Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions by leveraging IP address and source-port values, as demonstrated by copying and deleting an NFS directory tree.
Advisories
Source ID Title
EUVD EUVD EUVD-2010-2254 Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions by leveraging IP address and source-port values, as demonstrated by copying and deleting an NFS directory tree.
Ubuntu USN Ubuntu USN USN-1008-1 libvirt vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-07T02:25:07.644Z

Reserved: 2010-06-09T00:00:00

Link: CVE-2010-2242

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2010-08-19T18:00:03.670

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-2242

cve-icon Redhat

Severity : Low

Publid Date: 2010-07-12T00:00:00Z

Links: CVE-2010-2242 - Bugzilla

cve-icon OpenCVE Enrichment

No data.