CVE-2011-4600

Priority
Description
The networkReloadIptablesRules function in network/bridge_driver.c in
libvirt before 0.9.9 does not properly handle firewall rules on bridge
networks when libvirtd is restarted, which might allow remote attackers to
bypass intended access restrictions via a (1) DNS or (2) DHCP query.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (0.9.9-1)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (1.2.2-0ubuntu13.1.14)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Patches:
Upstream:http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ae1232b298323dd7bef909426e2ebafa6bca9157
More Information

Updated: 2019-12-05 20:58:15 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)