Описание
ELSA-2019-1264: libvirt security and bug fix update (IMPORTANT)
[4.5.0-10.0.1]
- added librbd1 as dependency (Keshav Sharma)
[4.5.0-10.el7_6.10]
- virnwfilterbindingobj: Introduce and use virNWFilterBindingObjStealDef (rhbz#1702173)
- admin: reject clients unless their UID matches the current UID (CVE-2019-10132)
- locking: restrict sockets to mode 0600 (CVE-2019-10132)
- logging: restrict sockets to mode 0600 (CVE-2019-10132)
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
libvirt
4.5.0-10.0.1.el7_6.10
libvirt-admin
4.5.0-10.0.1.el7_6.10
libvirt-bash-completion
4.5.0-10.0.1.el7_6.10
libvirt-client
4.5.0-10.0.1.el7_6.10
libvirt-daemon
4.5.0-10.0.1.el7_6.10
libvirt-daemon-config-network
4.5.0-10.0.1.el7_6.10
libvirt-daemon-config-nwfilter
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-interface
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-lxc
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-network
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-nodedev
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-nwfilter
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-qemu
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-secret
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-core
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-disk
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-gluster
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-iscsi
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-logical
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-mpath
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-rbd
4.5.0-10.0.1.el7_6.10
libvirt-daemon-driver-storage-scsi
4.5.0-10.0.1.el7_6.10
libvirt-daemon-kvm
4.5.0-10.0.1.el7_6.10
libvirt-daemon-lxc
4.5.0-10.0.1.el7_6.10
libvirt-devel
4.5.0-10.0.1.el7_6.10
libvirt-docs
4.5.0-10.0.1.el7_6.10
libvirt-libs
4.5.0-10.0.1.el7_6.10
libvirt-lock-sanlock
4.5.0-10.0.1.el7_6.10
libvirt-login-shell
4.5.0-10.0.1.el7_6.10
libvirt-nss
4.5.0-10.0.1.el7_6.10
Связанные CVE
Связанные уязвимости
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons.
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons.
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons.
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.s ...
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons.