Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2018-0029

Опубликовано: 05 янв. 2018
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2018-0029: libvirt security update (IMPORTANT)

[3.2.0-14.0.1.el7_4.7]

  • bump release and rebuild

[3.2.0-14.el7_4.7]

  • qemu: Properly store microcode version in QEMU caps cache (CVE-2017-5715)

[3.2.0-14.el7_4.6]

  • util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD (CVE-2017-5715)
  • util: introduce virHostCPUGetMicrocodeVersion (CVE-2017-5715)
  • cpu_x86: Rename virCPUx86MapInitialize (CVE-2017-5715)
  • conf: include x86 microcode version in virsh capabiltiies (CVE-2017-5715)
  • qemu: capabilities: force update if the microcode version does not match (CVE-2017-5715)
  • cpu: add CPU features and model for indirect branch prediction protection (CVE-2017-5715)

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

libvirt

3.2.0-14.0.1.el7_4.7

libvirt-admin

3.2.0-14.0.1.el7_4.7

libvirt-client

3.2.0-14.0.1.el7_4.7

libvirt-daemon

3.2.0-14.0.1.el7_4.7

libvirt-daemon-config-network

3.2.0-14.0.1.el7_4.7

libvirt-daemon-config-nwfilter

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-interface

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-lxc

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-network

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-nodedev

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-nwfilter

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-qemu

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-secret

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-core

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-disk

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-gluster

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-iscsi

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-logical

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-mpath

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-rbd

3.2.0-14.0.1.el7_4.7

libvirt-daemon-driver-storage-scsi

3.2.0-14.0.1.el7_4.7

libvirt-daemon-kvm

3.2.0-14.0.1.el7_4.7

libvirt-daemon-lxc

3.2.0-14.0.1.el7_4.7

libvirt-devel

3.2.0-14.0.1.el7_4.7

libvirt-docs

3.2.0-14.0.1.el7_4.7

libvirt-libs

3.2.0-14.0.1.el7_4.7

libvirt-lock-sanlock

3.2.0-14.0.1.el7_4.7

libvirt-login-shell

3.2.0-14.0.1.el7_4.7

libvirt-nss

3.2.0-14.0.1.el7_4.7

Связанные CVE

CVE-2017-5715

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-5715

CVSS3: 5.6
ubuntu
больше 7 лет назад

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

redhat логотип

CVE-2017-5715

CVSS3: 5.6
redhat
больше 7 лет назад

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

nvd логотип

CVE-2017-5715

CVSS3: 5.6
nvd
больше 7 лет назад

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

debian логотип

CVE-2017-5715

CVSS3: 5.6
debian
больше 7 лет назад

Systems with microprocessors utilizing speculative execution and indir ...

suse-cvrf логотип

openSUSE-SU-2018:2237-1

suse-cvrf
почти 7 лет назад

Security update for kernel-firmware