公告ID: KYLIN-2019-13164
安全等级: 低级
产品: Kylin V3
发布日期: 2019年6月28日
CVE: CVE-2019-13164
CVSS3评分: 2.5
概述:
Kylin Virtualization Hypervisor is not affected by this vulnerability, as its bridge configuration can not take the required form. 描述:
qemu-bridge-helper.c in QEMU 4.0.0 does not ensure that a network interface name (obtained from bridge.conf or a --br=bridge option) is limited to the IFNAMSIZ size, which can lead to an ACL bypass. 系统版本:
KYLIN 3.3.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
qemu-kvm-ma
qemu-kvm
virt:rhel/qemu-kvm