Debian: 2194-1: libvirt: insufficient checks

Tags

security

Special Forums Cybersecurity Security Advisories (RSS) Debian: 2194-1: libvirt: insufficient checks

03-18-2011

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

Debian: 2194-1: libvirt: insufficient checks

LinuxSecurity.com: It was discovered that libvirt, a library for interfacing with different virtualization systems, did not properly check for read-only connections. This allowed a local attacker to perform a denial of service (crash) or possibly escalate privileges. [More...]

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Cybersecurity

Experience with libvirt netfilter API

Hi all, I would like to get some ideas and opinions on matter of libvirt netfilter application in KVM environment. I am looking for some easy way to control it with an API and possible experience with that and its performance in real life application. Thanks for all ideas

LEARN ABOUT CENTOS

virt-host-validate

VIRT-HOST-VALIDATE(1)					      Virtualization Support					     VIRT-HOST-VALIDATE(1)

NAME

	 virt-host-validate - validate host virtualization setup

SYNOPSIS

	 virt-host-validate [OPTIONS...] [HV-TYPE]

DESCRIPTION

       This tool validates that the host is configured in a suitable way to run libvirt hypervisor drivers. If invoked without any arguments it
       will check support for all hypervisor drivers it is aware of. Optionally it can be given a particular hypervisor type ('qemu' or 'lxc') to
       restrict the checks to those relevant for that virtualization technology

OPTIONS

       "-v", "--version"
	   Display the command version

       "-h", "--help"
	   Display the command line help

       "-q", "--quiet"
	   Don't display details of individual checks being performed.	Only display output if a check does not pass.

EXIT STATUS

       Upon successful validation, an exit status of 0 will be set. Upon failure a non-zero status will be set.

AUTHOR

       Daniel P. Berrange

BUGS

       Report any bugs discovered to the libvirt community via the mailing list "http://libvirt.org/contact.html" or bug tracker
       "http://libvirt.org/bugs.html".	Alternatively report bugs to your software distributor / vendor.

COPYRIGHT

       Copyright (C) 2012 by Red Hat, Inc.

LICENSE

       virt-host-validate is distributed under the terms of the GNU GPL v2+.  This is free software; see the source for copying conditions. There
       is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE

SEE ALSO

       virsh(1), "virt-pki-validate", "virt-xml-validate"

libvirt-1.1.1							    2012-09-21						     VIRT-HOST-VALIDATE(1)

Security Advisories (RSS)