You are here

CVE-2011-1146

Vincent (CVE) Danen's picture
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.

Details Source

Mitre

Public Date

2011-03-02 00:00:00

Impact

Important

Bugzilla

CVE-2011-1146 libvirt: several API calls do not honour read-only connection

Bugzilla ID

683 650

CVSS Status

verified

Base Score

6.90

Base Metrics

AV:L/AC:M/Au:N/C:C/I:C/A:C

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Virtualization 5 (libvirt) RHSA-2011:0391 2011-03-28
Red Hat Enterprise Linux 6 (libvirt) RHSA-2011:0391 2011-03-28

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 5 libvirt Affected