Unrated severityNVD Advisory· Published Aug 19, 2010· Updated Apr 29, 2026
CVE-2010-2238
CVE-2010-2238
Description
Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors.
Affected products
9cpe:2.3:a:libvirt:libvirt:0.7.2:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:libvirt:libvirt:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.7:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- libvirt.org/news.htmlnvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044520.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044579.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlnvd
- ubuntu.com/usn/usn-1008-1nvd
- ubuntu.com/usn/usn-1008-2nvd
- ubuntu.com/usn/usn-1008-3nvd
- www.vupen.com/english/advisories/2010/2763nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.