CVE-2012-2690

low

Published 2012-06-29 · Modified 2026-04-29

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

—

CVSS v4 NEW

—

not yet in upstream

VIR risk

2.1

Description

virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.

✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

OS impact

Debian Fixed 5 releases

Version	Status	Fixed in
trixie	Fixed	`1:1.18.0-1`
sid	Fixed	`1:1.18.0-1`
forky	Fixed	`1:1.18.0-1`
bullseye	Fixed	`1:1.18.0-1`
bookworm	Fixed	`1:1.18.0-1`

Application impact

Vendor	Product	Versions
libguestfs	libguestfs	`{"endIncluding":"1.17.43"}`
libguestfs	libguestfs	`1.16.0`
libguestfs	libguestfs	`1.16.1`
libguestfs	libguestfs	`1.16.2`
libguestfs	libguestfs	`1.16.3`
libguestfs	libguestfs	`1.16.4`
libguestfs	libguestfs	`1.16.5`
libguestfs	libguestfs	`1.16.6`
libguestfs	libguestfs	`1.16.7`
libguestfs	libguestfs	`1.16.8`
libguestfs	libguestfs	`1.16.9`
libguestfs	libguestfs	`1.16.10`
libguestfs	libguestfs	`1.16.11`
libguestfs	libguestfs	`1.16.12`
libguestfs	libguestfs	`1.16.13`
libguestfs	libguestfs	`1.16.14`
libguestfs	libguestfs	`1.16.15`
libguestfs	libguestfs	`1.16.16`
libguestfs	libguestfs	`1.16.17`
libguestfs	libguestfs	`1.16.18`
libguestfs	libguestfs	`1.16.19`
libguestfs	libguestfs	`1.16.20`
libguestfs	libguestfs	`1.16.21`
libguestfs	libguestfs	`1.16.22`
libguestfs	libguestfs	`1.16.23`
libguestfs	libguestfs	`1.16.24`
libguestfs	libguestfs	`1.16.25`
libguestfs	libguestfs	`1.16.26`
libguestfs	libguestfs	`1.17.0`
libguestfs	libguestfs	`1.17.1`
libguestfs	libguestfs	`1.17.2`
libguestfs	libguestfs	`1.17.3`
libguestfs	libguestfs	`1.17.4`
libguestfs	libguestfs	`1.17.5`
libguestfs	libguestfs	`1.17.6`
libguestfs	libguestfs	`1.17.7`
libguestfs	libguestfs	`1.17.8`
libguestfs	libguestfs	`1.17.9`
libguestfs	libguestfs	`1.17.10`
libguestfs	libguestfs	`1.17.11`
libguestfs	libguestfs	`1.17.12`
libguestfs	libguestfs	`1.17.13`
libguestfs	libguestfs	`1.17.14`
libguestfs	libguestfs	`1.17.15`
libguestfs	libguestfs	`1.17.16`
libguestfs	libguestfs	`1.17.17`
libguestfs	libguestfs	`1.17.18`
libguestfs	libguestfs	`1.17.19`
libguestfs	libguestfs	`1.17.20`
libguestfs	libguestfs	`1.17.21`
libguestfs	libguestfs	`1.17.22`
libguestfs	libguestfs	`1.17.23`
libguestfs	libguestfs	`1.17.24`
libguestfs	libguestfs	`1.17.25`
libguestfs	libguestfs	`1.17.26`
libguestfs	libguestfs	`1.17.27`
libguestfs	libguestfs	`1.17.28`
libguestfs	libguestfs	`1.17.29`
libguestfs	libguestfs	`1.17.30`
libguestfs	libguestfs	`1.17.31`
libguestfs	libguestfs	`1.17.32`
libguestfs	libguestfs	`1.17.33`
libguestfs	libguestfs	`1.17.34`
libguestfs	libguestfs	`1.17.35`
libguestfs	libguestfs	`1.17.36`
libguestfs	libguestfs	`1.17.37`
libguestfs	libguestfs	`1.17.38`
libguestfs	libguestfs	`1.17.39`
libguestfs	libguestfs	`1.17.40`
libguestfs	libguestfs	`1.17.41`
libguestfs	libguestfs	`1.17.42`

References

CWEs

CWE-255

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.