from ${URL}: Description: The two interfaces virDomainSnapshotGetXMLDesc and virDomainSaveImageGetXMLDesc would accept the VIR_DOMAIN_XML_SECURE flag in situations where virDomainGetXMLDesc did not, when fine-grained access control lists (ACL) are in use. As a result, a client can use a snapshot or save image to bypass restrictions and gain access to the secured information. Impact: A client using a read-write connection, and which has the 'domain:read' ACL privilege while lacking 'domain:secure_read', can trigger an information leak of data by using VIR_DOMAIN_XML_SECURE with the affected interfaces. Fortunately, the only data in this category is the value of an optional VNC password. *libvirt-1.2.10-r4 (27 Jan 2015) 27 Jan 2015; Matthias Maier <tamiko@gentoo.org> +libvirt-1.2.10-r4.ebuild: apply security fix for 1.2.10 (CVE-2015-0236) *libvirt-1.2.12 (27 Jan 2015) *libvirt-1.2.11-r3 (27 Jan 2015) 27 Jan 2015; Matthias Maier <tamiko@gentoo.org> +libvirt-1.2.11-r3.ebuild, +libvirt-1.2.12.ebuild, -files/libvirt-1.2.10-cve-2014-7823.patch, -files/libvirt-1.2.10-cve-2014-8131-part2.patch, -files/libvirt-1.2.10-cve-2014-8131.patch, -libvirt-1.2.11-r2.ebuild, libvirt-1.2.10-r3.ebuild, libvirt-9999.ebuild: version bump; cleanup; apply security fix for 1.2.11 and drop vulnerable (CVE-2015-0236) Fixed in: 1.2.10-r4, 1.2.11-r3 Unaffected: 1.2.12 Vulnerable version left in tree: 1.2.10-r3 Arches, please stabilize version 1.2.10-r4 Target keywords: amd64 x86
amd64 stable
CVE-2015-0236 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0236): libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.
x86 stable. Maintainer(s), please cleanup. Security, please vote.
15 Feb 2015; Matthias Maier <tamiko@gentoo.org> -libvirt-1.2.10-r3.ebuild: drop vulnerable, wrt bug #537956
GLSA Vote: No
GLSA Vote: No Maintainer(s), Thank you for cleanup! Closing noglsa.