Wind River Support Network

HomeDefectsLIN6-8911
Fixed

LIN6-8911 : Security Advisory - libvirt - CVE-2014-7823

Created: Dec 1, 2014    Updated: Dec 3, 2018
Resolved Date: Jan 9, 2015
Found In Version: 6.0.0.16
Fix Version: 6.0.0.17
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_MIGRATABLE, which triggers the use of the VIR_DOMAIN_XML_SECURE flag.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7823

Other Downloads


Live chat
Online