CVE-2015-5313 — Path Traversal in Redhat Libvirt

CWE-22 — Path Traversal9 documents8 sources

Severity

2.5LOWNVD

EPSS

0.1%

top 82.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Libvirt

Timeline

PublishedApr 11

Latest updateMay 14

Description

Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in libvirt, when fine-grained Access Control Lists (ACL) are in effect, allows local users with storage_vol:create ACL but not domain:write permission to write to arbitrary files via a .. (dot dot) in a volume name.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 1.0 | Impact: 1.4

Affected Packages1 packages

▶Debianredhat/libvirt< 1.3.0-1+3

Patches

Patch: security.libvirt.org ↗Patch: security.libvirt.org ↗

🔴Vulnerability Details

GHSA

GHSA-qr2q-8mvm-hxvr: Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs↗2022-05-14

▶

OSV

CVE-2015-5313: Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs↗2016-04-11

▶

CVEList

CVE-2015-5313: Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs↗2016-04-11

▶

📋Vendor Advisories

Ubuntu

libvirt vulnerabilities↗2016-01-12

▶

Red Hat

libvirt: filesystem storage volume names path traversal flaw↗2015-12-11

▶

Debian

CVE-2015-5313: libvirt - Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate fu...↗2015

▶

💬Community

Bugzilla

CVE-2015-5313 libvirt: filesystem storage volume names path traversal flaw [fedora-all]↗2015-12-14

▶

Bugzilla

CVE-2015-5313 libvirt: filesystem storage volume names path traversal flaw↗2015-11-02

▶