SUSE-SU-2018:2631-2

Опубликовано: 18 окт. 2018

Источник: suse-cvrf

Описание

Security update for libvirt

This update for libvirt fixes the following issues:

This new feature was added:

bsc#1094325, bsc#1094725: libxl: Enable virsh blockresize for XEN guests

This security issue was fixed:

CVE-2017-5715: Additional fixes for the Spectre patches (bsc#1079869)

These non-security issues were fixed:

bsc#1100112: schema: allow any strings in smbios entry qemu: escape smbios entry strings
bsc#1091427: libxl: fix segfault in libxlReconnectDomain
bsc#959329: libxl: don't set hasManagedSave when performing save

Список пакетов

SUSE Linux Enterprise Server 12 SP2-BCL

libvirt-2.0.0-27.45.1

libvirt-client-2.0.0-27.45.1

libvirt-daemon-2.0.0-27.45.1

libvirt-daemon-config-network-2.0.0-27.45.1

libvirt-daemon-config-nwfilter-2.0.0-27.45.1

libvirt-daemon-driver-interface-2.0.0-27.45.1

libvirt-daemon-driver-libxl-2.0.0-27.45.1

libvirt-daemon-driver-lxc-2.0.0-27.45.1

libvirt-daemon-driver-network-2.0.0-27.45.1

libvirt-daemon-driver-nodedev-2.0.0-27.45.1

libvirt-daemon-driver-nwfilter-2.0.0-27.45.1

libvirt-daemon-driver-qemu-2.0.0-27.45.1

libvirt-daemon-driver-secret-2.0.0-27.45.1

libvirt-daemon-driver-storage-2.0.0-27.45.1

libvirt-daemon-hooks-2.0.0-27.45.1

libvirt-daemon-lxc-2.0.0-27.45.1

libvirt-daemon-qemu-2.0.0-27.45.1

libvirt-daemon-xen-2.0.0-27.45.1

libvirt-doc-2.0.0-27.45.1

libvirt-lock-sanlock-2.0.0-27.45.1

libvirt-nss-2.0.0-27.45.1

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20182631-2/
Link for SUSE-SU-2018:2631-2
https://lists.suse.com/pipermail/sle-security-updates/2018-October/004709.html
E-Mail link for SUSE-SU-2018:2631-2
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1079869
SUSE Bug 1079869
https://bugzilla.suse.com/1091427
SUSE Bug 1091427
https://bugzilla.suse.com/1094325
SUSE Bug 1094325
https://bugzilla.suse.com/1094725
SUSE Bug 1094725
https://bugzilla.suse.com/1100112
SUSE Bug 1100112
https://bugzilla.suse.com/959329
SUSE Bug 959329
https://www.suse.com/security/cve/CVE-2017-5715/
SUSE CVE CVE-2017-5715 page

Описание

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

Затронутые продукты

SUSE Linux Enterprise Server 12 SP2-BCL:libvirt-2.0.0-27.45.1

SUSE Linux Enterprise Server 12 SP2-BCL:libvirt-client-2.0.0-27.45.1

SUSE Linux Enterprise Server 12 SP2-BCL:libvirt-daemon-2.0.0-27.45.1

SUSE Linux Enterprise Server 12 SP2-BCL:libvirt-daemon-config-network-2.0.0-27.45.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-5715.html
CVE-2017-5715
https://bugzilla.suse.com/1068032
SUSE Bug 1068032
https://bugzilla.suse.com/1074562
SUSE Bug 1074562
https://bugzilla.suse.com/1074578
SUSE Bug 1074578
https://bugzilla.suse.com/1074701
SUSE Bug 1074701
https://bugzilla.suse.com/1074741
SUSE Bug 1074741
https://bugzilla.suse.com/1074919
SUSE Bug 1074919
https://bugzilla.suse.com/1075006
SUSE Bug 1075006
https://bugzilla.suse.com/1075007
SUSE Bug 1075007
https://bugzilla.suse.com/1075262
SUSE Bug 1075262
https://bugzilla.suse.com/1075419
SUSE Bug 1075419
https://bugzilla.suse.com/1076115
SUSE Bug 1076115
https://bugzilla.suse.com/1076372
SUSE Bug 1076372
https://bugzilla.suse.com/1076606
SUSE Bug 1076606
https://bugzilla.suse.com/1078353
SUSE Bug 1078353
https://bugzilla.suse.com/1080039
SUSE Bug 1080039
https://bugzilla.suse.com/1087887
SUSE Bug 1087887
https://bugzilla.suse.com/1087939
SUSE Bug 1087939
https://bugzilla.suse.com/1088147
SUSE Bug 1088147
https://bugzilla.suse.com/1089055
SUSE Bug 1089055

SUSE-SU-2018:2631-2

Описание

Список пакетов

SUSE Linux Enterprise Server 12 SP2-BCL

Ссылки

Уязвимость: CVE-2017-5715

Описание

Затронутые продукты

Ссылки