An incorrect permissions check exists in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which could lead to potentially disclosing unintended information or denial of service by causing libvirt to block.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat libvirt |
||
opensuse leap 42.3 |
||
fedoraproject fedora 29 |
||
fedoraproject fedora 30 |