Required CVE Record Information
Description
Virtual Desktop Server Manager (VDSM) in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 does not properly perform VM post-zeroing after the removal of a virtual machine's data, which allows guest OS users to obtain sensitive information by examining the disk blocks associated with a deleted virtual machine.
References 5 Total
- rhn.redhat.com: RHSA-2010:0476 vendor-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=604752
- securityfocus.com: 41044 vdb-entry
- rhn.redhat.com: RHSA-2010:0473 vendor-advisory
- securitytracker.com: 1024137 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- rhn.redhat.com: RHSA-2010:0476 vendor-advisoryx_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=604752 x_transferred
- securityfocus.com: 41044 vdb-entryx_transferred
- rhn.redhat.com: RHSA-2010:0473 vendor-advisoryx_transferred
- securitytracker.com: 1024137 vdb-entryx_transferred