Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-5313

Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in libvirt, when fine-grained Access Control Lists (ACL) are in effect, allows local users with storage_vol:create ACL but not domain:write permission to write to arbitrary files via a .. (dot dot) in a volume name.

Related bugs and status

CVE-2015-5313 (Candidate) is related to these bugs:

Bug #1534262: Outdated (vulnerable) libvirt package in MOS 6.0

		In	Importance	Status
1534262	Outdated (vulnerable) libvirt package in MOS 6.0	Mirantis OpenStack	High	Fix Released
1534262	Outdated (vulnerable) libvirt package in MOS 6.0	Mirantis OpenStack 7.0.x	High	Fix Released
1534262	Outdated (vulnerable) libvirt package in MOS 6.0	Mirantis OpenStack 6.1.x	High	Fix Released
1534262	Outdated (vulnerable) libvirt package in MOS 6.0	Mirantis OpenStack 5.1.x	High	Won't Fix

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://lists.fedorapro...
MISC: https://security.gento...
MISC: http://rhn.redhat.com/...
MISC: https://www.redhat.com...
MISC: http://libvirt.org/git...
MISC: http://security.libvir...