MGASA-2015-0046
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 31 Jan 2015, 13:23
Last modified:16 Apr 2026, 06:26
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
31 Jan 2015, 13:23
Published
Vulnerability first disclosed
16 Apr 2026, 06:26
Last Modified
Vulnerability information updated
Description
Updated libvirt packages fix CVE-2015-0236 Updated libvirt packages fix security vulnerability: The XML getters for save images and snapshots objects don't check ACLs for the VIR_DOMAIN_XML_SECURE flag and might possibly dump security sensitive information. A remote attacker able to establish a connection to libvirtd could use this flaw to cause leak certain limited information from the domain xml file (CVE-2015-0236).
Affected Systems
- mageia•libvirt
< 1.2.1-1.5.mga4