Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-4714

Опубликовано: 10 июл. 2019
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2019-4714: libvirt security update (IMPORTANT)

[5.0.0-9.el7]

  • qemu: remove cpuhostmask and cpuguestmask from virCaps structure (Wim ten Have) [Orabug: 29956508]

[5.0.0-8.el7]

  • api: disallow virDomainSaveImageGetXMLDesc on read-only connections (Jan Tomko) [Orabug: 29955742] {CVE-2019-10161}
  • domain: Define explicit flags for saved image xml (Eric Blake) [Orabug: 29955742]
  • api: disallow virDomainManagedSaveDefineXML on read-only connections (Jan Tomko) [Orabug: 29955742] {CVE-2019-10166}
  • api: disallow virConnectGetDomainCapabilities on read-only connections (Jan Tomko) [Orabug: 29955742] {CVE-2019-10167}
  • api: disallow virConnect*HypervisorCPU on read-only connections (Jan Tomko) [Orabug: 29955742] {CVE-2019-10168}

[5.0.0-7.el7]

  • cpu_map: Define md-clear CPUID bit (Jiri Denemark) [Orabug: 29874181] {CVE-2018-12126} {CVE-2018-12127} {CVE-2018-12130} {CVE-2019-11091}

[5.0.0-6.el7]

  • qemu: Driver change adding private lock to auto-tune hugepages (Wim ten Have) [Orabug: 29809943]

[5.0.0-5.el7]

  • qemu: disable setmem change requests for vNUMA targets (Wim ten Have) [Orabug: 29797366]
  • domain: Disable memballoon memory configuration support for vNUMA guests (Wim ten Have) [Orabug: 29797366]
  • qemu: Driver change to target for vNUMA setmaxmem change request (Wim ten Have) [Orabug: 29749852]
  • domain: Add domain memory config support for vNUMA guests (Wim ten Have) [Orabug: 29749852]
  • logging: restrict sockets to mode 0600 (Daniel P. Berrange) [Orabug: 29861433] {CVE-2019-10132}
  • locking: restrict sockets to mode 0600 (Daniel P. Berrange) [Orabug: 29861433] {CVE-2019-10132}
  • admin: reject clients unless their UID matches the current UID (Daniel P. Berrange) [Orabug: 29861433] {CVE-2019-10132}

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

libvirt

5.0.0-9.el7

libvirt-admin

5.0.0-9.el7

libvirt-bash-completion

5.0.0-9.el7

libvirt-client

5.0.0-9.el7

libvirt-daemon

5.0.0-9.el7

libvirt-daemon-config-network

5.0.0-9.el7

libvirt-daemon-config-nwfilter

5.0.0-9.el7

libvirt-daemon-driver-interface

5.0.0-9.el7

libvirt-daemon-driver-lxc

5.0.0-9.el7

libvirt-daemon-driver-network

5.0.0-9.el7

libvirt-daemon-driver-nodedev

5.0.0-9.el7

libvirt-daemon-driver-nwfilter

5.0.0-9.el7

libvirt-daemon-driver-qemu

5.0.0-9.el7

libvirt-daemon-driver-secret

5.0.0-9.el7

libvirt-daemon-driver-storage

5.0.0-9.el7

libvirt-daemon-driver-storage-core

5.0.0-9.el7

libvirt-daemon-driver-storage-disk

5.0.0-9.el7

libvirt-daemon-driver-storage-gluster

5.0.0-9.el7

libvirt-daemon-driver-storage-iscsi

5.0.0-9.el7

libvirt-daemon-driver-storage-logical

5.0.0-9.el7

libvirt-daemon-driver-storage-mpath

5.0.0-9.el7

libvirt-daemon-driver-storage-rbd

5.0.0-9.el7

libvirt-daemon-driver-storage-scsi

5.0.0-9.el7

libvirt-daemon-kvm

5.0.0-9.el7

libvirt-daemon-lxc

5.0.0-9.el7

libvirt-daemon-qemu

5.0.0-9.el7

libvirt-devel

5.0.0-9.el7

libvirt-docs

5.0.0-9.el7

libvirt-libs

5.0.0-9.el7

libvirt-lock-sanlock

5.0.0-9.el7

libvirt-login-shell

5.0.0-9.el7

libvirt-nss

5.0.0-9.el7

Oracle Linux x86_64

libvirt

5.0.0-9.el7

libvirt-admin

5.0.0-9.el7

libvirt-bash-completion

5.0.0-9.el7

libvirt-client

5.0.0-9.el7

libvirt-daemon

5.0.0-9.el7

libvirt-daemon-config-network

5.0.0-9.el7

libvirt-daemon-config-nwfilter

5.0.0-9.el7

libvirt-daemon-driver-interface

5.0.0-9.el7

libvirt-daemon-driver-lxc

5.0.0-9.el7

libvirt-daemon-driver-network

5.0.0-9.el7

libvirt-daemon-driver-nodedev

5.0.0-9.el7

libvirt-daemon-driver-nwfilter

5.0.0-9.el7

libvirt-daemon-driver-qemu

5.0.0-9.el7

libvirt-daemon-driver-secret

5.0.0-9.el7

libvirt-daemon-driver-storage

5.0.0-9.el7

libvirt-daemon-driver-storage-core

5.0.0-9.el7

libvirt-daemon-driver-storage-disk

5.0.0-9.el7

libvirt-daemon-driver-storage-gluster

5.0.0-9.el7

libvirt-daemon-driver-storage-iscsi

5.0.0-9.el7

libvirt-daemon-driver-storage-logical

5.0.0-9.el7

libvirt-daemon-driver-storage-mpath

5.0.0-9.el7

libvirt-daemon-driver-storage-rbd

5.0.0-9.el7

libvirt-daemon-driver-storage-scsi

5.0.0-9.el7

libvirt-daemon-kvm

5.0.0-9.el7

libvirt-daemon-lxc

5.0.0-9.el7

libvirt-daemon-qemu

5.0.0-9.el7

libvirt-devel

5.0.0-9.el7

libvirt-docs

5.0.0-9.el7

libvirt-libs

5.0.0-9.el7

libvirt-lock-sanlock

5.0.0-9.el7

libvirt-login-shell

5.0.0-9.el7

libvirt-nss

5.0.0-9.el7

Связанные CVE

CVE-2018-12130
CVE-2019-10161
CVE-2019-10166
CVE-2019-10168
CVE-2018-12126
CVE-2018-12127
CVE-2019-10167
CVE-2019-11091

Ссылки на источники

Связанные уязвимости

suse-cvrf логотип

openSUSE-SU-2019:1753-1

suse-cvrf
почти 6 лет назад

Security update for libvirt

suse-cvrf логотип

SUSE-SU-2019:1643-1

suse-cvrf
почти 6 лет назад

Security update for libvirt

oracle-oval логотип

ELSA-2019-1580

oracle-oval
почти 6 лет назад

ELSA-2019-1580: virt:rhel security update (IMPORTANT)

oracle-oval логотип

ELSA-2019-1579

oracle-oval
около 6 лет назад

ELSA-2019-1579: libvirt security and bug fix update (IMPORTANT)

suse-cvrf логотип

openSUSE-SU-2019:1672-1

suse-cvrf
почти 6 лет назад

Security update for libvirt