Anolis OS update for virt:an module
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2021-3930 CVE-2021-20257 |
| CWE-ID | CWE-193 CWE-835 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Anolis OS Operating systems & Components / Operating system libguestfs-tools Operating systems & Components / Operating system package or component libguestfs-man-pages-uk Operating systems & Components / Operating system package or component libguestfs-man-pages-ja Operating systems & Components / Operating system package or component libguestfs-javadoc Operating systems & Components / Operating system package or component libguestfs-inspect-icons Operating systems & Components / Operating system package or component libguestfs-bash-completion Operating systems & Components / Operating system package or component virt-v2v Operating systems & Components / Operating system package or component qemu-kvm-block-gluster Operating systems & Components / Operating system package or component virt-dib Operating systems & Components / Operating system package or component ruby-libguestfs Operating systems & Components / Operating system package or component qemu-kvm-tests Operating systems & Components / Operating system package or component qemu-kvm-core Operating systems & Components / Operating system package or component qemu-kvm-common Operating systems & Components / Operating system package or component qemu-kvm-block-ssh Operating systems & Components / Operating system package or component qemu-kvm-block-rbd Operating systems & Components / Operating system package or component qemu-kvm-block-iscsi Operating systems & Components / Operating system package or component qemu-kvm-block-curl Operating systems & Components / Operating system package or component qemu-kvm Operating systems & Components / Operating system package or component qemu-img Operating systems & Components / Operating system package or component qemu-guest-agent Operating systems & Components / Operating system package or component python3-libnbd Operating systems & Components / Operating system package or component python3-libguestfs Operating systems & Components / Operating system package or component perl-Sys-Guestfs Operating systems & Components / Operating system package or component ocaml-libguestfs-devel Operating systems & Components / Operating system package or component ocaml-libguestfs Operating systems & Components / Operating system package or component nbdfuse Operating systems & Components / Operating system package or component lua-guestfs Operating systems & Components / Operating system package or component libvirt-nss Operating systems & Components / Operating system package or component libvirt-lock-sanlock Operating systems & Components / Operating system package or component libvirt-libs Operating systems & Components / Operating system package or component libvirt-docs Operating systems & Components / Operating system package or component libvirt-devel Operating systems & Components / Operating system package or component libvirt-daemon-kvm Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-scsi Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-rbd Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-mpath Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-logical Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-iscsi-direct Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-iscsi Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-gluster Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-disk Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage-core Operating systems & Components / Operating system package or component libvirt-daemon-driver-storage Operating systems & Components / Operating system package or component libvirt-daemon-driver-secret Operating systems & Components / Operating system package or component libvirt-daemon-driver-qemu Operating systems & Components / Operating system package or component libvirt-daemon-driver-nwfilter Operating systems & Components / Operating system package or component libvirt-daemon-driver-nodedev Operating systems & Components / Operating system package or component libvirt-daemon-driver-network Operating systems & Components / Operating system package or component libvirt-daemon-driver-interface Operating systems & Components / Operating system package or component libvirt-daemon-config-nwfilter Operating systems & Components / Operating system package or component libvirt-daemon-config-network Operating systems & Components / Operating system package or component libvirt-daemon Operating systems & Components / Operating system package or component libvirt-client Operating systems & Components / Operating system package or component libvirt-bash-completion Operating systems & Components / Operating system package or component libvirt-admin Operating systems & Components / Operating system package or component libvirt Operating systems & Components / Operating system package or component libnbd-devel Operating systems & Components / Operating system package or component libnbd Operating systems & Components / Operating system package or component libguestfs-xfs Operating systems & Components / Operating system package or component libguestfs-tools-c Operating systems & Components / Operating system package or component libguestfs-rsync Operating systems & Components / Operating system package or component libguestfs-rescue Operating systems & Components / Operating system package or component libguestfs-java-devel Operating systems & Components / Operating system package or component libguestfs-java Operating systems & Components / Operating system package or component libguestfs-gobject-devel Operating systems & Components / Operating system package or component libguestfs-gobject Operating systems & Components / Operating system package or component libguestfs-gfs2 Operating systems & Components / Operating system package or component libguestfs-devel Operating systems & Components / Operating system package or component libguestfs-benchmarking Operating systems & Components / Operating system package or component libguestfs Operating systems & Components / Operating system package or component sgabios-bin Operating systems & Components / Operating system package or component seavgabios-bin Operating systems & Components / Operating system package or component seabios-bin Operating systems & Components / Operating system package or component nbdkit-bash-completion Operating systems & Components / Operating system package or component sgabios Operating systems & Components / Operating system package or component seabios Operating systems & Components / Operating system package or component nbdkit-vddk-plugin Operating systems & Components / Operating system package or component supermin-devel Operating systems & Components / Operating system package or component supermin Operating systems & Components / Operating system package or component ruby-hivex Operating systems & Components / Operating system package or component python3-libvirt Operating systems & Components / Operating system package or component python3-hivex Operating systems & Components / Operating system package or component perl-hivex Operating systems & Components / Operating system package or component perl-Sys-Virt Operating systems & Components / Operating system package or component ocaml-hivex-devel Operating systems & Components / Operating system package or component ocaml-hivex Operating systems & Components / Operating system package or component netcf-libs Operating systems & Components / Operating system package or component netcf-devel Operating systems & Components / Operating system package or component netcf Operating systems & Components / Operating system package or component nbdkit-xz-filter Operating systems & Components / Operating system package or component nbdkit-ssh-plugin Operating systems & Components / Operating system package or component nbdkit-server Operating systems & Components / Operating system package or component nbdkit-python-plugin Operating systems & Components / Operating system package or component nbdkit-linuxdisk-plugin Operating systems & Components / Operating system package or component nbdkit-gzip-plugin Operating systems & Components / Operating system package or component nbdkit-example-plugins Operating systems & Components / Operating system package or component nbdkit-devel Operating systems & Components / Operating system package or component nbdkit-curl-plugin Operating systems & Components / Operating system package or component nbdkit-basic-plugins Operating systems & Components / Operating system package or component nbdkit-basic-filters Operating systems & Components / Operating system package or component nbdkit Operating systems & Components / Operating system package or component libvirt-dbus Operating systems & Components / Operating system package or component libguestfs-winsupport Operating systems & Components / Operating system package or component hivex-devel Operating systems & Components / Operating system package or component hivex Operating systems & Components / Operating system package or component |
| Vendor | OpenAnolis |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Off-by-one
EUVDB-ID: #VU58812
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-3930
CWE-ID:
CWE-193 - Off-by-one Error
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to an off-by-one error in the SCSI device emulation in QEMU. A remote user on the guest OS can can trigger an off-by-one error while processing MODE SELECT commands in mode_sense_page() if the 'page' argument is set to MODE_PAGE_ALLS (0x3f). Successful exploitation of the vulnerability may result in QEMU crash.
Install updates from vendor's repository.
Vulnerable software versionsAnolis OS: 8
libguestfs-tools: before 1.40.2-28.0.1
libguestfs-man-pages-uk: before 1.40.2-28.0.1
libguestfs-man-pages-ja: before 1.40.2-28.0.1
libguestfs-javadoc: before 1.40.2-28.0.1
libguestfs-inspect-icons: before 1.40.2-28.0.1
libguestfs-bash-completion: before 1.40.2-28.0.1
virt-v2v: before 1.40.2-28.0.1
qemu-kvm-block-gluster: before 4.2.0-59.0.2
virt-dib: before 1.40.2-28.0.1
ruby-libguestfs: before 1.40.2-28.0.1
qemu-kvm-tests: before 4.2.0-59.0.2
qemu-kvm-core: before 4.2.0-59.0.2
qemu-kvm-common: before 4.2.0-59.0.2
qemu-kvm-block-ssh: before 4.2.0-59.0.2
qemu-kvm-block-rbd: before 4.2.0-59.0.2
qemu-kvm-block-iscsi: before 4.2.0-59.0.2
qemu-kvm-block-curl: before 4.2.0-59.0.2
qemu-kvm: before 4.2.0-59.0.2
qemu-img: before 4.2.0-59.0.2
qemu-guest-agent: before 4.2.0-59.0.2
python3-libnbd: before 1.2.2-1.0.1
python3-libguestfs: before 1.40.2-28.0.1
perl-Sys-Guestfs: before 1.40.2-28.0.1
ocaml-libguestfs-devel: before 1.40.2-28.0.1
ocaml-libguestfs: before 1.40.2-28.0.1
nbdfuse: before 1.2.2-1.0.1
lua-guestfs: before 1.40.2-28.0.1
libvirt-nss: before 6.0.0-37.1.0.1
libvirt-lock-sanlock: before 6.0.0-37.1.0.1
libvirt-libs: before 6.0.0-37.1.0.1
libvirt-docs: before 6.0.0-37.1.0.1
libvirt-devel: before 6.0.0-37.1.0.1
libvirt-daemon-kvm: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-scsi: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-rbd: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-mpath: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-logical: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-iscsi-direct: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-iscsi: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-gluster: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-disk: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-core: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage: before 6.0.0-37.1.0.1
libvirt-daemon-driver-secret: before 6.0.0-37.1.0.1
libvirt-daemon-driver-qemu: before 6.0.0-37.1.0.1
libvirt-daemon-driver-nwfilter: before 6.0.0-37.1.0.1
libvirt-daemon-driver-nodedev: before 6.0.0-37.1.0.1
libvirt-daemon-driver-network: before 6.0.0-37.1.0.1
libvirt-daemon-driver-interface: before 6.0.0-37.1.0.1
libvirt-daemon-config-nwfilter: before 6.0.0-37.1.0.1
libvirt-daemon-config-network: before 6.0.0-37.1.0.1
libvirt-daemon: before 6.0.0-37.1.0.1
libvirt-client: before 6.0.0-37.1.0.1
libvirt-bash-completion: before 6.0.0-37.1.0.1
libvirt-admin: before 6.0.0-37.1.0.1
libvirt: before 6.0.0-37.1.0.1
libnbd-devel: before 1.2.2-1.0.1
libnbd: before 1.2.2-1.0.1
libguestfs-xfs: before 1.40.2-28.0.1
libguestfs-tools-c: before 1.40.2-28.0.1
libguestfs-rsync: before 1.40.2-28.0.1
libguestfs-rescue: before 1.40.2-28.0.1
libguestfs-java-devel: before 1.40.2-28.0.1
libguestfs-java: before 1.40.2-28.0.1
libguestfs-gobject-devel: before 1.40.2-28.0.1
libguestfs-gobject: before 1.40.2-28.0.1
libguestfs-gfs2: before 1.40.2-28.0.1
libguestfs-devel: before 1.40.2-28.0.1
libguestfs-benchmarking: before 1.40.2-28.0.1
libguestfs: before 1.40.2-28.0.1
sgabios-bin: before 0.20170427git-3
seavgabios-bin: before 1.13.0-2
seabios-bin: before 1.13.0-2
nbdkit-bash-completion: before 1.16.2-4
sgabios: before 0.20170427git-3
seabios: before 1.13.0-2
nbdkit-vddk-plugin: before 1.16.2-4
supermin-devel: before 5.1.19-10
supermin: before 5.1.19-10
ruby-hivex: before 1.3.18-21
python3-libvirt: before 6.0.0-1
