Security update for libvirt
Announcement ID: | SUSE-SU-2018:1295-1 |
---|---|
Rating: | important |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves three vulnerabilities and has five security fixes can now be installed.
Description:
This update for libvirt fixes the following issues:
Security issues fixed:
- CVE-2017-5715: Spectre fixes for libvirt (bsc#1079869, bsc#1088147, bsc#1087887).
- CVE-2018-1064: Avoid denial of service reading from QEMU guest agent (bsc#1083625).
- CVE-2018-5748: Avoid denial of service reading from QEMU monitor (bsc#1076500).
Bug fixes:
- bsc#1025340: Use xend for nodeGetFreeMemory API.
- bsc#960742: Allow read access to script directories in libvirtd AppArmor profile.
- bsc#936233: Introduce qemuDomainDefCheckABIStability.
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Linux Enterprise Point of Service 11 SP3
zypper in -t patch sleposp3-libvirt-13600=1
-
SUSE Linux Enterprise Server 11 SP3 LTSS 11-SP3
zypper in -t patch slessp3-libvirt-13600=1
Package List:
-
SUSE Linux Enterprise Point of Service 11 SP3 (i586)
- libvirt-client-1.0.5.9-21.5.1
- libvirt-python-1.0.5.9-21.5.1
- libvirt-lock-sanlock-1.0.5.9-21.5.1
- libvirt-1.0.5.9-21.5.1
- libvirt-doc-1.0.5.9-21.5.1
-
SUSE Linux Enterprise Server 11 SP3 LTSS 11-SP3 (s390x x86_64 i586)
- libvirt-client-1.0.5.9-21.5.1
- libvirt-python-1.0.5.9-21.5.1
- libvirt-lock-sanlock-1.0.5.9-21.5.1
- libvirt-1.0.5.9-21.5.1
- libvirt-doc-1.0.5.9-21.5.1
-
SUSE Linux Enterprise Server 11 SP3 LTSS 11-SP3 (s390x x86_64)
- libvirt-client-32bit-1.0.5.9-21.5.1
References:
- https://www.suse.com/security/cve/CVE-2017-5715.html
- https://www.suse.com/security/cve/CVE-2018-1064.html
- https://www.suse.com/security/cve/CVE-2018-5748.html
- https://bugzilla.suse.com/show_bug.cgi?id=1025340
- https://bugzilla.suse.com/show_bug.cgi?id=1076500
- https://bugzilla.suse.com/show_bug.cgi?id=1079869
- https://bugzilla.suse.com/show_bug.cgi?id=1083625
- https://bugzilla.suse.com/show_bug.cgi?id=1087887
- https://bugzilla.suse.com/show_bug.cgi?id=1088147
- https://bugzilla.suse.com/show_bug.cgi?id=936233
- https://bugzilla.suse.com/show_bug.cgi?id=960742