REDHAT-BUG-607810
First published: Thu Jun 24 2010(Updated: )
It was found that libvirt did not honour the user defined main disk format in guest XML when looking up disk backing stores in the security drivers. This could be possibly exploited by priviledged guest user to access arbitrary files on the host.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Libvirt |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-607810?
The severity of REDHAT-BUG-607810 is considered high due to potential arbitrary file access on the host.
How do I fix REDHAT-BUG-607810?
To fix REDHAT-BUG-607810, users should update to the latest version of libvirt that addresses the vulnerability.
Who is affected by REDHAT-BUG-607810?
Privileged guest users running libvirt on the host system are most affected by REDHAT-BUG-607810.
What are the potential impacts of REDHAT-BUG-607810?
The potential impacts of REDHAT-BUG-607810 include unauthorized access to arbitrary files on the host system.
What is the nature of the vulnerability in REDHAT-BUG-607810?
The vulnerability in REDHAT-BUG-607810 arises from libvirt not honoring user-defined disk formats, leading to security bypass.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-2237
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/libvirt
- canonical/oracle libvirt