UBUNTU-CVE-2023-2700

Source
https://ubuntu.com/security/CVE-2023-2700
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-2700.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-2700
Related
Published
2023-05-15T22:15:00Z
Modified
2024-11-20T12:20:39Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.

References

Affected packages

Ubuntu:22.04:LTS / libvirt

Package

Name
libvirt
Purl
pkg:deb/ubuntu/libvirt?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.0.0-1ubuntu7.5

Affected versions

7.*

7.6.0-0ubuntu1
7.6.0-0ubuntu3

8.*

8.0.0-1ubuntu3
8.0.0-1ubuntu4
8.0.0-1ubuntu5
8.0.0-1ubuntu6
8.0.0-1ubuntu7
8.0.0-1ubuntu7.1
8.0.0-1ubuntu7.2
8.0.0-1ubuntu7.3
8.0.0-1ubuntu7.4

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libnss-libvirt"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libnss-libvirt-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-clients"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-clients-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-config-network"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-config-nwfilter"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-lxc"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-lxc-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-qemu"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-qemu-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-gluster"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-gluster-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-iscsi-direct"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-iscsi-direct-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-rbd"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-rbd-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-zfs"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-storage-zfs-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-vbox"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-vbox-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-xen"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-driver-xen-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system-systemd"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-daemon-system-sysv"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-dev"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-doc"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-login-shell"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-login-shell-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-sanlock"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-sanlock-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-wireshark"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt-wireshark-dbgsym"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt0"
        },
        {
            "binary_version": "8.0.0-1ubuntu7.5",
            "binary_name": "libvirt0-dbgsym"
        }
    ]
}