USN-8172-1 Unknown

USN-8172-1: kvmtool vulnerabilities

Canonical (Ubuntu) Released: April 13, 2026 Updated: April 16, 2026 Restart Required

Description

It was discovered that kvmtool did not properly manage memory under certain circumstances. A malicious guest attacker could use this issue to cause kvmtool to crash, leading to a denial of service, or possibly execute arbitrary code on the host system. (CVE-2021-45464) It was discovered that kvmtool incorrectly handled the 9p passthrough file system. A malicious guest attacker could possibly use this issue to open special files, escape the exported 9p tree, and execute arbitrary code on the host system. (CVE-2023-2861)

Quick Info

Patch ID: USN-8172-1

Vendor: Canonical (Ubuntu)

Severity: Unknown

CVEs Fixed: 0

Restart: Required

Vendor

Canonical (Ubuntu)

Additional Info

action:

usn id: USN-8172-1

summary: Several security issues were fixed in kvmtool.

usn number: 8172-1

instructions: In general, a standard system update will make all the necessary changes.

CVE Vulnerabilities

Posts & Pages

USN-8172-1: kvmtool vulnerabilities

Description

Quick Info

Vendor

Additional Info

Share