PT-2013-4938 · Red Hat +1 · Libvirt +1
Name of the Vulnerable Software and Affected Versions: libvirt versions 0.10.2.7, 1.0.5.5, and 1.1.1 Description: The issue arises from the virSecurityManagerSetProcessLabel function in libvirt, which fails to properly set group memberships when the domain has read an uid:gid label. This allows...