Lucene search
UbuntuUSN-694-1HistoryDec 18, 2008 - 12:00 a.m.
libvirt vulnerability
2008-12-1800:00:00
ubuntu.com
33
6.1 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.5%
Releases
- Ubuntu 8.10
- Ubuntu 8.04
- Ubuntu 7.10
Packages
- libvirt -
Details
It was discovered that libvirt did not mark certain operations as read-only. A
local attacker may be able to perform privileged actions such as migrating
virtual machines, adjusting autostart flags, or accessing privileged data in
the virtual machine memory and disks.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.10 | noarch | libvirt0 | < 0.4.4-3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libvirt-bin | < 0.4.4-3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libvirt-dev | < 0.4.4-3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libvirt0-dbg | < 0.4.4-3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | python-libvirt | < 0.4.4-3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libvirt0 | < 0.4.0-2ubuntu8.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libvirt-bin | < 0.4.0-2ubuntu8.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libvirt-dev | < 0.4.0-2ubuntu8.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libvirt0-dbg | < 0.4.0-2ubuntu8.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | python-libvirt | < 0.4.0-2ubuntu8.1 | UNKNOWN |
References
Related
nessus
nessus
openSUSE Security Update : libvirt (libvirt-373)
2009-07-21 00:00:00
Fedora 10 : libvirt-0.5.1-2.fc10 (2008-11443)
2009-04-23 00:00:00
openSUSE Security Update : libvirt (libvirt-373)
2009-07-21 00:00:00
openvas
openvas
SLES10: Security update for libvirt
2009-10-13 00:00:00
Fedora Update for libvirt FEDORA-2008-11443
2009-02-13 00:00:00
Ubuntu Update for libvirt vulnerability USN-694-1
2009-03-23 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:30:41
ubuntucve
ubuntucve
CVE-2008-5086
2008-12-19 00:00:00
CVE-2011-1146
2011-03-15 00:00:00
cve
cve
CVE-2008-5086
2008-12-19 17:30:00
CVE-2011-1146
2011-03-15 17:55:00
securityvulns
securityvulns
[USN-694-1] libvirt vulnerability
2008-12-21 00:00:00
libvirt privilege escalation
2008-12-21 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: libvirt-0.5.1-2.fc9
2008-12-21 08:18:01
[SECURITY] Fedora 10 Update: libvirt-0.5.1-2.fc10
2008-12-21 08:30:41
debiancve
debiancve
CVE-2008-5086
2008-12-19 17:30:00
CVE-2011-1146
2011-03-15 17:55:00
prion
prion
Code injection
2008-12-19 17:30:00
Code injection
2011-03-15 17:55:00
redhat
redhat
(RHSA-2009:0382) Moderate: libvirt security update
2009-03-19 00:00:00
cvelist
cvelist
CVE-2011-1146
2011-03-15 17:00:00
oraclelinux
oraclelinux
libvirt security update
2009-03-19 00:00:00
6.1 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.5%
Related for USN-694-1