SUSE-SU-2019:2105-1

Опубликовано: 09 авг. 2019

Источник: suse-cvrf

Описание

Security update for libvirt

This update for libvirt fixes the following issues:

Security issues fixed:

CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301).
CVE-2019-10167: Fixed an issue with virConnectGetDomainCapabilities API which could have been used to execute arbitrary emulators (bsc#1138303).

Non-security issue fixed:

qemu: Add support for overriding max threads per process limit (bsc#1133719)

Список пакетов

SUSE Enterprise Storage 4

libvirt-2.0.0-27.61.1

libvirt-client-2.0.0-27.61.1

libvirt-daemon-2.0.0-27.61.1

libvirt-daemon-config-network-2.0.0-27.61.1

libvirt-daemon-config-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-interface-2.0.0-27.61.1

libvirt-daemon-driver-libxl-2.0.0-27.61.1

libvirt-daemon-driver-lxc-2.0.0-27.61.1

libvirt-daemon-driver-network-2.0.0-27.61.1

libvirt-daemon-driver-nodedev-2.0.0-27.61.1

libvirt-daemon-driver-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-qemu-2.0.0-27.61.1

libvirt-daemon-driver-secret-2.0.0-27.61.1

libvirt-daemon-driver-storage-2.0.0-27.61.1

libvirt-daemon-hooks-2.0.0-27.61.1

libvirt-daemon-lxc-2.0.0-27.61.1

libvirt-daemon-qemu-2.0.0-27.61.1

libvirt-daemon-xen-2.0.0-27.61.1

libvirt-doc-2.0.0-27.61.1

libvirt-lock-sanlock-2.0.0-27.61.1

libvirt-nss-2.0.0-27.61.1

SUSE Linux Enterprise Server 12 SP2-BCL

libvirt-2.0.0-27.61.1

libvirt-client-2.0.0-27.61.1

libvirt-daemon-2.0.0-27.61.1

libvirt-daemon-config-network-2.0.0-27.61.1

libvirt-daemon-config-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-interface-2.0.0-27.61.1

libvirt-daemon-driver-libxl-2.0.0-27.61.1

libvirt-daemon-driver-lxc-2.0.0-27.61.1

libvirt-daemon-driver-network-2.0.0-27.61.1

libvirt-daemon-driver-nodedev-2.0.0-27.61.1

libvirt-daemon-driver-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-qemu-2.0.0-27.61.1

libvirt-daemon-driver-secret-2.0.0-27.61.1

libvirt-daemon-driver-storage-2.0.0-27.61.1

libvirt-daemon-hooks-2.0.0-27.61.1

libvirt-daemon-lxc-2.0.0-27.61.1

libvirt-daemon-qemu-2.0.0-27.61.1

libvirt-daemon-xen-2.0.0-27.61.1

libvirt-doc-2.0.0-27.61.1

libvirt-lock-sanlock-2.0.0-27.61.1

libvirt-nss-2.0.0-27.61.1

SUSE Linux Enterprise Server 12 SP2-LTSS

libvirt-2.0.0-27.61.1

libvirt-client-2.0.0-27.61.1

libvirt-daemon-2.0.0-27.61.1

libvirt-daemon-config-network-2.0.0-27.61.1

libvirt-daemon-config-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-interface-2.0.0-27.61.1

libvirt-daemon-driver-libxl-2.0.0-27.61.1

libvirt-daemon-driver-lxc-2.0.0-27.61.1

libvirt-daemon-driver-network-2.0.0-27.61.1

libvirt-daemon-driver-nodedev-2.0.0-27.61.1

libvirt-daemon-driver-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-qemu-2.0.0-27.61.1

libvirt-daemon-driver-secret-2.0.0-27.61.1

libvirt-daemon-driver-storage-2.0.0-27.61.1

libvirt-daemon-hooks-2.0.0-27.61.1

libvirt-daemon-lxc-2.0.0-27.61.1

libvirt-daemon-qemu-2.0.0-27.61.1

libvirt-daemon-xen-2.0.0-27.61.1

libvirt-doc-2.0.0-27.61.1

libvirt-lock-sanlock-2.0.0-27.61.1

libvirt-nss-2.0.0-27.61.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

libvirt-2.0.0-27.61.1

libvirt-client-2.0.0-27.61.1

libvirt-daemon-2.0.0-27.61.1

libvirt-daemon-config-network-2.0.0-27.61.1

libvirt-daemon-config-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-interface-2.0.0-27.61.1

