Vulnerability CVE-2020-25637: Information
Description
A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with limited ACL permissions could use this flaw to crash the libvirt daemon, resulting in a denial of service, or potentially escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Severity: MEDIUM (6.7) Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| libvirt | sisyphus | 6.8.0-alt1 | 10.2.0-alt1 | ALT-PU-2020-3005-1 | 259518 | Fixed |
| libvirt | p10 | 6.8.0-alt1 | 9.7.0-alt2.p10.2 | ALT-PU-2020-3005-1 | 259518 | Fixed |
| libvirt | p9 | 6.6.0-alt2 | 7.3.0-alt0.p9.3 | ALT-PU-2021-1690-1 | 254587 | Fixed |
| libvirt | c10f1 | 6.8.0-alt1 | 9.7.0-alt2.p10.2 | ALT-PU-2020-3005-1 | 259518 | Fixed |
| libvirt | c9f2 | 7.3.0-alt0.p9.1 | 7.3.0-alt0.p9.3 | ALT-PU-2021-1965-1 | 273330 | Fixed |
| libvirt | p11 | 6.8.0-alt1 | 10.2.0-alt1 | ALT-PU-2020-3005-1 | 259518 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1881037 |
|
| openSUSE-SU-2020:1777 |
|
| openSUSE-SU-2020:1778 |
|
| GLSA-202210-06 |
|
| [debian-lts-announce] 20240401 [SECURITY] [DLA 3778-1] libvirt security update |