Your message dated Thu, 01 Jan 2026 10:17:07 +0000
with message-id <[email protected]>
and subject line Bug#1120119: fixed in libvirt 11.3.0-3+deb13u2
has caused the Debian Bug report #1120119,
regarding libvirt: CVE-2025-13193: data leak for new offline snapshots
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1120119: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120119
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libvirt-daemon
X-Debbugs-Cc: [email protected], [email protected]
Version: 11.3.0-3
Severity: grave
Dear Maintainer,
When creating snapshots for shut-down VMs, using virt-manager or virsh,
e.g.:
virsh snapshot-create-as --domain bookworm-oldstable --name snap1
--disk-only --diskspec
vda,snapshot=external,file=/var/lib/libvirt/images/myvm.snap1
then the snapshot is world-readable (644):
# ls -lh /var/lib/libvirt/images/bookworm-oldstable.snap1
-rw-r--r-- 1 root root 193K 5 nov. 17:40
/var/lib/libvirt/images/myvm.snap1
by any user:
# su - nobody -s /bin/sh -c 'hd -n 8 /var/lib/libvirt/images/myvm.snap1'
00000000 51 46 49 fb 00 00 00 03 |QFI.....|
(This doesn't happen for running VMs where permission is correctly 600.)
Such snapshots also stay world-readable after running the VM, allowing
all local users to access the new data, which is a grave data leak.
Regards,
Sylvain Beucler
--- End Message ---
--- Begin Message ---
Source: libvirt
Source-Version: 11.3.0-3+deb13u2
Done: Andrea Bolognani <[email protected]>
We believe that the bug you reported is fixed in the latest version of
libvirt, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andrea Bolognani <[email protected]> (supplier of updated libvirt package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 07 Dec 2025 16:22:24 +0100
Source: libvirt
Architecture: source
Version: 11.3.0-3+deb13u2
Distribution: trixie
Urgency: medium
Maintainer: Debian Libvirt Maintainers
<[email protected]>
Changed-By: Andrea Bolognani <[email protected]>
Closes: 1120119 1120584 1121280
Changes:
libvirt (11.3.0-3+deb13u2) trixie; urgency=medium
.
* [c5ef2ce] patches: Add backports
- backport/conf-Add-virDomainDefIDsParseString[...]
- backport/bhyve-Check-ACLs-before-parsing-[...]
- backport/libxl-Check-ACLs-before-parsing-[...]
- backport/lxc-Check-ACLs-before-parsing-[...]
- backport/vz-Check-ACLs-before-parsing-[...]
- backport/ch-Check-ACLs-before-parsing-[...]
- backport/qemu-Check-ACLs-before-parsing-[...]
- Perform ACL checks earlier, preventing malicious users
from potentially being able to crash the daemon
- CVE-2025-12748
- Closes: #1120584
* [9c44722] patches: Add backports
- backport/qemu-snapshot-Set-umask-for-qemu-img-[...]
- Ensure that newly-created snapshots are not world-readable
- CVE-2025-13193
- Closes: #1120119
* [74ba3ed] patches: Add backports
- backport/qemuxmlconftest-Improve-coverage-of-disk-[...]
- backport/qemu[...]-Setup-detect_zeroes-[...]
- Apply the detect_zeroes settings across all layers of the
backing chain instead of just the topmost one
- Closes: #1121280
Checksums-Sha1:
93574aedc067c9f90ecb7de4cbbcce7bf7ac96ab 7803 libvirt_11.3.0-3+deb13u2.dsc
58db571d5f817aa8554cc8ffbf64f5e1a05842f5 109400
libvirt_11.3.0-3+deb13u2.debian.tar.xz
bd573702bc5582f5321f1570af62ca1bc0a3144e 14035
libvirt_11.3.0-3+deb13u2_source.buildinfo
Checksums-Sha256:
b3c0d8fde8c31231215a4a523fc4119dc5c0aef135dc4b947f57918de154f036 7803
libvirt_11.3.0-3+deb13u2.dsc
38f9fd66c1bf1d916bcb66faf483bb7456c30a9a2ce8dcf4fc32701207462973 109400
libvirt_11.3.0-3+deb13u2.debian.tar.xz
6a25580b58c299b201a34054840c2dc50bf606bdfa2863840cb4392724937c9d 14035
libvirt_11.3.0-3+deb13u2_source.buildinfo
Files:
552c06584a1511d6467d16556049f753 7803 libs optional
libvirt_11.3.0-3+deb13u2.dsc
146fdfc9c3bbd044e9ac1f958c242918 109400 libs optional
libvirt_11.3.0-3+deb13u2.debian.tar.xz
6ce225b88acdc7e84942f0ca4b02be32 14035 libs optional
libvirt_11.3.0-3+deb13u2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=ZZic
-----END PGP SIGNATURE-----
pgpfhxEiSbJaz.pgp
Description: PGP signature
--- End Message ---
