VDB

GCVE-110-MAGEIA-2016-103

GCVE-110-MAGEIA-2016-103
Advisory Published
Vulnetix · Advisory published March 9, 2016
A path-traversal flaw was found in the way the libvirt daemon handled file-system names for storage volumes. A libvirt user with privileges to create storage volumes and without privileges to create and modify domains could possibly use this flaw to escalate their privileges (CVE-2015-5313).

Affected Products

VendorProductVersionsPlatforms
Mageiakmod-virtualbox0 (affected), 5.0.24-1.mga5 (unaffected)
Mageiakmod-vboxadditions0 (affected), 5.0.24-1.mga5 (unaffected)
Mageiavirtualbox0 (affected), 5.0.24-1.mga5 (unaffected)
Mageialibvirt0 (affected), 1.2.9.3-1.3.mga5 (unaffected), 0 (affected), 1.2.9.3-1.3.mga5 (unaffected)

Browse GCVE Records

73,280 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›