CVE-2019-10132 (retired)

Priority
Description
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket
and virtlogd-admin.socket systemd units. A missing SocketMode configuration
parameter allows any user on the host to connect using virtlockd-admin-sock
or virtlogd-admin-sock and perform administrative tasks against the
virtlockd and virtlogd daemons.
Notes
 mdeslaur> only affects >= 4.1.0
Assigned-to
mdeslaur
More Information

Updated: 2019-06-19 18:15:02 UTC (commit 837e440be10812bfd807c193b0c8f06ee3a3c57b)