3 matches found
SUSE CVE-2014-5177
libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an XML external entity declaration in conjunction with an entity reference to the 1 virDomainDefineXML, 2 virNetworkCreateXML, 3...
Red Hat libvirt virStorageVolCreateXML API Denial of Service Vulnerability
Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. virStorageVolCreateXML API is one of the APIs that creates a storage volume based on a supplied XML file description. virStorageVolCreateXML API is an API for creating a storage volume based on a...
DEBIAN-CVE-2010-2238
Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors...