1. Patchew
  2. Libvirt
  3. [libvirt] [PATCH 0/2] Fix permissions checks for virDomainGetTime/Hostname
  4. View patch

[libvirt] [PATCH 2/2] remote: enforce ACL write permission for getting guest time & hostname

Daniel P. Berrangé posted 2 patches 6 years, 10 months ago
[libvirt] [PATCH 2/2] remote: enforce ACL write permission for getting guest time & hostname
Posted by Daniel P. Berrangé 6 years, 10 months ago 
Getting the guest time and hostname both require use of guest agent
commands. These must not be allowed for read-only users, so the
permissions check must validate "write" permission not "read".

Fixes CVE-2019-3886
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
---
 src/remote/remote_protocol.x | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/remote/remote_protocol.x b/src/remote/remote_protocol.x
index 74be4b37d0..11f44ee267 100644
--- a/src/remote/remote_protocol.x
+++ b/src/remote/remote_protocol.x
@@ -5513,7 +5513,7 @@ enum remote_procedure {
 
     /**
      * @generate: both
-     * @acl: domain:read
+     * @acl: domain:write
      */
     REMOTE_PROC_DOMAIN_GET_HOSTNAME = 277,
 
@@ -5908,7 +5908,7 @@ enum remote_procedure {
 
     /**
      * @generate: none
-     * @acl: domain:read
+     * @acl: domain:write
      */
     REMOTE_PROC_DOMAIN_GET_TIME = 337,
 
-- 
2.20.1

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH 2/2] remote: enforce ACL write permission for getting guest time & hostname
Posted by Jim Fehlig 6 years, 10 months ago 
On 4/3/19 8:00 AM, Daniel P. Berrangé wrote:
> Getting the guest time and hostname both require use of guest agent
> commands. These must not be allowed for read-only users, so the
> permissions check must validate "write" permission not "read".
> 
> Fixes CVE-2019-3886
> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
> ---
>   src/remote/remote_protocol.x | 4 ++--
>   1 file changed, 2 insertions(+), 2 deletions(-)
> 
> diff --git a/src/remote/remote_protocol.x b/src/remote/remote_protocol.x
> index 74be4b37d0..11f44ee267 100644
> --- a/src/remote/remote_protocol.x
> +++ b/src/remote/remote_protocol.x
> @@ -5513,7 +5513,7 @@ enum remote_procedure {
>   
>       /**
>        * @generate: both
> -     * @acl: domain:read
> +     * @acl: domain:write
>        */
>       REMOTE_PROC_DOMAIN_GET_HOSTNAME = 277,
>   
> @@ -5908,7 +5908,7 @@ enum remote_procedure {
>   
>       /**
>        * @generate: none
> -     * @acl: domain:read
> +     * @acl: domain:write
>        */
>       REMOTE_PROC_DOMAIN_GET_TIME = 337,
>   
> 

Reviewed-by: Jim Fehlig <jfehlig@suse.com>

Regards,
Jim

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list

Patchew 2.1-devel-b67e4c2

© 2016 - 2026 Red Hat, Inc.