Unrated severityNVD Advisory· Published Aug 19, 2010· Updated Apr 29, 2026
CVE-2010-2239
CVE-2010-2239
Description
Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspecified vectors.
Affected products
17cpe:2.3:a:libvirt:libvirt:0.6.0:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:libvirt:libvirt:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.7.7:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:libvirt:libvirt:0.8.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- libvirt.org/news.htmlnvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044520.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-July/044579.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlnvd
- ubuntu.com/usn/usn-1008-1nvd
- ubuntu.com/usn/usn-1008-2nvd
- ubuntu.com/usn/usn-1008-3nvd
- www.redhat.com/support/errata/RHSA-2010-0615.htmlnvd
- www.vupen.com/english/advisories/2010/2062nvd
- www.vupen.com/english/advisories/2010/2763nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.