High severity7.8NVD Advisory· Published Feb 23, 2018· Updated Jun 17, 2026
CVE-2018-6764
CVE-2018-6764
Description
util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14- osv-coords13 versionspkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/virt-manager&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/virt-manager&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/virt-manager&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
< 2.0.0-27.34.1+ 12 more
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 3.3.0-5.19.2
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 3.3.0-5.19.2
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 3.3.0-5.19.2
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 3.3.0-5.19.2
- (no CPE)range: < 2.0.0-27.34.1
- (no CPE)range: < 1.4.1-5.8.1
- (no CPE)range: < 1.4.1-5.8.1
- (no CPE)range: < 1.4.1-5.8.1
Patches
Vulnerability mechanics
References
4- www.redhat.com/archives/libvir-list/2018-February/msg00239.htmlnvdPatchThird Party Advisory
- www.ubuntu.com/usn/USN-3576-1nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3113nvdThird Party Advisory
- www.debian.org/security/2018/dsa-4137nvdThird Party Advisory
News mentions
0No linked articles in our index yet.