libvirt-domain.c in libvirt prior to 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to be required, a different vulnerability than CVE-2019-3886.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt |
||
debian debian linux 8.0 |