[Bug 656173] Re: virt-aa-helper generate incomplete apparmor profiles with chained backing files

Jamie Strandboge jamie at ubuntu.com
Thu Oct 7 15:37:36 BST 2010


This behavior changed in libvirt 0.8.3 and the pending lucid-security libvirt update and is part of the fix for CVE-2010-2237, CVE-2010-2238 and CVE-2010-2239. From /etc/libvirt/qemu.conf:
# If allow_disk_format_probing is enabled, libvirt will probe disk
# images to attempt to identify their format, when not otherwise
# specified in the XML. This is disabled by default.
#
# WARNING: Enabling probing is a security hole in almost all
# deployments. It is strongly recommended that users update their
# guest XML <disk> elements to include  <driver type='XXXX'/>
# elements instead of enabling this option.
# allow_disk_format_probing = 1

So people can either:
1. adjust /etc/apparmor.d/libvirt/libvirt-<uuid> to have the extra files
2. adjust /etc/libvirt/qemu.conf for the above

The former is preferred for security reasons, but has to be done for
each virtual machine.

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2237

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2238

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-2239

** Changed in: libvirt (Ubuntu)
       Status: Confirmed => Won't Fix

-- 
libvirt no longer probes chained backing stores
https://bugs.launchpad.net/bugs/656173
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libvirt in ubuntu.



More information about the Ubuntu-server-bugs mailing list