Red Hat Bugzilla – Bug 709777
CVE-2011-2178 libvirt: regression introduced in disk probe logic [fedora-rawhide]
Last modified: 2011-06-07 18:57:16 EDT
fedora-rawhide tracking bug for libvirt: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.
[bug automatically created by: add-tracking-bugs]
Probably easiest to solve rawhide by building 0.9.2 rather than trying to backport:
Author: Eric Blake <firstname.lastname@example.org>
Date: Thu May 26 08:18:46 2011 -0600
security: plug regression introduced in disk probe logic
wrong sizeof operand meant that security manager private data
was overlaying the allowDiskFormatProbing member of struct
_virSecurityManager. This reopens disk probing, which was
supposed to be prevented by the solution to CVE-2010-2238.
(virSecurityManagerGetPrivateData): Use correct offset.
libvirt-0.9.2-1.fc16 is now in Rawhide.