Wind River Support Network

HomeDefectsLIN6-8911

Fixed

LIN6-8911 : Security Advisory - libvirt - CVE-2014-7823

Created: Dec 1, 2014 Updated: Dec 3, 2018

Resolved Date: Jan 9, 2015

Found In Version: 6.0.0.16

Fix Version: 6.0.0.17

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_MIGRATABLE, which triggers the use of the VIR_DOMAIN_XML_SECURE flag.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7823

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38