CVE-2018-6764

Published: Feb 23, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

DSA-4137

vendor-advisory

x_refsource_DEBIAN

RHSA-2018:3113

vendor-advisory

x_refsource_REDHAT

[libvirt] 20180205 [PATCH] virlog: determine the hostname on startup CVE-2018-XXX

mailing-list

x_refsource_MLIST

USN-3576-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-6764

Description

Affected Products

References