A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality and integrity.

🗓️ 11 Mar 2022 08:00:00Reported by MicrosoftType

mscve

mscve🔗 msrc.microsoft.com👁 1 Views

A flaw in libvirt dynamic labeling allows cross-guest MCS access, breaking sVirt confinement.

Reporter	Title	Published	Views	Family All 113
Tenable Nessus	Alibaba Cloud Linux 3 : 0119: virt:rhel and virt-devel:rhel (ALINUX3-SA-2022:0119)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2021:4191)	12 Mar 202200:00	–	nessus
Tenable Nessus	CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2021:4191)	11 Nov 202100:00	–	nessus
Tenable Nessus	Debian dla-3778 : libnss-libvirt - security update	1 Apr 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.2.0 : libvirt (EulerOS-SA-2021-2847)	29 Dec 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.10.0 : libvirt (EulerOS-SA-2022-2045)	15 Jul 202200:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.10.1 : libvirt (EulerOS-SA-2022-2073)	15 Jul 202200:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.6.6 : libvirt (EulerOS-SA-2022-2515)	9 Oct 202200:00	–	nessus
Tenable Nessus	GLSA-202210-06 : libvirt: Multiple Vulnerabilities	16 Oct 202200:00	–	nessus
Tenable Nessus	MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-2938:01)	20 Jan 202600:00	–	nessus

Vulners

Node

microsoft cm1_libvirt_6.1.0-5Range<6.1.0-5

11 Mar 2022 08:00Current

7.3High risk

Vulners AI Score7.3

CVSS 23.3

CVSS 3.16.3

EPSS0.00493

SSVC

libvirt vulnerability dynamic labeling cross guest access multi category security virtualization confinement