Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:0861-1

Опубликовано: 03 апр. 2018
Источник: suse-cvrf

Описание

Security update for libvirt

This update for libvirt fixes the following issues:

Security issues fixed:

  • CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' (var2) (bsc#1079869).
  • CVE-2018-6764: Fixed guest executable code injection via libnss_dns.so loaded by libvirt_lxc before init (bsc#1080042).
  • CVE-2018-1064: Fixed denial of service when reading from guest agent (bsc#1083625).

Non-security issues fixed:

  • Error starting domain: internal error: No usable sysfs TPM cancel file could be found (bsc#1078808).
  • SUSE Linux Enterprise 11 SP4 hvm converted to pvhvm. Unless vm memory is on gig boundary, vm won't boot (bsc#1082041).

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2
libvirt-2.0.0-27.34.1
libvirt-client-2.0.0-27.34.1
libvirt-client-32bit-2.0.0-27.34.1
libvirt-daemon-2.0.0-27.34.1
libvirt-daemon-config-network-2.0.0-27.34.1
libvirt-daemon-config-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-interface-2.0.0-27.34.1
libvirt-daemon-driver-libxl-2.0.0-27.34.1
libvirt-daemon-driver-lxc-2.0.0-27.34.1
libvirt-daemon-driver-network-2.0.0-27.34.1
libvirt-daemon-driver-nodedev-2.0.0-27.34.1
libvirt-daemon-driver-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-qemu-2.0.0-27.34.1
libvirt-daemon-driver-secret-2.0.0-27.34.1
libvirt-daemon-driver-storage-2.0.0-27.34.1
libvirt-daemon-lxc-2.0.0-27.34.1
libvirt-daemon-qemu-2.0.0-27.34.1
libvirt-daemon-xen-2.0.0-27.34.1
libvirt-doc-2.0.0-27.34.1
SUSE Linux Enterprise Server 12 SP2
libvirt-2.0.0-27.34.1
libvirt-client-2.0.0-27.34.1
libvirt-daemon-2.0.0-27.34.1
libvirt-daemon-config-network-2.0.0-27.34.1
libvirt-daemon-config-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-interface-2.0.0-27.34.1
libvirt-daemon-driver-libxl-2.0.0-27.34.1
libvirt-daemon-driver-lxc-2.0.0-27.34.1
libvirt-daemon-driver-network-2.0.0-27.34.1
libvirt-daemon-driver-nodedev-2.0.0-27.34.1
libvirt-daemon-driver-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-qemu-2.0.0-27.34.1
libvirt-daemon-driver-secret-2.0.0-27.34.1
libvirt-daemon-driver-storage-2.0.0-27.34.1
libvirt-daemon-hooks-2.0.0-27.34.1
libvirt-daemon-lxc-2.0.0-27.34.1
libvirt-daemon-qemu-2.0.0-27.34.1
libvirt-daemon-xen-2.0.0-27.34.1
libvirt-doc-2.0.0-27.34.1
libvirt-lock-sanlock-2.0.0-27.34.1
libvirt-nss-2.0.0-27.34.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
libvirt-2.0.0-27.34.1
libvirt-client-2.0.0-27.34.1
libvirt-daemon-2.0.0-27.34.1
libvirt-daemon-config-network-2.0.0-27.34.1
libvirt-daemon-config-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-interface-2.0.0-27.34.1
libvirt-daemon-driver-lxc-2.0.0-27.34.1
libvirt-daemon-driver-network-2.0.0-27.34.1
libvirt-daemon-driver-nodedev-2.0.0-27.34.1
libvirt-daemon-driver-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-qemu-2.0.0-27.34.1
libvirt-daemon-driver-secret-2.0.0-27.34.1
libvirt-daemon-driver-storage-2.0.0-27.34.1
libvirt-daemon-lxc-2.0.0-27.34.1
libvirt-daemon-qemu-2.0.0-27.34.1
libvirt-doc-2.0.0-27.34.1
libvirt-lock-sanlock-2.0.0-27.34.1
libvirt-nss-2.0.0-27.34.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libvirt-2.0.0-27.34.1
libvirt-client-2.0.0-27.34.1
libvirt-daemon-2.0.0-27.34.1
libvirt-daemon-config-network-2.0.0-27.34.1
libvirt-daemon-config-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-interface-2.0.0-27.34.1
libvirt-daemon-driver-libxl-2.0.0-27.34.1
libvirt-daemon-driver-lxc-2.0.0-27.34.1
libvirt-daemon-driver-network-2.0.0-27.34.1
libvirt-daemon-driver-nodedev-2.0.0-27.34.1
libvirt-daemon-driver-nwfilter-2.0.0-27.34.1
libvirt-daemon-driver-qemu-2.0.0-27.34.1
libvirt-daemon-driver-secret-2.0.0-27.34.1
libvirt-daemon-driver-storage-2.0.0-27.34.1
libvirt-daemon-hooks-2.0.0-27.34.1
libvirt-daemon-lxc-2.0.0-27.34.1
libvirt-daemon-qemu-2.0.0-27.34.1
libvirt-daemon-xen-2.0.0-27.34.1
libvirt-doc-2.0.0-27.34.1
libvirt-lock-sanlock-2.0.0-27.34.1
libvirt-nss-2.0.0-27.34.1
SUSE Linux Enterprise Software Development Kit 12 SP2
libvirt-devel-2.0.0-27.34.1
SUSE Linux Enterprise Workstation Extension 12 SP2
libvirt-client-32bit-2.0.0-27.34.1

Ссылки

Описание

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:libvirt-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-32bit-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-daemon-2.0.0-27.34.1
Ссылки

Описание

libvirt version before 4.2.0-rc1 is vulnerable to a resource exhaustion as a result of an incomplete fix for CVE-2018-5748 that affects QEMU monitor but now also triggered via QEMU guest agent.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:libvirt-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-32bit-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-daemon-2.0.0-27.34.1
Ссылки

Описание

util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:libvirt-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-client-32bit-2.0.0-27.34.1
SUSE Linux Enterprise Desktop 12 SP2:libvirt-daemon-2.0.0-27.34.1
Ссылки