Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-4291

The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to gain privileges.

See the

CVE page on Mitre.org for more details.

References

MISC: http://libvirt.org/git...
MISC: http://libvirt.org/new...
MISC: http://wiki.libvirt.or...
MISC: https://bugzilla.redha...

Launchpad.net

CVE 2013-4291

Related bugs

References