Libvirt Security Notice: LSN-2013-0014
virt-login-shell fails to secure setuid environment
Lifecycle
Reported on: |
20131002 |
Published on: |
20131021 |
Fixed on: |
20131021 |
Credits
See also
Description
The virt-login-shell binary is a setuid program to connect to
LXC containers. It fails to sanitize its environment in a number of
places allowing it to be used to elevate privileges of the invoking
user by overwriting files
Impact
An unprivileged user can overwrite arbitrary files on the
host leading to an elevation of privileges.
Workaround
Remove the setuid bit from the virt-login-shell binary
Affected product: libvirt
Alternative formats:
[xml] [text]