CVE-2013-6456Link Following in Redhat Libvirt

CWE-59Link Following10 documents8 sources
Severity
5.8MEDIUMNVD
EPSS
0.2%
top 52.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Redhat LibvirtFedoraproject Fedora
Timeline
PublishedApr 15
Latest updateMay 17

Description

The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 allows local users to (1) delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; (2) create arbitrary nodes (mknod) via the virDomainDeviceAttach API and a symlink attack on /dev in the container; and cause a denial of service (shutdown or reboot host OS) via the (3) virDomainShutdown or (4) virDomainReboot API and a symlink attack on /dev/initctl in the container, related to

CVSS vector

AV:A/AC:M/C:N/I:P/A:CExploitability: 4.4 | Impact: 7.8

Affected Packages2 packages

Debianredhat/libvirt< 1.2.3-1+3
NVDredhat/libvirt19 versions+18

Also affects: Fedora 20

🔴Vulnerability Details

3
GHSA
GHSA-4c8j-w686-c2jw: The LXC driver (lxc/lxc_driver2022-05-17
OSV
CVE-2013-6456: The LXC driver (lxc/lxc_driver2014-04-15
CVEList
CVE-2013-6456: The LXC driver (lxc/lxc_driver2014-04-15

📋Vendor Advisories

3
Ubuntu
libvirt vulnerabilities2014-05-07
Red Hat
libvirt: unsafe usage of paths under /proc/$PID/root2013-12-17
Debian
CVE-2013-6456: libvirt - The LXC driver (lxc/lxc_driver.c) in libvirt 1.0.1 through 1.2.1 allows local us...2013

💬Community

3
Bugzilla
CVE-2013-6456 libvirt: unsafe usage of paths under /proc/$PID/root [fedora-all]2014-01-05
Bugzilla
CVE-2013-6456 libvirt: unsafe usage of paths under /proc/$PID/root2014-01-05
Bugzilla
CVE-2013-6456 libvirt: vulnerability in virInitctlSetRunLevel [rhel-7.0]2013-12-20
CVE-2013-6456 — Link Following in Redhat Libvirt | cvebase