1015259 – (CVE-2013-4401) CVE-2013-4401 libvirt: unintended API access due to incorrect permissions checks

Bug 1015259 (CVE-2013-4401) - CVE-2013-4401 libvirt: unintended API access due to incorrect permissions checks

Summary: CVE-2013-4401 libvirt: unintended API access due to incorrect permissions checks

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2013-4401
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1015260
Blocks:
TreeView+	depends on / blocked

Reported:	2013-10-03 18:21 UTC by Vincent Danen
Modified:	2021-02-17 07:18 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2013-10-03 18:23:48 UTC
Embargoed:

Attachments	(Terms of Use)

Description Vincent Danen 2013-10-03 18:21:18 UTC

A flaw was found in libvirt where libvirtd could crash due to how XML was parsed [1].  With the introduction of ACL permissions in libvirt 1.1.0, this flaw could be manipulated to allow a remote user with connect:read privileges to elevate them to the more permissive domain:write privilege.

This vulnerability was introduced in libvirt 1.1.0.

[1] https://bugzilla.redhat.com/show_bug.cgi?id=1012196;

Comment 2 Vincent Danen 2013-10-03 18:23:48 UTC

Statement:

Not vulnerable.

This issue did not affect the versions of libvirt package as shipped with Red Hat Enterprise Linux 5 and 6.

Comment 3 Petr Matousek 2013-10-21 15:53:48 UTC

Upstream commit:

http://libvirt.org/git/?p=libvirt.git;a=commit;h=57687fd6bf7f6e1b3662c52f3f26c06ab19dc96c

Note You need to log in before you can comment on or make changes to this bug.