{"id":"USN-6734-2","summary":"libvirt vulnerabilities","details":"USN-6734-1 fixed vulnerabilities in libvirt. This update provides the\ncorresponding updates for Ubuntu 24.04 LTS.\n\nOriginal advisory details:\n\n Alexander Kuznetsov discovered that libvirt incorrectly handled certain API\n calls. An attacker could possibly use this issue to cause libvirt to crash,\n resulting in a denial of service. (CVE-2024-1441)\n \n It was discovered that libvirt incorrectly handled certain RPC library API\n calls. An attacker could possibly use this issue to cause libvirt to crash,\n resulting in a denial of service. (CVE-2024-2494)\n","modified":"2026-04-24T09:48:22.011089Z","published":"2024-04-29T11:43:27Z","related":["UBUNTU-CVE-2024-1441","UBUNTU-CVE-2024-2494"],"upstream":["CVE-2024-1441","CVE-2024-2494","UBUNTU-CVE-2024-1441","UBUNTU-CVE-2024-2494"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6734-2"}],"affected":[{"package":{"name":"libvirt","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/libvirt@10.0.0-2ubuntu8.1?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.0.0-2ubuntu8.1"}]}],"versions":["9.6.0-1ubuntu1","9.6.0-1ubuntu2","10.0.0-1ubuntu1","10.0.0-2ubuntu1","10.0.0-2ubuntu5","10.0.0-2ubuntu7","10.0.0-2ubuntu8"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"libnss-libvirt","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-clients","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-clients-qemu","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-config-network","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-config-nwfilter","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-lxc","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-qemu","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-storage-gluster","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-storage-iscsi-direct","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-storage-rbd","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-storage-zfs","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-vbox","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-driver-xen","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-system","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-system-systemd","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-daemon-system-sysv","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-l10n","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-login-shell","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-sanlock","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt-wireshark","binary_version":"10.0.0-2ubuntu8.1"},{"binary_name":"libvirt0","binary_version":"10.0.0-2ubuntu8.1"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6734-2.json"}}],"schema_version":"1.7.5"}