[Pkg-libvirt-maintainers] Bug#509106: libvirt vulnerable to CVE-2008-5086
Jamie Strandboge
jamie at ubuntu.com
Thu Dec 18 14:02:03 UTC 2008
Package: libvirt
Version: 0.4.6-5
Severity: normal
Tags: patch
User: ubuntu-devel at lists.ubuntu.com
Usertags: origin-ubuntu jaunty ubuntu-patch
In Ubuntu, we've applied the attached patch to achieve the following:
* SECURITY UPDATE: fix privilege escalation due to missing read only
connection checks
- debian/patches/0009-CVE-2008-5086.patch: update functions in
src/libvirt.c to check against VIR_CONNECT_RO and return with operation
denied error
- CVE-2008-5086
We thought you might be interested in doing the same. Note that the
attached patch is against Ubuntu's libvirt, which contains a qemu
migration patch backported from upstream git. As such, this should
apply to 0.5.1 in experimental, and you can leave out the patches to
virDomainMigratePrepare2 and virDomainMigrateFinish2 for sid. Patch
originated from Redhat.
Excerpted from the Ubuntu USN:
It was discovered that libvirt did not mark certain operations as
read-only. A local attacker may be able to perform privileged actions
such as migrating virtual machines, adjusting autostart flags, or
accessing privileged data in the virtual machine memory and disks.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: tmpJ0aZKv
Type: text/x-diff
Size: 5475 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-libvirt-maintainers/attachments/20081218/1cb5a826/attachment.diff
More information about the Pkg-libvirt-maintainers
mailing list