CVE-2013-4311

Severity

46%

Complexity

39%

Confidentiality

106%

libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x before 0.9.12.2 allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition in pkcheck via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.

CVSS 2.0 Base Score 4.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 11 years ago

2013-10-03 21:55:00

Last updated 5 years ago

2019-04-22 17:48:00

Affected Software

Red Hat libvirt 0.9.12

0.9.12

Red Hat libvirt 0.10.2

0.10.2

Red Hat libvirt 0.10.2.1

0.10.2.1

Red Hat libvirt 0.10.2.2

0.10.2.2

Red Hat libvirt 0.10.2.3

0.10.2.3

Red Hat libvirt 0.10.2.4

0.10.2.4

Red Hat libvirt 0.10.2.5

0.10.2.5

Red Hat libvirt 0.10.2.6

0.10.2.6

Red Hat libvirt 0.10.2.7

0.10.2.7

Red Hat libvirt 1.0.5

1.0.5

Red Hat libvirt 1.0.5.1

1.0.5.1

Red Hat libvirt 1.0.5.2

1.0.5.2

Red Hat libvirt 1.0.5.3

1.0.5.3

Red Hat libvirt 1.0.5.4

1.0.5.4

Red Hat libvirt 1.0.5.5

1.0.5.5

Canonical Ubuntu Linux 10.04 LTS

10.04

Canonical Ubuntu Linux 12.04 LTS (Long-Term Support)

12.04

Canonical Ubuntu Linux 12.10

12.10

Canonical Ubuntu Linux 13.04

13.04

Red Hat Enterprise Linux 6.0

6.0

References

openSUSE-SU-2013:1549

openSUSE-SU-2013:1550

RHSA-2013:1272

Vendor Advisory

RHSA-2013:1460

http://wiki.libvirt.org/page/Maintenance_Releases

Patch

[oss-security] 20130918 Re: Fwd: [vs-plain] polkit races

USN-1954-1