CVE-2016-10746

Published: Apr 18, 2019

Modified: Aug 6, 2024

PUBLISHED

Description

libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to be required, a different vulnerability than CVE-2019-3886.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/libvirt/libvirt/commit/506e9d6c2d4baaf580d489fff0690c0ff2ff588f

x_refsource_MISC

https://github.com/libvirt/libvirt/compare/11288f5...8fd6867

x_refsource_MISC

[debian-lts-announce] 20190430 [SECURITY] [DLA 1772-1] libvirt security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10746

Description

Affected Products

References