CVE-2011-2178

Name of the Vulnerable Software and Affected Versions libvirt versions 0.8.8 through 0.9.1

Description The issue is related to the virSecurityManagerGetPrivateData function in security/security manager.c, which incorrectly processes "security manager private data" due to a wrong argument used in a sizeof call. This might allow guest OS users to read arbitrary files on the host OS.

Recommendations For libvirt versions 0.8.8 through 0.9.1, consider updating to a version that fixes the regression issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.