Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 650018 (CVE-2018-6764) - <app-emulation/libvirt-4.1.0: Arbitrary command execution
Summary: <app-emulation/libvirt-4.1.0: Arbitrary command execution
Status: RESOLVED FIXED
Alias: CVE-2018-6764
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B2 [glsa+ cve cleanup]
Keywords:
Depends on:
Blocks:
 
Reported: 2018-03-09 15:37 UTC by GLSAMaker/CVETool Bot
Modified: 2018-04-08 23:29 UTC (History)
3 users (show)

See Also:
Package list:
app-emulation/libvirt-4.1.0 dev-python/libvirt-python-4.1.0
Runtime testing required: ---
stable-bot: sanity-check+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2018-03-09 15:37:26 UTC
CVE-2018-6764 (https://nvd.nist.gov/vuln/detail/CVE-2018-6764):
  util/virlog.c in libvirt does not properly determine the hostname on LXC
  container startup, which allows local guest OS users to bypass an intended
  container protection mechanism and execute arbitrary commands via a crafted
  NSS module.


@Maintainers could you confirm if we are affected?

Thank you
Comment 2 Larry the Git Cow gentoo-dev 2018-03-14 18:18:12 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1751c453ca397918488cad36a354a8340b096543

commit 1751c453ca397918488cad36a354a8340b096543
Author:     Matthias Maier <tamiko@gentoo.org>
AuthorDate: 2018-03-14 16:51:01 +0000
Commit:     Matthias Maier <tamiko@gentoo.org>
CommitDate: 2018-03-14 18:17:26 +0000

    app-emulation/libvirt: Version bump to 4.1.0
    
    Bug: https://bugs.gentoo.org/650018
    Package-Manager: Portage-2.3.24, Repoman-2.3.6

 app-emulation/libvirt/Manifest                     |   1 +
 .../files/libvirt-4.1.0-do_not_use_sysconf.patch   | 204 +++++++++++
 app-emulation/libvirt/libvirt-4.1.0.ebuild         | 384 +++++++++++++++++++++
 3 files changed, 589 insertions(+)}
Comment 3 Matthias Maier gentoo-dev 2018-03-14 18:19:44 UTC
Bumped to 4.1.0

Arches please stabilize.

Target-keywords: amd64 x86
Comment 4 Stabilization helper bot gentoo-dev 2018-03-14 19:00:29 UTC
An automated check of this bug failed - the following atoms are unknown:

app-emulation/libvirt
dev-python/libvirt-python

Please verify the atom list.
Comment 5 Stabilization helper bot gentoo-dev 2018-03-14 21:01:15 UTC
An automated check of this bug succeeded - the previous repoman errors are now resolved.
Comment 6 Mikle Kolyada archtester Gentoo Infrastructure gentoo-dev Security 2018-03-15 10:03:14 UTC
amd64 stable
Comment 7 Thomas Deutschmann gentoo-dev Security 2018-03-18 00:44:24 UTC
x86 stable
Comment 8 Thomas Deutschmann gentoo-dev Security 2018-03-18 00:49:19 UTC
@ Maintainer(s): Please cleanup and drop <app-emulation/libvirt-4.1.0!
Comment 9 Christopher Díaz Riveros (RETIRED) gentoo-dev Security 2018-04-08 17:45:03 UTC
New GLSA Request filed.
Comment 10 GLSAMaker/CVETool Bot gentoo-dev 2018-04-08 23:29:30 UTC
This issue was resolved and addressed in
 GLSA 201804-07 at https://security.gentoo.org/glsa/201804-07
by GLSA coordinator Aaron Bauman (b-man).