],{"_key":15},"CVE-2013-6456",{"_key":17},"CVE-2014-0179",[],[],[21,22],{"_key":15},{"_key":17},"2014-05-29T07:01:13Z","2026-04-16T06:23:39.373669665Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,34,40,44,48,52,56],{"url":29,"sources":30,"tags":32},"https://advisories.mageia.org/MGASA-2014-0243.html",[31],"osv_mageia",[33],"Advisory",{"url":35,"sources":36,"tags":37},"http://security.libvirt.org/2013/0018.html",[31],[38,39],"REPORT","WEB",{"url":41,"sources":42,"tags":43},"http://security.libvirt.org/2014/0003.html",[31],[38,39],{"url":45,"sources":46,"tags":47},"http://lists.opensuse.org/opensuse-updates/2014-05/msg00048.html",[31],[38,39],{"url":49,"sources":50,"tags":51},"http://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:097/",[31],[38,33],{"url":53,"sources":54,"tags":55},"https://bugs.mageia.org/show_bug.cgi?id=12920",[31],[38],{"url":57,"sources":58,"tags":59},"https://bugs.mageia.org/show_bug.cgi?id=13387",[31],[38],[],[],[],[64,76],{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":69},"Mageia","libvirt","mageia","rpm",[70],{"version":71,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":74,"version_end_type":75,"fixed_in":9},"lt1_0_2_8_5_mga3",true,"ecosystem","1.0.2-8.5.mga3","excluding",{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":77},[78],{"version":79,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":80,"version_end_type":75,"fixed_in":9},"lt1_2_1_1_1_mga4","1.2.1-1.1.mga4"]