Bugzilla – Bug 1138302
VUL-0: CVE-2019-10166: libvirt: api: disallow virDomainManagedSaveDefineXML on read-only connections
Last modified: 2019-07-20 10:10:36 UTC
via libvirt security, reported by Matthias. The virDomainManagedSaveDefineXML can be used to alter the domain's config used for managedsave or even execute arbitrary emulator binaries. Forbid it on read-only connections. Fixes: CVE-2019-10166 Reported-by: Matthias Gerstner <mgerstner@suse.de> Signed-off-by: Ján Tomko <jtomko@redhat.com>
Created attachment 807634 [details] CVE-2019-10166.patch CVE-2019-10166.patch
This bug affects SLE12 SP4/5, SLE15 GA/SP1, and TW.
CRD: 2019-06-20 12:00UTC
This is an autogenerated message for OBS integration: This bug (1138302) was mentioned in https://build.opensuse.org/request/show/711170 Factory / libvirt
SUSE-SU-2019:1599-1: An update that fixes three vulnerabilities is now available. Category: security (important) Bug References: 1138301,1138302,1138303 CVE References: CVE-2019-10161,CVE-2019-10166,CVE-2019-10167 Sources used: SUSE Linux Enterprise Software Development Kit 12-SP4 (src): libvirt-4.0.0-8.15.2 SUSE Linux Enterprise Server 12-SP4 (src): libvirt-4.0.0-8.15.2 SUSE Linux Enterprise Desktop 12-SP4 (src): libvirt-4.0.0-8.15.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2019:1637-1: An update that solves three vulnerabilities and has one errata is now available. Category: security (important) Bug References: 1136109,1138301,1138302,1138303 CVE References: CVE-2019-10161,CVE-2019-10166,CVE-2019-10167 Sources used: SUSE Linux Enterprise Module for Server Applications 15 (src): libvirt-4.0.0-9.27.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (src): libvirt-4.0.0-9.27.1 SUSE Linux Enterprise Module for Basesystem 15 (src): libvirt-4.0.0-9.27.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2019:1643-1: An update that fixes four vulnerabilities is now available. Category: security (important) Bug References: 1138301,1138302,1138303,1138305 CVE References: CVE-2019-10161,CVE-2019-10166,CVE-2019-10167,CVE-2019-10168 Sources used: SUSE Linux Enterprise Module for Server Applications 15-SP1 (src): libvirt-5.1.0-8.6.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (src): libvirt-5.1.0-8.6.1 SUSE Linux Enterprise Module for Basesystem 15-SP1 (src): libvirt-5.1.0-8.6.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
is public now
openSUSE-SU-2019:1672-1: An update that solves three vulnerabilities and has one errata is now available. Category: security (important) Bug References: 1136109,1138301,1138302,1138303 CVE References: CVE-2019-10161,CVE-2019-10166,CVE-2019-10167 Sources used: openSUSE Leap 15.0 (src): libvirt-4.0.0-lp150.7.18.2
released
openSUSE-SU-2019:1753-1: An update that fixes four vulnerabilities is now available. Category: security (important) Bug References: 1138301,1138302,1138303,1138305 CVE References: CVE-2019-10161,CVE-2019-10166,CVE-2019-10167,CVE-2019-10168 Sources used: openSUSE Leap 15.1 (src): libvirt-5.1.0-lp151.7.3.1