CVE-2010-2238

Name of the Vulnerable Software and Affected Versions Red Hat libvirt versions 0.7.2 through 0.8.2

Description The issue allows guest OS users to potentially read arbitrary files on the host OS and may have other unspecified impacts. This is due to the software recursing into disk-image backing stores without properly extracting the defined disk backing-store format.

Recommendations For versions 0.7.2 through 0.8.2, update to a version that properly handles disk-image backing stores to prevent unauthorized access to host OS files.