CVE-2012-2690

low

Published 2012-06-29 · Modified 2026-04-29

CVSS v3

—

CVSS v2

2.1

VIR risk

2.1

Description

virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users to obtain sensitive information.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-2690

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/49545

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/49431

OS impact

OS	Version	Status	Fixed in
debian	bookworm	fixed	`1:1.18.0-1`
debian	bullseye	fixed	`1:1.18.0-1`
debian	forky	fixed	`1:1.18.0-1`
debian	sid	fixed	`1:1.18.0-1`
debian	trixie	fixed	`1:1.18.0-1`

Application impact

Vendor	Product	Versions
libguestfs	libguestfs	`{"endIncluding":"1.17.43"}`
libguestfs	libguestfs	`1.16.0`
libguestfs	libguestfs	`1.16.1`
libguestfs	libguestfs	`1.16.2`
libguestfs	libguestfs	`1.16.3`
libguestfs	libguestfs	`1.16.4`
libguestfs	libguestfs	`1.16.5`
libguestfs	libguestfs	`1.16.6`
libguestfs	libguestfs	`1.16.7`
libguestfs	libguestfs	`1.16.8`
libguestfs	libguestfs	`1.16.9`
libguestfs	libguestfs	`1.16.10`
libguestfs	libguestfs	`1.16.11`
libguestfs	libguestfs	`1.16.12`
libguestfs	libguestfs	`1.16.13`
libguestfs	libguestfs	`1.16.14`
libguestfs	libguestfs	`1.16.15`
libguestfs	libguestfs	`1.16.16`
libguestfs	libguestfs	`1.16.17`
libguestfs	libguestfs	`1.16.18`
libguestfs	libguestfs	`1.16.19`
libguestfs	libguestfs	`1.16.20`
libguestfs	libguestfs	`1.16.21`
libguestfs	libguestfs	`1.16.22`
libguestfs	libguestfs	`1.16.23`
libguestfs	libguestfs	`1.16.24`
libguestfs	libguestfs	`1.16.25`
libguestfs	libguestfs	`1.16.26`
libguestfs	libguestfs	`1.17.0`
libguestfs	libguestfs	`1.17.1`
libguestfs	libguestfs	`1.17.2`
libguestfs	libguestfs	`1.17.3`
libguestfs	libguestfs	`1.17.4`
libguestfs	libguestfs	`1.17.5`
libguestfs	libguestfs	`1.17.6`
libguestfs	libguestfs	`1.17.7`
libguestfs	libguestfs	`1.17.8`
libguestfs	libguestfs	`1.17.9`
libguestfs	libguestfs	`1.17.10`
libguestfs	libguestfs	`1.17.11`
libguestfs	libguestfs	`1.17.12`
libguestfs	libguestfs	`1.17.13`
libguestfs	libguestfs	`1.17.14`
libguestfs	libguestfs	`1.17.15`
libguestfs	libguestfs	`1.17.16`
libguestfs	libguestfs	`1.17.17`
libguestfs	libguestfs	`1.17.18`
libguestfs	libguestfs	`1.17.19`
libguestfs	libguestfs	`1.17.20`
libguestfs	libguestfs	`1.17.21`
libguestfs	libguestfs	`1.17.22`
libguestfs	libguestfs	`1.17.23`
libguestfs	libguestfs	`1.17.24`
libguestfs	libguestfs	`1.17.25`
libguestfs	libguestfs	`1.17.26`
libguestfs	libguestfs	`1.17.27`
libguestfs	libguestfs	`1.17.28`
libguestfs	libguestfs	`1.17.29`
libguestfs	libguestfs	`1.17.30`
libguestfs	libguestfs	`1.17.31`
libguestfs	libguestfs	`1.17.32`
libguestfs	libguestfs	`1.17.33`
libguestfs	libguestfs	`1.17.34`
libguestfs	libguestfs	`1.17.35`
libguestfs	libguestfs	`1.17.36`
libguestfs	libguestfs	`1.17.37`
libguestfs	libguestfs	`1.17.38`
libguestfs	libguestfs	`1.17.39`
libguestfs	libguestfs	`1.17.40`
libguestfs	libguestfs	`1.17.41`
libguestfs	libguestfs	`1.17.42`

References

CWEs

CWE-255

Verify integrity in audit chain (admin only). AS-IS.