CVE-2011-4600

The networkReloadIptablesRules function in network/bridge_driver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote attackers to bypass intended access restrictions via a (1) DNS or (2) DHCP query.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:redhat:libvirt:0.9.8:*:*:*:*:*:*:*

History

13 Feb 2023, 03:23

Type Values Removed Values Added
References
  • {'url': 'http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ae1232b298323dd7bef909426e2ebafa6bca9157', 'name': 'http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ae1232b298323dd7bef909426e2ebafa6bca9157', 'tags': ['Patch'], 'refsource': 'CONFIRM'}
  • (MISC) http://libvirt.org/git/?p=libvirt.git%3Ba=commitdiff%3Bh=ae1232b298323dd7bef909426e2ebafa6bca9157 -

Information

Published : 2016-04-14 15:59

Updated : 2023-12-10 11:46


NVD link : CVE-2011-4600

Mitre link : CVE-2011-4600

CVE.ORG link : CVE-2011-4600


JSON object : View

Products Affected

redhat

  • libvirt

canonical

  • ubuntu_linux
CWE
CWE-284

Improper Access Control