The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1762 advisory.

  - QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure     (CVE-2020-11947)

  - QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c (CVE-2020-16092)

  - libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c (CVE-2020-25637)

  - QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c (CVE-2020-25707)

  - QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c (CVE-2020-25723)

  - QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c (CVE-2020-27821)

  - QEMU: e1000e: infinite loop scenario in case of null packet descriptor (CVE-2020-28916)

  - CVE-2020-29130 QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets (CVE-2020-29129)

  - CVE-2020-29129  QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets (CVE-2020-29130)

  - QEMU: ide: atapi: OOB access while processing read commands (CVE-2020-29443)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2021:1762)

medium Nessus Plugin ID 149772

Version 1.4

Version 1.3

Version 1.2

Version 1.4 Dec 29, 2023, 4:38 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202312291638
Version 1.3 Feb 9, 2023, 1:07 AM Logic Changes (Updated versions to include commit hash) Plugin Feed: 202302090107
Version 1.2 Feb 8, 2023, 11:19 PM Logic Changes (Updated versions to include commit hash) Plugin Feed: 202302082319