Описание
Security update for libvirt
This update for libvirt fixes the following issues:
- CVE-2021-3667: Fixed an improper locking on ACL failure in virStoragePoolLookupByTargetPath API. (bsc#1188843)
Список пакетов
Image SLES12-SP5-Azure-SAP-BYOS
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-Azure-SAP-On-Demand
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-EC2-SAP-BYOS
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-EC2-SAP-On-Demand
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-GCE-SAP-BYOS
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-GCE-SAP-On-Demand
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libvirt-client-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
SUSE Linux Enterprise Server 12 SP5
libvirt-5.1.0-13.25.1
libvirt-admin-5.1.0-13.25.1
libvirt-client-5.1.0-13.25.1
libvirt-daemon-5.1.0-13.25.1
libvirt-daemon-config-network-5.1.0-13.25.1
libvirt-daemon-config-nwfilter-5.1.0-13.25.1
libvirt-daemon-driver-interface-5.1.0-13.25.1
libvirt-daemon-driver-libxl-5.1.0-13.25.1
libvirt-daemon-driver-lxc-5.1.0-13.25.1
libvirt-daemon-driver-network-5.1.0-13.25.1
libvirt-daemon-driver-nodedev-5.1.0-13.25.1
libvirt-daemon-driver-nwfilter-5.1.0-13.25.1
libvirt-daemon-driver-qemu-5.1.0-13.25.1
libvirt-daemon-driver-secret-5.1.0-13.25.1
libvirt-daemon-driver-storage-5.1.0-13.25.1
libvirt-daemon-driver-storage-core-5.1.0-13.25.1
libvirt-daemon-driver-storage-disk-5.1.0-13.25.1
libvirt-daemon-driver-storage-iscsi-5.1.0-13.25.1
libvirt-daemon-driver-storage-logical-5.1.0-13.25.1
libvirt-daemon-driver-storage-mpath-5.1.0-13.25.1
libvirt-daemon-driver-storage-rbd-5.1.0-13.25.1
libvirt-daemon-driver-storage-scsi-5.1.0-13.25.1
libvirt-daemon-hooks-5.1.0-13.25.1
libvirt-daemon-lxc-5.1.0-13.25.1
libvirt-daemon-qemu-5.1.0-13.25.1
libvirt-daemon-xen-5.1.0-13.25.1
libvirt-doc-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
libvirt-lock-sanlock-5.1.0-13.25.1
libvirt-nss-5.1.0-13.25.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libvirt-5.1.0-13.25.1
libvirt-admin-5.1.0-13.25.1
libvirt-client-5.1.0-13.25.1
libvirt-daemon-5.1.0-13.25.1
libvirt-daemon-config-network-5.1.0-13.25.1
libvirt-daemon-config-nwfilter-5.1.0-13.25.1
libvirt-daemon-driver-interface-5.1.0-13.25.1
libvirt-daemon-driver-libxl-5.1.0-13.25.1
libvirt-daemon-driver-lxc-5.1.0-13.25.1
libvirt-daemon-driver-network-5.1.0-13.25.1
libvirt-daemon-driver-nodedev-5.1.0-13.25.1
libvirt-daemon-driver-nwfilter-5.1.0-13.25.1
libvirt-daemon-driver-qemu-5.1.0-13.25.1
libvirt-daemon-driver-secret-5.1.0-13.25.1
libvirt-daemon-driver-storage-5.1.0-13.25.1
libvirt-daemon-driver-storage-core-5.1.0-13.25.1
libvirt-daemon-driver-storage-disk-5.1.0-13.25.1
libvirt-daemon-driver-storage-iscsi-5.1.0-13.25.1
libvirt-daemon-driver-storage-logical-5.1.0-13.25.1
libvirt-daemon-driver-storage-mpath-5.1.0-13.25.1
libvirt-daemon-driver-storage-rbd-5.1.0-13.25.1
libvirt-daemon-driver-storage-scsi-5.1.0-13.25.1
libvirt-daemon-hooks-5.1.0-13.25.1
libvirt-daemon-lxc-5.1.0-13.25.1
libvirt-daemon-qemu-5.1.0-13.25.1
libvirt-daemon-xen-5.1.0-13.25.1
libvirt-doc-5.1.0-13.25.1
libvirt-libs-5.1.0-13.25.1
libvirt-lock-sanlock-5.1.0-13.25.1
libvirt-nss-5.1.0-13.25.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libvirt-devel-5.1.0-13.25.1
Ссылки
- Link for SUSE-SU-2021:3277-1
- E-Mail link for SUSE-SU-2021:3277-1
- SUSE Security Ratings
- SUSE Bug 1182783
- SUSE Bug 1184772
- SUSE Bug 1185081
- SUSE Bug 1188843
- SUSE CVE CVE-2021-3667 page
Описание
An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited ACL permissions could use this flaw to acquire the lock and prevent other users from accessing storage pool/volume APIs, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-client-5.1.0-13.25.1
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-libs-5.1.0-13.25.1
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-client-5.1.0-13.25.1
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-libs-5.1.0-13.25.1
Ссылки
- CVE-2021-3667
- SUSE Bug 1188843