CVE-2020-14339
First published: Fri Jul 17 2020(Updated: )
A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of their standard permissions, potentially causing serious damage to the host operating system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Libvirt | >=6.2.0<6.7.0 | |
| Redhat Enterprise Linux | =8.0 |
Remedy
This issue is mitigated on Red Hat Enterprise Linux if SELinux is in enforcing mode, which prevents the `/dev/mapper/control` file descriptor from being accessible by a guest user/process.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=1860069
- https://security.gentoo.org/glsa/202101-22
- https://security.gentoo.org/glsa/202210-06
- https://libvirt.org/git/?p=libvirt.git;a=commit;h=22494556542c676d1b9e7f1c1f2ea13ac17e1e3e
- https://access.redhat.com/errata/RHSA-2020:3586
- https://access.redhat.com/security/cve/cve-2020-14339
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1881035
- https://access.redhat.com/errata/RHSA-2020:4676
- https://www.cve.org/CVERecord?id=CVE-2020-14339 https://nvd.nist.gov/vuln/detail/CVE-2020-14339
Frequently Asked Questions
What is CVE-2020-14339?
CVE-2020-14339 is a vulnerability found in libvirt where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process, allowing for privileged operations to happen against the device-mapper on the host.
How does CVE-2020-14339 impact libvirt?
CVE-2020-14339 allows a malicious guest user or process to perform operations outside of the intended scope, potentially leading to unauthorized access or other malicious activities.
What is the severity of CVE-2020-14339?
The severity of CVE-2020-14339 is high, with a CVSS severity score of 8.8.
Which versions of libvirt are affected by CVE-2020-14339?
The affected versions of libvirt range from 6.2.0 up to, but not including, 6.6.0.
How can I fix CVE-2020-14339?
To fix CVE-2020-14339, it is recommended to upgrade to libvirt version 6.6.0 or later.
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/severity
- agent/references
- agent/weakness
- agent/remedy
- agent/author
- agent/description
- agent/event
- agent/tags
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-14339
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/redhat
- canonical/redhat libvirt
- version/redhat libvirt/6.2.0
- canonical/redhat enterprise linux
- version/redhat enterprise linux/8.0
- package-manager/redhat