8 matches found
Information Disclosure
libguestfs is vulnerable to information disclosure attacks. The vulnerability exists as virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain...
RHEL 6 : libguestfs (RHSA-2012:0774)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:0774 advisory. libguestfs is a library for accessing and modifying guest disk images. It was found that editing files with virt-edit left said files in a...
CVE-2012-2690
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information...
DEBIAN-CVE-2012-2690
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information...
CVE-2012-2690
CVE-2012-2690 affects libguestfs, where virt-edit fails to preserve source file permissions, saving edits with world-readable permissions. Local guest users could access sensitive data. The issue is addressed by updated libguestfs packages (e.g., >= 1.18.0 per RHSA-2012:0774 and related adviso...
CVE-2012-2690
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information...
libguestfs: virt-edit creates a new file, when it is used leading to loss of file attributes (permissions, owner, SELinux context etc.)
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information...
Low: Red Hat Security Advisory: libguestfs security, bug fix, and enhancement update
Updated libguestfs packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, whic...