 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.840519 |
| Category: | Ubuntu Local Security Checks |
| Title: | Ubuntu: Security Advisory (USN-1008-2) |
| Summary: | The remote host is missing an update for the 'virtinst' package(s) announced via the USN-1008-2 advisory. |
| Description: | Summary: The remote host is missing an update for the 'virtinst' package(s) announced via the USN-1008-2 advisory. Vulnerability Insight: Libvirt in Ubuntu 10.04 LTS now no longer probes qemu disks for the image format and defaults to 'raw' when the format is not specified in the XML. This change in behavior breaks virt-install --import because virtinst in Ubuntu 10.04 LTS did not allow for specifying a disk format and does not specify a format in the XML. This update adds the 'format=' option when specifying a disk. For example, to import an existing VM which uses a qcow2 disk format, use something like the following: virt-install --connect=qemu:///session --name test-import --ram=256 \ --disk path= For more information, see man 1 virt-install. Original advisory details: It was discovered that libvirt would probe disk backing stores without consulting the defined format for the disk. A privileged attacker in the guest could exploit this to read arbitrary files on the host. This issue only affected Ubuntu 10.04 LTS. By default, guests are confined by an AppArmor profile which provided partial protection against this flaw. (CVE-2010-2237, CVE-2010-2238) It was discovered that libvirt would create new VMs without setting a backing store format. A privileged attacker in the guest could exploit this to read arbitrary files on the host. This issue did not affect Ubuntu 8.04 LTS. In Ubuntu 9.10 and later guests are confined by an AppArmor profile which provided partial protection against this flaw. (CVE-2010-2239) Jeremy Nickurak discovered that libvirt created iptables rules with too lenient mappings of source ports. A privileged attacker in the guest could bypass intended restrictions to access privileged resources on the host. (CVE-2010-2242) Affected Software/OS: 'virtinst' package(s) on Ubuntu 10.04. Solution: Please install the updated package(s). CVSS Score: 4.4 CVSS Vector: AV:L/AC:M/Au:S/C:C/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-2237 ADV-2010-2763 http://www.vupen.com/english/advisories/2010/2763 FEDORA-2010-10960 http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044520.html FEDORA-2010-11021 http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044579.html SUSE-SR:2010:017 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html USN-1008-1 http://ubuntu.com/usn/usn-1008-1 USN-1008-2 http://ubuntu.com/usn/usn-1008-2 USN-1008-3 http://ubuntu.com/usn/usn-1008-3 http://libvirt.org/news.html https://bugzilla.redhat.com/show_bug.cgi?id=607810 Common Vulnerability Exposure (CVE) ID: CVE-2010-2238 https://bugzilla.redhat.com/show_bug.cgi?id=607811 Common Vulnerability Exposure (CVE) ID: CVE-2010-2239 ADV-2010-2062 http://www.vupen.com/english/advisories/2010/2062 RHSA-2010:0615 http://www.redhat.com/support/errata/RHSA-2010-0615.html https://bugzilla.redhat.com/show_bug.cgi?id=607812 Common Vulnerability Exposure (CVE) ID: CVE-2010-2242 https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/591943 https://bugzilla.redhat.com/show_bug.cgi?id=602455 |
| Copyright | Copyright (C) 2010 Greenbone AG |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |