Описание
Security update for libvirt
This update for libvirt fixes the following issues:
- CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. (bsc#1194041)
- CVE-2021-3975: Add missing lock in qemuProcessHandleMonitorEOF. (bsc#1192876)
Список пакетов
Image SLES12-SP5-Azure-SAP-BYOS
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-On-Demand
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-EC2-SAP-BYOS
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-EC2-SAP-On-Demand
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-GCE-SAP-BYOS
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-GCE-SAP-On-Demand
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libvirt-client-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
SUSE Linux Enterprise Server 12 SP5
libvirt-5.1.0-13.28.2
libvirt-admin-5.1.0-13.28.2
libvirt-client-5.1.0-13.28.2
libvirt-daemon-5.1.0-13.28.2
libvirt-daemon-config-network-5.1.0-13.28.2
libvirt-daemon-config-nwfilter-5.1.0-13.28.2
libvirt-daemon-driver-interface-5.1.0-13.28.2
libvirt-daemon-driver-libxl-5.1.0-13.28.2
libvirt-daemon-driver-lxc-5.1.0-13.28.2
libvirt-daemon-driver-network-5.1.0-13.28.2
libvirt-daemon-driver-nodedev-5.1.0-13.28.2
libvirt-daemon-driver-nwfilter-5.1.0-13.28.2
libvirt-daemon-driver-qemu-5.1.0-13.28.2
libvirt-daemon-driver-secret-5.1.0-13.28.2
libvirt-daemon-driver-storage-5.1.0-13.28.2
libvirt-daemon-driver-storage-core-5.1.0-13.28.2
libvirt-daemon-driver-storage-disk-5.1.0-13.28.2
libvirt-daemon-driver-storage-iscsi-5.1.0-13.28.2
libvirt-daemon-driver-storage-logical-5.1.0-13.28.2
libvirt-daemon-driver-storage-mpath-5.1.0-13.28.2
libvirt-daemon-driver-storage-rbd-5.1.0-13.28.2
libvirt-daemon-driver-storage-scsi-5.1.0-13.28.2
libvirt-daemon-hooks-5.1.0-13.28.2
libvirt-daemon-lxc-5.1.0-13.28.2
libvirt-daemon-qemu-5.1.0-13.28.2
libvirt-daemon-xen-5.1.0-13.28.2
libvirt-doc-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
libvirt-lock-sanlock-5.1.0-13.28.2
libvirt-nss-5.1.0-13.28.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libvirt-5.1.0-13.28.2
libvirt-admin-5.1.0-13.28.2
libvirt-client-5.1.0-13.28.2
libvirt-daemon-5.1.0-13.28.2
libvirt-daemon-config-network-5.1.0-13.28.2
libvirt-daemon-config-nwfilter-5.1.0-13.28.2
libvirt-daemon-driver-interface-5.1.0-13.28.2
libvirt-daemon-driver-libxl-5.1.0-13.28.2
libvirt-daemon-driver-lxc-5.1.0-13.28.2
libvirt-daemon-driver-network-5.1.0-13.28.2
libvirt-daemon-driver-nodedev-5.1.0-13.28.2
libvirt-daemon-driver-nwfilter-5.1.0-13.28.2
libvirt-daemon-driver-qemu-5.1.0-13.28.2
libvirt-daemon-driver-secret-5.1.0-13.28.2
libvirt-daemon-driver-storage-5.1.0-13.28.2
libvirt-daemon-driver-storage-core-5.1.0-13.28.2
libvirt-daemon-driver-storage-disk-5.1.0-13.28.2
libvirt-daemon-driver-storage-iscsi-5.1.0-13.28.2
libvirt-daemon-driver-storage-logical-5.1.0-13.28.2
libvirt-daemon-driver-storage-mpath-5.1.0-13.28.2
libvirt-daemon-driver-storage-rbd-5.1.0-13.28.2
libvirt-daemon-driver-storage-scsi-5.1.0-13.28.2
libvirt-daemon-hooks-5.1.0-13.28.2
libvirt-daemon-lxc-5.1.0-13.28.2
libvirt-daemon-qemu-5.1.0-13.28.2
libvirt-daemon-xen-5.1.0-13.28.2
libvirt-doc-5.1.0-13.28.2
libvirt-libs-5.1.0-13.28.2
libvirt-lock-sanlock-5.1.0-13.28.2
libvirt-nss-5.1.0-13.28.2
SUSE Linux Enterprise Software Development Kit 12 SP5
libvirt-devel-5.1.0-13.28.2
Ссылки
- Link for SUSE-SU-2022:0032-1
- E-Mail link for SUSE-SU-2022:0032-1
- SUSE Security Ratings
- SUSE Bug 1190420
- SUSE Bug 1191668
- SUSE Bug 1192017
- SUSE Bug 1192876
- SUSE Bug 1193981
- SUSE Bug 1194041
- SUSE CVE CVE-2021-3975 page
- SUSE CVE CVE-2021-4147 page
Описание
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-client-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-client-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-libs-5.1.0-13.28.2
Ссылки
- CVE-2021-3975
- SUSE Bug 1192876
Описание
A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to deadlock or crash, resulting in a denial of service condition.
Затронутые продукты
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-client-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-BYOS:libvirt-libs-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-client-5.1.0-13.28.2
Image SLES12-SP5-Azure-SAP-On-Demand:libvirt-libs-5.1.0-13.28.2
Ссылки
- CVE-2021-4147
- SUSE Bug 1194041
- SUSE Bug 1194313