python3-hivex: before 1.3.18-21
perl-hivex: before 1.3.18-21
perl-Sys-Virt: before 6.0.0-1
ocaml-hivex-devel: before 1.3.18-21
ocaml-hivex: before 1.3.18-21
netcf-libs: before 0.2.8-12
netcf-devel: before 0.2.8-12
netcf: before 0.2.8-12
nbdkit-xz-filter: before 1.16.2-4
nbdkit-ssh-plugin: before 1.16.2-4
nbdkit-server: before 1.16.2-4
nbdkit-python-plugin: before 1.16.2-4
nbdkit-linuxdisk-plugin: before 1.16.2-4
nbdkit-gzip-plugin: before 1.16.2-4
nbdkit-example-plugins: before 1.16.2-4
nbdkit-devel: before 1.16.2-4
nbdkit-curl-plugin: before 1.16.2-4
nbdkit-basic-plugins: before 1.16.2-4
nbdkit-basic-filters: before 1.16.2-4
nbdkit: before 1.16.2-4
libvirt-dbus: before 1.3.0-2
libguestfs-winsupport: before 8.2-1
hivex-devel: before 1.3.18-21
hivex: before 1.3.18-21
CPE2.3- cpe:2.3:o:openanolis:anolis_os:8:*:*:*:*:*:*:*
- cpe:2.3:a:openanolis:libguestfs-tools:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-man-pages-uk:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-man-pages-ja:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-javadoc:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-inspect-icons:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:virt-v2v:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-gluster:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:virt-dib:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ruby-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-tests:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-core:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-common:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-ssh:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-rbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-iscsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-curl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-img:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-guest-agent:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libnbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-sys-guestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-libguestfs-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdfuse:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:lua-guestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-nss:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-lock-sanlock:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-libs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-docs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-kvm:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-scsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-rbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-mpath:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-logical:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-iscsi-direct:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-iscsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-gluster:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-disk:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-core:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-secret:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-qemu:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-nwfilter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-nodedev:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-network:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-interface:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-config-nwfilter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-config-network:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-client:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-admin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libnbd-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libnbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-xfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-tools-c:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-rsync:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-rescue:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-java-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-java:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gobject-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gobject:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gfs2:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-benchmarking:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:sgabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seavgabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:sgabios:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seabios:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-vddk-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:supermin-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:supermin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ruby-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libvirt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-sys-virt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-hivex-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf-libs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-xz-filter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-ssh-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-server:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-python-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-linuxdisk-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-gzip-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-example-plugins:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-curl-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-basic-plugins:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-basic-filters:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-dbus:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-winsupport:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:hivex-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:hivex:*:*:*:*:*:anolis_os:*:*
https://anas.openanolis.cn/errata/detail/ANSA-2022:0027
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Infinite loop
EUVDB-ID: #VU59085
Risk: Medium
CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2021-20257
CWE-ID:
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
Exploit availability: No
DescriptionThe vulnerability allows a remote user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in the e1000 NIC emulator when processing transmits (tx) descriptors in process_tx_desc of QEMU. A remote user can consume all available CPU resources and cause denial of service conditions.
