{"id":"USN-5399-1","summary":"libvirt vulnerabilities","details":"It was discovered that libvirt incorrectly handled certain locking\noperations. A local attacker could possibly use this issue to cause libvirt\nto stop accepting connections, resulting in a denial of service. This issue\nonly affected Ubuntu 20.04 LTS. (CVE-2021-3667)\n\nIt was discovered that libvirt incorrectly handled threads during shutdown.\nA local attacker could possibly use this issue to cause libvirt to crash,\nresulting in a denial of service. This issue only affected Ubuntu 18.04 LTS\nand Ubuntu 20.04 LTS. (CVE-2021-3975)\n\nIt was discovered that libvirt incorrectly handled the libxl driver. An\nattacker inside a guest could possibly use this issue to cause libvirtd\nto crash or stop responding, resulting in a denial of service. This issue\nonly affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.10.\n(CVE-2021-4147)\n\nIt was discovered that libvirt incorrectly handled the nwfilter driver. A\nlocal attacker could possibly use this issue to cause libvirt to crash,\nresulting in a denial of service. (CVE-2022-0897)\n\nIt was discovered that libvirt incorrectly handled the polkit access\ncontrol driver. A local attacker could possibly use this issue to cause\nlibvirt to crash, resulting in a denial of service. This issue only\naffected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2020-25637)\n\nIt was discovered that libvirt incorrectly generated SELinux labels. In\nenvironments using SELinux, this issue could allow the sVirt confinement\nto be bypassed. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04\nLTS. (CVE-2021-3631)\n","modified":"2026-04-27T16:19:02.263201949Z","published":"2022-05-02T17:01:25Z","related":["UBUNTU-CVE-2020-25637","UBUNTU-CVE-2021-3631","UBUNTU-CVE-2021-3667","UBUNTU-CVE-2021-3975","UBUNTU-CVE-2021-4147","UBUNTU-CVE-2022-0897"],"upstream":["CVE-2020-25637","CVE-2021-3631","CVE-2021-3667","CVE-2021-3975","CVE-2021-4147","CVE-2022-0897","UBUNTU-CVE-2020-25637","UBUNTU-CVE-2021-3631","UBUNTU-CVE-2021-3667","UBUNTU-CVE-2021-3975","UBUNTU-CVE-2021-4147","UBUNTU-CVE-2022-0897"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-5399-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2020-25637"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3631"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3667"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-3975"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2021-4147"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2022-0897"}],"affected":[{"package":{"name":"libvirt","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/libvirt@4.0.0-1ubuntu8.21?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.0.0-1ubuntu8.21"}]}],"versions":["3.6.0-1ubuntu5","3.6.0-1ubuntu6","4.0.0-1ubuntu1","4.0.0-1ubuntu2","4.0.0-1ubuntu3","4.0.0-1ubuntu4","4.0.0-1ubuntu5","4.0.0-1ubuntu6","4.0.0-1ubuntu7","4.0.0-1ubuntu8","4.0.0-1ubuntu8.1","4.0.0-1ubuntu8.2","4.0.0-1ubuntu8.3","4.0.0-1ubuntu8.4","4.0.0-1ubuntu8.5","4.0.0-1ubuntu8.6","4.0.0-1ubuntu8.7","4.0.0-1ubuntu8.8","4.0.0-1ubuntu8.9","4.0.0-1ubuntu8.10","4.0.0-1ubuntu8.11","4.0.0-1ubuntu8.12","4.0.0-1ubuntu8.13","4.0.0-1ubuntu8.14","4.0.0-1ubuntu8.15","4.0.0-1ubuntu8.16","4.0.0-1ubuntu8.17","4.0.0-1ubuntu8.19","4.0.0-1ubuntu8.20"],"ecosystem_specific":{"binaries":[{"binary_name":"libnss-libvirt","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-bin","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-clients","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon-driver-storage-gluster","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon-driver-storage-rbd","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon-driver-storage-sheepdog","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon-driver-storage-zfs","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-daemon-system","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-sanlock","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt-wireshark","binary_version":"4.0.0-1ubuntu8.21"},{"binary_name":"libvirt0","binary_version":"4.0.0-1ubuntu8.21"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5399-1.json","cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"negligible"}],"id":"CVE-2020-25637"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"type":"Ubuntu","score":"negligible"}],"id":"CVE-2021-3631"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2021-3975"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2021-4147"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2022-0897"}]}}},{"package":{"name":"libvirt","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/libvirt@6.0.0-0ubuntu8.16?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.0.0-0ubuntu8.16"}]}],"versions":["5.4.0-0ubuntu5","6.0.0-0ubuntu1","6.0.0-0ubuntu2","6.0.0-0ubuntu3","6.0.0-0ubuntu4","6.0.0-0ubuntu5","6.0.0-0ubuntu6","6.0.0-0ubuntu7","6.0.0-0ubuntu8","6.0.0-0ubuntu8.1","6.0.0-0ubuntu8.2","6.0.0-0ubuntu8.3","6.0.0-0ubuntu8.4","6.0.0-0ubuntu8.5","6.0.0-0ubuntu8.7","6.0.0-0ubuntu8.8","6.0.0-0ubuntu8.9","6.0.0-0ubuntu8.10","6.0.0-0ubuntu8.11","6.0.0-0ubuntu8.12","6.0.0-0ubuntu8.13","6.0.0-0ubuntu8.14","6.0.0-0ubuntu8.15"],"ecosystem_specific":{"binaries":[{"binary_name":"libnss-libvirt","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-clients","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-lxc","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-qemu","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-storage-gluster","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-storage-rbd","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-storage-zfs","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-vbox","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-driver-xen","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-system","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-system-systemd","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-daemon-system-sysv","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-sanlock","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt-wireshark","binary_version":"6.0.0-0ubuntu8.16"},{"binary_name":"libvirt0","binary_version":"6.0.0-0ubuntu8.16"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5399-1.json","cves_map":{"ecosystem":"Ubuntu:20.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"negligible"}],"id":"CVE-2020-25637"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"type":"Ubuntu","score":"negligible"}],"id":"CVE-2021-3631"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2021-3667"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2021-3975"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2021-4147"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2022-0897"}]}}}],"schema_version":"1.7.5"}