A vulnerability was found in libvirt versions >= 4.8.0. An information exposure allows to retrieve the guest hostname under readonly mode
NB, the flaw isn't the fact that the guest hostname is disclosed, but rather that the act of getting the hostname involves talking to the guest agent. The guest agent is untrusted and can block libvirt operations for a period of time, and so unprivileged users must not be allowed to run operations that talk to the guest agent.
Patches posted upstream at:
NB part of the flaw was found to also affect the virDomainGetTime API, in addition to virDomainGetHostname.
I've altered the doctext to hopefully more faithfully represent the nature of the flaw, and changed the CVSS vector to A:L representing potential Availability impact by blocking libvirt.
Created libvirt tracking bugs for this issue:
Affects: fedora-rawhide [bug 1696055]
Created mingw-libvirt tracking bugs for this issue:
Affects: fedora-rawhide [bug 1696054]