Описание
ELSA-2011-0391: libvirt security update (IMPORTANT)
[0.8.1-27.0.1.el6_0.5]
- Replace docs/et.png in tarball with blank image
[0.8.1-27.el6_0.5]
- Properly report error in virConnectDomainXMLToNative (CVE-2011-1146)
[0.8.1-27.el6_0.4]
- Add missing checks for read-only connections (CVE-2011-1146)
[0.8.1-27.el6_0.3]
- Remove patches not suitable for proper Z-stream:
- Export host information through SMBIOS to guests (rhbz#652678)
- Support forcing a CDROM eject (rhbz#658147)
- Plug several memory leaks (rhbz#672549)
- Avoid memory overhead of matchpathcon (rhbz#672554)
- Do not start libvirt-guests if that service is off (rhbz#668694)
[0.8.1-27.el6_0.2]
- spec file cleanups (rhbz#662045)
- Fix deadlock on concurrent multiple bidirectional migration (rhbz#662043)
- Fix off-by-one error in clock-variable (rhbz#662046)
- Export host information through SMBIOS to guests (rhbz#652678)
- Ensure device is deleted from guest after unplug (rhbz#662041)
- Distinguish between QEMU domain shutdown and crash (rhbz#662042)
[0.8.1-27.el6_0.1]
- Fix JSON migrate_set_downtime command (rhbz#658143)
- Make SASL work over UNIX domain sockets (rhbz#658144)
- Let qemu group look below /var/lib/libvirt/qemu/ (rhbz#656972)
- Fix save/restore on root_squashed NFS (rhbz#656355)
- Fix race on multiple migration (rhbz#658141)
- Export host information through SMBIOS to guests (rhbz#652678)
- Support forcing a CDROM eject (rhbz#658147)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
libvirt
0.8.1-27.0.1.el6_0.5
libvirt-client
0.8.1-27.0.1.el6_0.5
libvirt-devel
0.8.1-27.0.1.el6_0.5
libvirt-python
0.8.1-27.0.1.el6_0.5
Oracle Linux i686
libvirt
0.8.1-27.0.1.el6_0.5
libvirt-client
0.8.1-27.0.1.el6_0.5
libvirt-devel
0.8.1-27.0.1.el6_0.5
libvirt-python
0.8.1-27.0.1.el6_0.5
Oracle Linux 5
Oracle Linux x86_64
libvirt
0.8.2-15.0.1.el5_6.3
libvirt-devel
0.8.2-15.0.1.el5_6.3
libvirt-python
0.8.2-15.0.1.el5_6.3
Oracle Linux i386
libvirt
0.8.2-15.0.1.el5_6.3
libvirt-devel
0.8.2-15.0.1.el5_6.3
libvirt-python
0.8.2-15.0.1.el5_6.3
Связанные CVE
Связанные уязвимости
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restri ...
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly execute arbitrary code via a (1) virNodeDeviceDettach, (2) virNodeDeviceReset, (3) virDomainRevertToSnapshot, (4) virDomainSnapshotDelete, (5) virNodeDeviceReAttach, or (6) virConnectDomainXMLToNative call, a different vulnerability than CVE-2008-5086.