SUSE-SU-2020:2969-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2020-15708 CVE-2020-25637

Published: 20 Oct 2020, 14:05

Last modified:04 Feb 2026, 02:39

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

20 Oct 2020, 14:05

Published

Vulnerability first disclosed

04 Feb 2026, 02:39

Last Modified

Vulnerability information updated

Description

Security update for libvirt This update for libvirt fixes the following issues: - CVE-2020-15708: Added a note to libvirtd.conf about polkit auth in SUSE distros (bsc#1174955). - CVE-2020-25637: Fixed a double free in qemuAgentGetInterfaces() (bsc#1177155). - libxl: Fixed lock manager lock ordering (bsc#1171701).

Affected Systems

suse•libvirt&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS
< 4.0.0-9.35.1
suse•libvirt&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS
< 4.0.0-9.35.1
suse•libvirt&distro=SUSE Linux Enterprise Server 15-LTSS
< 4.0.0-9.35.1
suse•libvirt&distro=SUSE Linux Enterprise Server for SAP Applications 15
< 4.0.0-9.35.1

SUSE-SU-2020:2969-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (6)