CVE-2014-5177

libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an XML external entity declaration in conjunction with an entity reference to the (1) virDomainDefineXML, (2) virNetworkCreateXML, (3) virNetworkDefineXML, (4) virStoragePoolCreateXML, (5) virStoragePoolDefineXML, (6) virStorageVolCreateXML, (7) virDomainCreateXML, (8) virNodeDeviceCreateXML, (9) virInterfaceDefineXML, (10) virStorageVolCreateXMLFrom, (11) virConnectDomainXMLFromNative, (12) virConnectDomainXMLToNative, (13) virSecretDefineXML, (14) virNWFilterDefineXML, (15) virDomainSnapshotCreateXML, (16) virDomainSaveImageDefineXML, (17) virDomainCreateXMLWithFiles, (18) virConnectCompareCPU, or (19) virConnectBaselineCPU API method, related to an XML External Entity (XXE) issue.  NOTE: this issue was SPLIT from CVE-2014-0179 per ADT3 due to different affected versions of some vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.2 UNKNOWN
LOCAL
HIGH
AV:L/AC:H/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
Affected Products (NVD)
VendorProductVersion
redhatenterprise_virtualization
3.0
opensuseopensuse
12.3
opensuseopensuse
13.1
redhatenterprise_linux
6.0
redhatlibvirt
1.0.0
redhatlibvirt
1.0.1
redhatlibvirt
1.0.2
redhatlibvirt
1.0.3
redhatlibvirt
1.0.4
redhatlibvirt
1.0.5
redhatlibvirt
1.0.5.1
redhatlibvirt
1.0.5.2
redhatlibvirt
1.0.5.3
redhatlibvirt
1.0.5.4
redhatlibvirt
1.0.5.5
redhatlibvirt
1.0.5.6
redhatlibvirt
1.0.6
redhatlibvirt
1.1.0
redhatlibvirt
1.1.1
redhatlibvirt
1.1.2
redhatlibvirt
1.1.3
redhatlibvirt
1.1.4
redhatlibvirt
1.2.0
redhatlibvirt
1.2.1
redhatlibvirt
1.2.2
redhatlibvirt
1.2.3
redhatlibvirt
1.2.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libvirt
bookworm
9.0.0-4+deb12u1
fixed
bullseye
7.0.0-3+deb11u3
fixed
sid
10.9.0-1
fixed
squeeze
not-affected
trixie
10.9.0-1
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libvirt
lucid
not-affected
precise
not-affected
trusty
Fixed 1.2.2-0ubuntu13.1.5
released
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
libvirt
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-client
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-config-network
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-config-nwfilter
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-interface
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-lxc
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-network
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-nodedev
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-nwfilter
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-qemu
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-secret
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-driver-storage
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-kvm
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-daemon-lxc
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-devel
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-docs
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-lock-sanlock
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-login-shell
RHEL 7
0:1.1.1-29.el7_0.1
fixed
libvirt-python
RHEL 7
0:1.1.1-29.el7_0.1
fixed
Common Weakness Enumeration
References
http://libvirt.org/news.html
http://lists.opensuse.org/opensuse-updates/2014-05/msg00048.html
http://lists.opensuse.org/opensuse-updates/2014-05/msg00052.html
http://rhn.redhat.com/errata/RHSA-2014-0560.html
http://secunia.com/advisories/60895
http://security.gentoo.org/glsa/glsa-201412-04.xml
http://security.libvirt.org/2014/0003.html
http://www.ubuntu.com/usn/USN-2366-1
http://libvirt.org/news.html
http://lists.opensuse.org/opensuse-updates/2014-05/msg00048.html
http://lists.opensuse.org/opensuse-updates/2014-05/msg00052.html
http://rhn.redhat.com/errata/RHSA-2014-0560.html
http://secunia.com/advisories/60895
http://security.gentoo.org/glsa/glsa-201412-04.xml
http://security.libvirt.org/2014/0003.html
http://www.ubuntu.com/usn/USN-2366-1