| ID |
CVE-2011-2178
|
| Summary |
The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a sizeof call, which causes incorrect processing of "security manager private data" that "reopens disk probing" and might allow guest OS users to read arbitrary files on the host OS. NOTE: this vulnerability exists because of a CVE-2010-2238 regression. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:redhat:libvirt:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:libvirt:0.9.0:*:*:*:*:*:*:*
-
cpe:2.3:a:redhat:libvirt:0.8.8:*:*:*:*:*:*:*
cpe:2.3:a:redhat:libvirt:0.8.8:*:*:*:*:*:*:*
-
cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:libvirt:0.9.1:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 4.4 (as of 13-02-2023 - 04:30) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
MEDIUM |
SINGLE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
NONE |
NONE |
|
| cvss-vector
via4
|
AV:L/AC:M/Au:S/C:C/I:N/A:N
|
| refmap
via4
|
| confirm | | | fedora | FEDORA-2011-9091 | | mlist | [libvirt] 20110531 [PATCH] security: plug regression introduced in disk probe logic | | suse | openSUSE-SU-2011:0643 | | ubuntu | USN-1152-1 |
|
| Last major update |
13-02-2023 - 04:30 |
| Published |
10-08-2011 - 20:55 |
| Last modified |
13-02-2023 - 04:30 |
