CVE-2011-2178
published 2011-08-10CVE-2011-2178: The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a sizeof call, which…
medium4.4CVSS 3.1
AVLACMAuSCCINAN
The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a sizeof call, which causes incorrect processing of "security manager private data" that "reopens disk probing" and might allow guest OS users to read arbitrary files on the host OS. NOTE: this vulnerability exists because of a CVE-2010-2238 regression.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libvirt | < libvirt 0.9.1-2 (bookworm) | libvirt 0.9.1-2 (bookworm) |
| redhat | libvirt | — | — |
| redhat | libvirt | — | — |
| redhat | libvirt | — | — |
| redhat | libvirt | >= 0 < 0.9.1-2 | 0.9.1-2 |
| redhat | libvirt | >= 0 < 0.9.1-2 | 0.9.1-2 |
| redhat | libvirt | >= 0 < 0.9.1-2 | 0.9.1-2 |
| redhat | libvirt | >= 0 < 0.9.1-2 | 0.9.1-2 |
CVSS provenance
nvd4.4MEDIUMAV:L/AC:M/Au:S/C:C/I:N/A:N
osv4.4MEDIUM