libvirt-daemon-driver-libxl-2.0.0-27.61.1

libvirt-daemon-driver-lxc-2.0.0-27.61.1

libvirt-daemon-driver-network-2.0.0-27.61.1

libvirt-daemon-driver-nodedev-2.0.0-27.61.1

libvirt-daemon-driver-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-qemu-2.0.0-27.61.1

libvirt-daemon-driver-secret-2.0.0-27.61.1

libvirt-daemon-driver-storage-2.0.0-27.61.1

libvirt-daemon-hooks-2.0.0-27.61.1

libvirt-daemon-lxc-2.0.0-27.61.1

libvirt-daemon-qemu-2.0.0-27.61.1

libvirt-daemon-xen-2.0.0-27.61.1

libvirt-doc-2.0.0-27.61.1

libvirt-lock-sanlock-2.0.0-27.61.1

libvirt-nss-2.0.0-27.61.1

SUSE OpenStack Cloud 7

libvirt-2.0.0-27.61.1

libvirt-client-2.0.0-27.61.1

libvirt-daemon-2.0.0-27.61.1

libvirt-daemon-config-network-2.0.0-27.61.1

libvirt-daemon-config-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-interface-2.0.0-27.61.1

libvirt-daemon-driver-libxl-2.0.0-27.61.1

libvirt-daemon-driver-lxc-2.0.0-27.61.1

libvirt-daemon-driver-network-2.0.0-27.61.1

libvirt-daemon-driver-nodedev-2.0.0-27.61.1

libvirt-daemon-driver-nwfilter-2.0.0-27.61.1

libvirt-daemon-driver-qemu-2.0.0-27.61.1

libvirt-daemon-driver-secret-2.0.0-27.61.1

libvirt-daemon-driver-storage-2.0.0-27.61.1

libvirt-daemon-hooks-2.0.0-27.61.1

libvirt-daemon-lxc-2.0.0-27.61.1

libvirt-daemon-qemu-2.0.0-27.61.1

libvirt-daemon-xen-2.0.0-27.61.1

libvirt-doc-2.0.0-27.61.1

libvirt-lock-sanlock-2.0.0-27.61.1

libvirt-nss-2.0.0-27.61.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20192105-1/
Link for SUSE-SU-2019:2105-1
https://lists.suse.com/pipermail/sle-security-updates/2019-August/005809.html
E-Mail link for SUSE-SU-2019:2105-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1133719
SUSE Bug 1133719
https://bugzilla.suse.com/1138301
SUSE Bug 1138301
https://bugzilla.suse.com/1138303
SUSE Bug 1138303
https://www.suse.com/security/cve/CVE-2019-10161/
SUSE CVE CVE-2019-10161 page
https://www.suse.com/security/cve/CVE-2019-10167/
SUSE CVE CVE-2019-10167 page

Описание

It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs.

Затронутые продукты

SUSE Enterprise Storage 4:libvirt-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-client-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-daemon-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-daemon-config-network-2.0.0-27.61.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-10161.html
CVE-2019-10161
https://bugzilla.suse.com/1138301
SUSE Bug 1138301

Описание

The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities. Read-only clients could specify an arbitrary path for this argument, causing libvirtd to execute a crafted executable with its own privileges.

Затронутые продукты

SUSE Enterprise Storage 4:libvirt-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-client-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-daemon-2.0.0-27.61.1

SUSE Enterprise Storage 4:libvirt-daemon-config-network-2.0.0-27.61.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-10167.html
CVE-2019-10167
https://bugzilla.suse.com/1138303
SUSE Bug 1138303

SUSE-SU-2019:2105-1

Описание

Список пакетов

SUSE Enterprise Storage 4

SUSE Linux Enterprise Server 12 SP2-BCL

SUSE Linux Enterprise Server 12 SP2-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE OpenStack Cloud 7

Ссылки

Уязвимость: CVE-2019-10161

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2019-10167

Описание

Затронутые продукты

Ссылки