Wind River Support Network

HomeDefectsLIN6-9370

Fixed

LIN6-9370 : Security Advisory - libvirt - CVE-2015-0236

Created: Feb 1, 2015 Updated: Dec 3, 2018

Resolved Date: Mar 19, 2015

Found In Version: 6.0.0.18

Fix Version: 6.0.0.19

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0236

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38