Vulnerabilities

CVE-2017-1000256

by Fred · 31/10/2017

libvirt version 2.3.0 and later is vulnerable to a bad default configuration of "verify-peer=no" passed to QEMU by libvirt resulting in a failure to validate SSL/TLS certificates by default.

Date published : 2017-10-31

https://access.redhat.com/security/cve/CVE-2017-1000256

http://www.debian.org/security/2017/dsa-4003

Related

Tags: Cybersecurity Alert