Lucene search
Redhat.comRH:CVE-2019-10167HistoryJun 20, 2019 - 12:24 p.m.
CVE-2019-10167
2019-06-2012:24:08
redhat.com
access.redhat.com
13
0.0004 Low
EPSS
Percentile
5.3%
The virConnectGetDomainCapabilities() libvirt API accepts an “emulatorbin” argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain’s capabilities. Read-only clients could specify an arbitrary path for this argument, causing libvirtd to execute a crafted executable with its own privileges.
Mitigation
The Unix permissions of libvirt's read-only socket can be made more restrictive than the default (0777) by editing /etc/libvirt/libvirtd.conf. The settings unix_sock_group = libvirt and unix_sock_ro_perms = 0770 will restrict access to only members of libvirt, who already have management access to virtual machines.
Related
nvd
nvd
CVE-2019-10167
2019-08-02 13:15:12
ubuntucve
ubuntucve
CVE-2019-10167
2019-06-20 00:00:00
debiancve
debiancve
CVE-2019-10167
2019-08-02 13:15:12
cvelist
cvelist
CVE-2019-10167
2019-08-02 12:05:52
nessus
nessus
Photon OS 1.0: Libvirt PHSA-2020-1.0-0276
2020-02-13 00:00:00
Photon OS 2.0: Libvirt PHSA-2020-2.0-0214
2020-03-11 00:00:00
SUSE SLES12 Security Update : libvirt (SUSE-SU-2019:2227-2)
2019-09-12 00:00:00
osv
osv
CVE-2019-10167
2019-08-02 13:15:12
libvirt - security update
2019-06-24 00:00:00
libvirt - security update
2019-06-22 00:00:00
cve
cve
CVE-2019-10167
2019-08-02 13:15:12
prion
prion
Code injection
2019-08-02 13:15:00
veracode
veracode
Remote Code Execution
2019-06-25 09:04:49
Arbitrary Code Execution
2019-06-24 00:21:50
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0214
2020-03-03 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0276
2020-02-13 00:00:00
Important Photon OS Security Update - PHSA-2020-0214
2020-02-12 00:00:00
alpinelinux
alpinelinux
CVE-2019-10167
2019-08-02 13:15:12
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2227-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2105-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2227-2)
2021-04-19 00:00:00
debian
debian
[SECURITY] [DLA 1832-1] libvirt security update
2019-06-24 19:26:44
[SECURITY] [DSA 4469-1] libvirt security update
2019-06-22 16:55:45
[SECURITY] [DSA 4469-1] libvirt security update
2019-06-22 16:55:45
suse
suse
Security update for libvirt (important)
2019-06-30 00:00:00
Security update for libvirt (important)
2019-07-20 00:00:00
gentoo
gentoo
libvirt: Multiple vulnerabilities
2020-03-15 00:00:00
oraclelinux
oraclelinux
libvirt security and bug fix update
2019-06-21 00:00:00
libvirt security update
2019-07-10 00:00:00
virt:rhel security update
2019-07-30 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2019-07-08 00:00:00
redhat
redhat
(RHSA-2019:1580) Important: virt:rhel security update
2019-06-20 12:44:28
(RHSA-2019:1762) Important: virt:8.0.0 security update
2019-07-11 15:06:35
(RHSA-2019:1579) Important: libvirt security and bug fix update
2019-06-20 12:44:11
centos
centos
libvirt security update
2019-06-20 20:39:11
mageia
mageia
Updated libvirt packages fix security vulnerabilities
2019-12-15 21:03:05
amazon
amazon
Important: libvirt
2019-08-23 03:34:00
fedora
fedora
[SECURITY] Fedora 30 Update: libvirt-5.1.0-9.fc30
2019-07-09 00:56:34
[SECURITY] Fedora 29 Update: libvirt-4.7.0-5.fc29
2019-07-09 02:25:07