First published: Sun Jun 17 2012(Updated: )
libvirt, possibly before 0.9.12, does not properly assign USB devices to virtual machines when multiple devices have the same vendor and product ID, which might cause the wrong device to be associated with a guest and might allow local users to access unintended USB devices.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | <=0.9.11 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.0.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.7 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.8 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.1.9 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.2.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.2.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.2.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.2.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.3.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.3.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.3.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.3.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.4.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.5.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.5.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.6.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.7.7 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.7 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.8.8 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.0 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.1 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.2 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.3 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.4 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.5 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.6 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.7 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.8 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.9 | |
Red Hat Libvirt-daemon-driver-storage-iscsi-direct | =0.9.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2012-2693 is classified as a medium severity vulnerability.
To fix CVE-2012-2693, update libvirt to version 0.9.12 or later.
CVE-2012-2693 affects users of libvirt versions prior to 0.9.12, particularly those using USB devices with the same vendor and product ID.
CVE-2012-2693 exploits a flaw in the device assignment logic of libvirt, leading to incorrect USB device association.
CVE-2012-2693 is a local vulnerability, allowing local users to access unintended USB devices.