CVE-2013-1766
EPSS 0.06%libvirt - files and device nodes ownership change to kvm group
Published: 3/20/2013Modified: 4/28/2026
Also known as:DEBIAN-CVE-2013-1766
Description
libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors.
Affected packages (2)
- Debian/libvirtfrom 0, < 0.9.12-8
- Debian/libvirtfrom 0, < 0.8.3-5+squeeze4