Upstream information

CVE-2013-4419 at MITRE

Description

The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the --remote or --listen option, does not properly check the ownership of /tmp/.guestfish-$UID/ when creating a temporary socket file in this directory, which allows local users to write to the socket and execute arbitrary commands by creating /tmp/.guestfish-$UID/ in advance.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database SUSE
Base Score 6.8 8.3
Vector AV:A/AC:H/Au:N/C:C/I:C/A:C AV:A/AC:L/Au:N/C:C/I:C/A:C
Access Vector Adjacent Network Adjacent Network
Access Complexity High Low
Authentication None None
Confidentiality Impact Complete Complete
Integrity Impact Complete Complete
Availability Impact Complete Complete
SUSE Bugzilla entry: 845720 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 11 SP3
  • guestfs-data >= 1.20.4-0.18.1
  • guestfs-tools >= 1.20.4-0.18.1
  • guestfsd >= 1.20.4-0.18.1
  • libguestfs0 >= 1.20.4-0.18.1
Patchnames:
slessp3-guestfs-data
SUSE Linux Enterprise Server 11 SP4
  • guestfs-data >= 1.20.12-0.18.70
  • guestfs-tools >= 1.20.12-0.18.70
  • guestfsd >= 1.20.12-0.18.70
  • libguestfs0 >= 1.20.12-0.18.70
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA guestfs-data
SUSE Linux Enterprise Server 12
  • guestfs-data >= 1.26.9-1.23
  • guestfs-tools >= 1.26.9-1.23
  • guestfsd >= 1.26.9-1.23
  • libguestfs0 >= 1.26.9-1.23
  • perl-Sys-Guestfs >= 1.26.9-1.23
Patchnames:
SUSE Linux Enterprise Server 12 GA guestfs-data
SUSE Linux Enterprise Server 12 SP1
  • guestfs-data >= 1.26.10-4.27
  • guestfs-tools >= 1.26.10-4.27
  • guestfsd >= 1.26.10-4.27
  • libguestfs0 >= 1.26.10-4.27
  • perl-Sys-Guestfs >= 1.26.10-4.27
  • python-libguestfs >= 1.26.10-4.27
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA guestfs-data
SUSE Linux Enterprise Server 12 SP2
  • guestfs-data >= 1.32.4-14.18
  • guestfs-tools >= 1.32.4-14.18
  • guestfsd >= 1.32.4-14.18
  • libguestfs0 >= 1.32.4-14.18
  • perl-Sys-Guestfs >= 1.32.4-14.18
  • python-libguestfs >= 1.32.4-14.18
  • virt-p2v >= 1.32.4-14.18
  • virt-v2v >= 1.32.4-14.18
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA guestfs-data
SUSE Linux Enterprise Server 12 SP3
  • guestfs-data >= 1.32.4-19.24
  • guestfs-tools >= 1.32.4-19.24
  • guestfsd >= 1.32.4-19.24
  • libguestfs0 >= 1.32.4-19.24
  • perl-Sys-Guestfs >= 1.32.4-19.24
  • python-libguestfs >= 1.32.4-19.24
  • virt-p2v >= 1.32.4-19.24
  • virt-v2v >= 1.32.4-19.24
Patchnames:
SUSE Linux Enterprise Server 12 SP3 GA guestfs-data
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • guestfs-data >= 1.32.4-14.18
  • guestfs-tools >= 1.32.4-14.18
  • guestfsd >= 1.32.4-14.18
  • libguestfs0 >= 1.32.4-14.18
  • perl-Sys-Guestfs >= 1.32.4-14.18
  • python-libguestfs >= 1.32.4-14.18
Patchnames:
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA guestfs-data
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libguestfs-devel >= 1.20.4-0.18.1
Patchnames:
sdksp3-guestfs-data
SUSE Linux Enterprise Software Development Kit 11 SP4
  • libguestfs-devel >= 1.20.12-0.18.70
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA libguestfs-devel
SUSE Linux Enterprise Software Development Kit 12
  • libguestfs-devel >= 1.26.9-1.23
  • ocaml-libguestfs-devel >= 1.26.9-1.23
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 GA libguestfs-devel
SUSE Linux Enterprise Software Development Kit 12 SP1
  • libguestfs-devel >= 1.26.10-4.27
  • ocaml-libguestfs-devel >= 1.26.10-4.27
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP1 GA libguestfs-devel
SUSE Linux Enterprise Software Development Kit 12 SP2
  • libguestfs-devel >= 1.32.4-14.18
  • ocaml-libguestfs-devel >= 1.32.4-14.18
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP2 GA libguestfs-devel
SUSE Linux Enterprise Software Development Kit 12 SP3
  • libguestfs-devel >= 1.32.4-19.24
  • ocaml-libguestfs-devel >= 1.32.4-19.24
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP3 GA libguestfs-devel
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libguestfs-devel >= 1.20.4-0.18.1
Builds
SAT Patch Nr: 8465
SUSE Linux Enterprise Server 11 SP3
  • guestfs-data >= 1.20.4-0.18.1
  • guestfs-tools >= 1.20.4-0.18.1
  • guestfsd >= 1.20.4-0.18.1
  • libguestfs0 >= 1.20.4-0.18.1
Builds
SAT Patch Nr: 8465
openSUSE Tumbleweed
  • guestfs-data >= 1.32.4-11.1
  • guestfs-tools >= 1.32.4-11.1
  • guestfsd >= 1.32.4-11.1
  • libguestfs-devel >= 1.32.4-11.1
  • libguestfs-test >= 1.32.4-11.1
  • libguestfs0 >= 1.32.4-11.1
  • lua-libguestfs >= 1.32.4-11.1
  • ocaml-libguestfs >= 1.32.4-11.1
  • ocaml-libguestfs-devel >= 1.32.4-11.1
  • perl-Sys-Guestfs >= 1.32.4-11.1
  • python-libguestfs >= 1.32.4-11.1
  • rubygem-libguestfs >= 1.32.4-11.1
  • virt-p2v >= 1.32.4-11.1
Patchnames:
openSUSE Tumbleweed GA guestfs-data


Status of this issue by product and package

Product(s) Source package State
SUSE Linux Enterprise SDK 11 SP3 libguestfs Released
SUSE Linux Enterprise Server 11 SP3 libguestfs Released
SUSE Linux Enterprise Server 11 SP3 LTSS libguestfs Released