The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to gain privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt 0.10.2.7 |
||
redhat libvirt 1.1.1 |
||
redhat libvirt 1.0.5.5 |