FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-12-25 11:10:35 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
be3167b5-d140-11f0-ad27-c01803b56cc4	libvirt -- Multiple vulnerabilities The libvirt project reports: See changelog for details. Discovery 2025-11-11 Entry 2025-12-04 libvirt < 11.10.0 CVE-2025-12748 https://cveawg.mitre.org/api/cve/CVE-2025-12748 CVE-2025-13193 https://cveawg.mitre.org/api/cve/CVE-2025-13193
f714b4c9-a6c1-11e5-88d7-047d7b492d07	libvirt -- ACL bypass using ../ to access beyond storage pool Libvit development team reports: Various virStorageVol* API operate on user-supplied volume names by concatenating the volume name to the pool location. Note that the virStoragePoolListVolumes API, when used on a storage pool backed by a directory in a file system, will only list volumes immediately in that directory (there is no traversal into subdirectories). However, other APIs such as virStorageVolCreateXML were not checking if a potential volume name represented one of the volumes that could be returned by virStoragePoolListVolumes; because they were not rejecting the use of '/' in a volume name. Because no checking was done on volume names, a user could supply a potential volume name of something like '../../../etc/passwd' to attempt to access a file not belonging to the storage pool. When fine-grained Access Control Lists (ACL) are in effect, a user with storage_vol:create ACL permission but lacking domain:write permission could thus abuse virStorageVolCreateXML and similar APIs to gain access to files not normally permitted to that user. Fortunately, it appears that the only APIs that could leak information or corrupt files require read-write connection to libvirtd; and when ACLs are not in use (the default without any further configuration), a user with read-write access can already be considered to have full access to the machine, and without an escalation of privilege there is no security problem. Discovery 2015-10-30 Entry 2015-12-20 libvirt >= 1.1.0 lt 1.2.19_2 >= 1.2.20 lt 1.3.0 CVE-2015-5313 http://security.libvirt.org/2015/0004.html

VuXML ID

Description

be3167b5-d140-11f0-ad27-c01803b56cc4

libvirt -- Multiple vulnerabilities

The libvirt project reports:

See changelog for details.

Discovery 2025-11-11
Entry 2025-12-04
libvirt

< 11.10.0

CVE-2025-12748
https://cveawg.mitre.org/api/cve/CVE-2025-12748
CVE-2025-13193
https://cveawg.mitre.org/api/cve/CVE-2025-13193

f714b4c9-a6c1-11e5-88d7-047d7b492d07

libvirt -- ACL bypass using ../ to access beyond storage pool

Libvit development team reports:

Various virStorageVol* API operate on user-supplied volume names by concatenating the volume name to the pool location. Note that the virStoragePoolListVolumes API, when used on a storage pool backed by a directory in a file system, will only list volumes immediately in that directory (there is no traversal into subdirectories). However, other APIs such as virStorageVolCreateXML were not checking if a potential volume name represented one of the volumes that could be returned by virStoragePoolListVolumes; because they were not rejecting the use of '/' in a volume name.

Because no checking was done on volume names, a user could supply a potential volume name of something like '../../../etc/passwd' to attempt to access a file not belonging to the storage pool. When fine-grained Access Control Lists (ACL) are in effect, a user with storage_vol:create ACL permission but lacking domain:write permission could thus abuse virStorageVolCreateXML and similar APIs to gain access to files not normally permitted to that user. Fortunately, it appears that the only APIs that could leak information or corrupt files require read-write connection to libvirtd; and when ACLs are not in use (the default without any further configuration), a user with read-write access can already be considered to have full access to the machine, and without an escalation of privilege there is no security problem.

Discovery 2015-10-30
Entry 2015-12-20
libvirt

>= 1.1.0 lt 1.2.19_2

>= 1.2.20 lt 1.3.0

CVE-2015-5313
http://security.libvirt.org/2015/0004.html