A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with limited ACL permissions could use this flaw to crash the libvirt daemon, resulting in a denial of service, or potentially escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
{ "availability": "No subscription required", "ubuntu_priority": "negligible", "binaries": [ { "libvirt-daemon-driver-storage-gluster-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-wireshark-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-rbd": "4.0.0-1ubuntu8.21", "libvirt-clients-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-sheepdog": "4.0.0-1ubuntu8.21", "libvirt-sanlock": "4.0.0-1ubuntu8.21", "libvirt-doc": "4.0.0-1ubuntu8.21", "libvirt-daemon-system-dbgsym": "4.0.0-1ubuntu8.21", "libvirt0-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-dev": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-rbd-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-clients": "4.0.0-1ubuntu8.21", "libvirt0": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-zfs": "4.0.0-1ubuntu8.21", "libvirt-daemon-system": "4.0.0-1ubuntu8.21", "libvirt-sanlock-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-wireshark": "4.0.0-1ubuntu8.21", "libnss-libvirt-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-zfs-dbgsym": "4.0.0-1ubuntu8.21", "libnss-libvirt": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-sheepdog-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-daemon-dbgsym": "4.0.0-1ubuntu8.21", "libvirt-daemon-driver-storage-gluster": "4.0.0-1ubuntu8.21", "libvirt-daemon": "4.0.0-1ubuntu8.21", "libvirt-bin": "4.0.0-1ubuntu8.21" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "negligible", "binaries": [ { "libvirt-wireshark-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-rbd": "6.0.0-0ubuntu8.16", "libvirt-doc": "6.0.0-0ubuntu8.16", "libvirt-daemon-system-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-lxc-dbgsym": "6.0.0-0ubuntu8.16", "libvirt0": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-xen-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-system": "6.0.0-0ubuntu8.16", "libvirt-daemon-system-sysv": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-xen": "6.0.0-0ubuntu8.16", "libnss-libvirt-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-sanlock-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-gluster": "6.0.0-0ubuntu8.16", "libvirt-wireshark": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-qemu": "6.0.0-0ubuntu8.16", "libnss-libvirt": "6.0.0-0ubuntu8.16", "libvirt-daemon": "6.0.0-0ubuntu8.16", "libvirt-daemon-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-gluster-dbgsym": "6.0.0-0ubuntu8.16", "libvirt0-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-clients-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-sanlock": "6.0.0-0ubuntu8.16", "libvirt-daemon-system-systemd": "6.0.0-0ubuntu8.16", "libvirt-dev": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-qemu-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-rbd-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-clients": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-vbox-dbgsym": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-zfs": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-vbox": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-lxc": "6.0.0-0ubuntu8.16", "libvirt-daemon-driver-storage-zfs-dbgsym": "6.0.0-0ubuntu8.16" } ] }