| 2019-08-02 | CVE-2019-10168 | Path Traversal vulnerability in Redhat products
The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. | 7.8 |
| 2019-08-02 | CVE-2019-10167 | Missing Authorization vulnerability in Redhat products
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. | 7.8 |
| 2019-08-02 | CVE-2019-10166 | Unspecified vulnerability in Redhat products
It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify managed save state files. | 7.8 |
| 2019-07-30 | CVE-2018-16871 | A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. | 7.5 |
| 2019-07-23 | CVE-2019-2879 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). | 4.9 |
| 2019-07-23 | CVE-2019-2834 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). | 6.5 |
| 2019-07-23 | CVE-2019-2830 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). | 4.9 |
| 2019-07-23 | CVE-2019-2826 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). | 4.9 |
| 2019-07-23 | CVE-2019-2819 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Audit). | 5.5 |
| 2019-07-23 | CVE-2019-2815 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). | 4.9 |