ELSA-2023-3715

Опубликовано: 22 июн. 2023

Источник: oracle-oval

Платформа: Oracle Linux 9

Описание

ELSA-2023-3715: libvirt security update (MODERATE)

[9.0.0-10.2.0.1]

Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554]

[9.0.0-10.2.el9_2]

virpci: Resolve leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700, rhbz#2208596)

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

libvirt

9.0.0-10.2.0.1.el9_2

libvirt-client

9.0.0-10.2.0.1.el9_2

libvirt-client-qemu

9.0.0-10.2.0.1.el9_2

libvirt-daemon

9.0.0-10.2.0.1.el9_2

libvirt-daemon-config-network

9.0.0-10.2.0.1.el9_2

libvirt-daemon-config-nwfilter

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-interface

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-network

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-nodedev

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-nwfilter

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-qemu

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-secret

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-core

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-disk

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-iscsi

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-logical

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-mpath

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-rbd

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-scsi

9.0.0-10.2.0.1.el9_2

libvirt-daemon-kvm

9.0.0-10.2.0.1.el9_2

libvirt-devel

9.0.0-10.2.0.1.el9_2

libvirt-docs

9.0.0-10.2.0.1.el9_2

libvirt-libs

9.0.0-10.2.0.1.el9_2

libvirt-lock-sanlock

9.0.0-10.2.0.1.el9_2

libvirt-nss

9.0.0-10.2.0.1.el9_2

Oracle Linux x86_64

libvirt

9.0.0-10.2.0.1.el9_2

libvirt-client

9.0.0-10.2.0.1.el9_2

libvirt-client-qemu

9.0.0-10.2.0.1.el9_2

libvirt-daemon

9.0.0-10.2.0.1.el9_2

libvirt-daemon-config-network

9.0.0-10.2.0.1.el9_2

libvirt-daemon-config-nwfilter

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-interface

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-network

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-nodedev

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-nwfilter

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-qemu

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-secret

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-core

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-disk

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-iscsi

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-logical

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-mpath

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-rbd

9.0.0-10.2.0.1.el9_2

libvirt-daemon-driver-storage-scsi

9.0.0-10.2.0.1.el9_2

libvirt-daemon-kvm

9.0.0-10.2.0.1.el9_2

libvirt-devel

9.0.0-10.2.0.1.el9_2

libvirt-docs

9.0.0-10.2.0.1.el9_2

libvirt-libs

9.0.0-10.2.0.1.el9_2

libvirt-lock-sanlock

9.0.0-10.2.0.1.el9_2

libvirt-nss

9.0.0-10.2.0.1.el9_2

Связанные CVE

CVE-2023-2700

Ссылки на источники

Связанные уязвимости

CVE-2023-2700

CVSS3: 5.5

ubuntu

около 2 лет назад

A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.