Описание
Security update for libvirt
This update for libvirt fixes the following issue:
Security issue fixed:
- CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301).
Список пакетов
SUSE Linux Enterprise Server 12-LTSS
libvirt-1.2.5-27.19.1
libvirt-client-1.2.5-27.19.1
libvirt-daemon-1.2.5-27.19.1
libvirt-daemon-config-network-1.2.5-27.19.1
libvirt-daemon-config-nwfilter-1.2.5-27.19.1
libvirt-daemon-driver-interface-1.2.5-27.19.1
libvirt-daemon-driver-libxl-1.2.5-27.19.1
libvirt-daemon-driver-lxc-1.2.5-27.19.1
libvirt-daemon-driver-network-1.2.5-27.19.1
libvirt-daemon-driver-nodedev-1.2.5-27.19.1
libvirt-daemon-driver-nwfilter-1.2.5-27.19.1
libvirt-daemon-driver-qemu-1.2.5-27.19.1
libvirt-daemon-driver-secret-1.2.5-27.19.1
libvirt-daemon-driver-storage-1.2.5-27.19.1
libvirt-daemon-lxc-1.2.5-27.19.1
libvirt-daemon-qemu-1.2.5-27.19.1
libvirt-daemon-xen-1.2.5-27.19.1
libvirt-doc-1.2.5-27.19.1
libvirt-lock-sanlock-1.2.5-27.19.1
Ссылки
- Link for SUSE-SU-2019:1690-1
- E-Mail link for SUSE-SU-2019:1690-1
- SUSE Security Ratings
- SUSE Bug 1138301
- SUSE CVE CVE-2019-10161 page
Описание
It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.
Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:libvirt-1.2.5-27.19.1
SUSE Linux Enterprise Server 12-LTSS:libvirt-client-1.2.5-27.19.1
SUSE Linux Enterprise Server 12-LTSS:libvirt-daemon-1.2.5-27.19.1
SUSE Linux Enterprise Server 12-LTSS:libvirt-daemon-config-network-1.2.5-27.19.1
Ссылки
- CVE-2019-10161
- SUSE Bug 1138301