CVE-2011-1146
libvirt - privilege escalation
EPSS 1.6%
Description
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.
How to fix CVE-2011-1146
To remediate CVE-2011-1146, upgrade the affected package to a fixed version below.
- Debian/libvirt—upgrade to 0.8.8-3 or later
- —upgrade to 0.8.3-5+squeeze1 or later
Is CVE-2011-1146 being exploited?
Low — EPSS is 1.6%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.8.8-3
- from 0, < 0.8.3-5+squeeze1