MitigationInstall updates from vendor's repository.
Vulnerable software versionsAnolis OS: 8
libguestfs-tools: before 1.40.2-28.0.1
libguestfs-man-pages-uk: before 1.40.2-28.0.1
libguestfs-man-pages-ja: before 1.40.2-28.0.1
libguestfs-javadoc: before 1.40.2-28.0.1
libguestfs-inspect-icons: before 1.40.2-28.0.1
libguestfs-bash-completion: before 1.40.2-28.0.1
virt-v2v: before 1.40.2-28.0.1
qemu-kvm-block-gluster: before 4.2.0-59.0.2
virt-dib: before 1.40.2-28.0.1
ruby-libguestfs: before 1.40.2-28.0.1
qemu-kvm-tests: before 4.2.0-59.0.2
qemu-kvm-core: before 4.2.0-59.0.2
qemu-kvm-common: before 4.2.0-59.0.2
qemu-kvm-block-ssh: before 4.2.0-59.0.2
qemu-kvm-block-rbd: before 4.2.0-59.0.2
qemu-kvm-block-iscsi: before 4.2.0-59.0.2
qemu-kvm-block-curl: before 4.2.0-59.0.2
qemu-kvm: before 4.2.0-59.0.2
qemu-img: before 4.2.0-59.0.2
qemu-guest-agent: before 4.2.0-59.0.2
python3-libnbd: before 1.2.2-1.0.1
python3-libguestfs: before 1.40.2-28.0.1
perl-Sys-Guestfs: before 1.40.2-28.0.1
ocaml-libguestfs-devel: before 1.40.2-28.0.1
ocaml-libguestfs: before 1.40.2-28.0.1
nbdfuse: before 1.2.2-1.0.1
lua-guestfs: before 1.40.2-28.0.1
libvirt-nss: before 6.0.0-37.1.0.1
libvirt-lock-sanlock: before 6.0.0-37.1.0.1
libvirt-libs: before 6.0.0-37.1.0.1
libvirt-docs: before 6.0.0-37.1.0.1
libvirt-devel: before 6.0.0-37.1.0.1
libvirt-daemon-kvm: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-scsi: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-rbd: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-mpath: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-logical: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-iscsi-direct: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-iscsi: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-gluster: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-disk: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage-core: before 6.0.0-37.1.0.1
libvirt-daemon-driver-storage: before 6.0.0-37.1.0.1
libvirt-daemon-driver-secret: before 6.0.0-37.1.0.1
libvirt-daemon-driver-qemu: before 6.0.0-37.1.0.1
libvirt-daemon-driver-nwfilter: before 6.0.0-37.1.0.1
libvirt-daemon-driver-nodedev: before 6.0.0-37.1.0.1
libvirt-daemon-driver-network: before 6.0.0-37.1.0.1
libvirt-daemon-driver-interface: before 6.0.0-37.1.0.1
libvirt-daemon-config-nwfilter: before 6.0.0-37.1.0.1
libvirt-daemon-config-network: before 6.0.0-37.1.0.1
libvirt-daemon: before 6.0.0-37.1.0.1
libvirt-client: before 6.0.0-37.1.0.1
libvirt-bash-completion: before 6.0.0-37.1.0.1
libvirt-admin: before 6.0.0-37.1.0.1
libvirt: before 6.0.0-37.1.0.1
libnbd-devel: before 1.2.2-1.0.1
libnbd: before 1.2.2-1.0.1
libguestfs-xfs: before 1.40.2-28.0.1
libguestfs-tools-c: before 1.40.2-28.0.1
libguestfs-rsync: before 1.40.2-28.0.1
libguestfs-rescue: before 1.40.2-28.0.1
libguestfs-java-devel: before 1.40.2-28.0.1
libguestfs-java: before 1.40.2-28.0.1
libguestfs-gobject-devel: before 1.40.2-28.0.1
libguestfs-gobject: before 1.40.2-28.0.1
libguestfs-gfs2: before 1.40.2-28.0.1
libguestfs-devel: before 1.40.2-28.0.1
libguestfs-benchmarking: before 1.40.2-28.0.1
libguestfs: before 1.40.2-28.0.1
sgabios-bin: before 0.20170427git-3
seavgabios-bin: before 1.13.0-2
seabios-bin: before 1.13.0-2
nbdkit-bash-completion: before 1.16.2-4
sgabios: before 0.20170427git-3
seabios: before 1.13.0-2
nbdkit-vddk-plugin: before 1.16.2-4
supermin-devel: before 5.1.19-10
supermin: before 5.1.19-10
ruby-hivex: before 1.3.18-21
python3-libvirt: before 6.0.0-1
python3-hivex: before 1.3.18-21
perl-hivex: before 1.3.18-21
perl-Sys-Virt: before 6.0.0-1
ocaml-hivex-devel: before 1.3.18-21
ocaml-hivex: before 1.3.18-21
netcf-libs: before 0.2.8-12
netcf-devel: before 0.2.8-12
netcf: before 0.2.8-12
nbdkit-xz-filter: before 1.16.2-4
nbdkit-ssh-plugin: before 1.16.2-4
nbdkit-server: before 1.16.2-4
nbdkit-python-plugin: before 1.16.2-4
nbdkit-linuxdisk-plugin: before 1.16.2-4
nbdkit-gzip-plugin: before 1.16.2-4
nbdkit-example-plugins: before 1.16.2-4
nbdkit-devel: before 1.16.2-4
nbdkit-curl-plugin: before 1.16.2-4
nbdkit-basic-plugins: before 1.16.2-4
nbdkit-basic-filters: before 1.16.2-4
nbdkit: before 1.16.2-4
libvirt-dbus: before 1.3.0-2
libguestfs-winsupport: before 8.2-1
hivex-devel: before 1.3.18-21
hivex: before 1.3.18-21
CPE2.3- cpe:2.3:o:openanolis:anolis_os:8:*:*:*:*:*:*:*
- cpe:2.3:a:openanolis:libguestfs-tools:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-man-pages-uk:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-man-pages-ja:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-javadoc:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-inspect-icons:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:virt-v2v:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-gluster:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:virt-dib:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ruby-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-tests:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-core:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-common:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-ssh:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-rbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-iscsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm-block-curl:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-kvm:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-img:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:qemu-guest-agent:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libnbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-sys-guestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-libguestfs-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdfuse:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:lua-guestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-nss:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-lock-sanlock:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-libs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-docs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-kvm:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-scsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-rbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-mpath:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-logical:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-iscsi-direct:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-iscsi:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-gluster:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-disk:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage-core:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-storage:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-secret:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-qemu:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-nwfilter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-nodedev:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-network:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-driver-interface:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-config-nwfilter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon-config-network:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-daemon:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-client:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-admin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libnbd-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libnbd:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-xfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-tools-c:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-rsync:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-rescue:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-java-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-java:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gobject-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gobject:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-gfs2:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-benchmarking:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:sgabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seavgabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seabios-bin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-bash-completion:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:sgabios:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:seabios:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-vddk-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:supermin-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:supermin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ruby-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-libvirt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:python3-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:perl-sys-virt:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-hivex-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:ocaml-hivex:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf-libs:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:netcf:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-xz-filter:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-ssh-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-server:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-python-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-linuxdisk-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-gzip-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-example-plugins:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-curl-plugin:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-basic-plugins:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit-basic-filters:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:nbdkit:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libvirt-dbus:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:libguestfs-winsupport:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:hivex-devel:*:*:*:*:*:anolis_os:*:*
- cpe:2.3:a:openanolis:hivex:*:*:*:*:*:anolis_os:*:*
https://anas.openanolis.cn/errata/detail/ANSA-2022:0027
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
