CVE-2021-3631 - log back

CVE-2021-3631 edited at 02 Jul 2021 08:34:23
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ A security issue was found in libvirt before version 7.5.0 while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1977726
+ https://gitlab.com/libvirt/libvirt/-/issues/153
+ https://gitlab.com/libvirt/libvirt/-/commit/15073504dbb624d3f6c911e85557019d3620fdb2
Notes
CVE-2021-3631 created at 02 Jul 2021 08:32:38