Описание
Security update for libvirt
This update for libvirt fixes the following issues:
- CVE-2022-0897: Fixed crash when counting number of network filters (bsc#1197636).
Bug fixes:
- qemu: Fixed potential crash during driver cleanup (bsc#1209861).
- libxl: Marked auto-allocated graphics ports to used on reconnect.
- libxl: Released all auto-allocated graphics ports (bsc#1191668).
- libxl: Added lock process indicator to saved VM state (bsc#1191668).
Список пакетов
Image SLES15-SP2-SAP-Azure
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-BYOS-Azure
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-BYOS-GCE
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-EC2-HVM
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-GCE
libvirt-client-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
SUSE Enterprise Storage 7
libvirt-6.0.0-150200.13.27.1
libvirt-admin-6.0.0-150200.13.27.1
libvirt-bash-completion-6.0.0-150200.13.27.1
libvirt-client-6.0.0-150200.13.27.1
libvirt-daemon-6.0.0-150200.13.27.1
libvirt-daemon-config-network-6.0.0-150200.13.27.1
libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
libvirt-daemon-driver-network-6.0.0-150200.13.27.1
libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
libvirt-daemon-hooks-6.0.0-150200.13.27.1
libvirt-daemon-lxc-6.0.0-150200.13.27.1
libvirt-daemon-qemu-6.0.0-150200.13.27.1
libvirt-daemon-xen-6.0.0-150200.13.27.1
libvirt-devel-6.0.0-150200.13.27.1
libvirt-doc-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
libvirt-lock-sanlock-6.0.0-150200.13.27.1
libvirt-nss-6.0.0-150200.13.27.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libvirt-6.0.0-150200.13.27.1
libvirt-admin-6.0.0-150200.13.27.1
libvirt-bash-completion-6.0.0-150200.13.27.1
libvirt-client-6.0.0-150200.13.27.1
libvirt-daemon-6.0.0-150200.13.27.1
libvirt-daemon-config-network-6.0.0-150200.13.27.1
libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
libvirt-daemon-driver-network-6.0.0-150200.13.27.1
libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
libvirt-daemon-hooks-6.0.0-150200.13.27.1
libvirt-daemon-lxc-6.0.0-150200.13.27.1
libvirt-daemon-qemu-6.0.0-150200.13.27.1
libvirt-daemon-xen-6.0.0-150200.13.27.1
libvirt-devel-6.0.0-150200.13.27.1
libvirt-doc-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
libvirt-lock-sanlock-6.0.0-150200.13.27.1
libvirt-nss-6.0.0-150200.13.27.1
SUSE Linux Enterprise Server 15 SP2-LTSS
libvirt-6.0.0-150200.13.27.1
libvirt-admin-6.0.0-150200.13.27.1
libvirt-bash-completion-6.0.0-150200.13.27.1
libvirt-client-6.0.0-150200.13.27.1
libvirt-daemon-6.0.0-150200.13.27.1
libvirt-daemon-config-network-6.0.0-150200.13.27.1
libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
libvirt-daemon-driver-network-6.0.0-150200.13.27.1
libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
libvirt-daemon-hooks-6.0.0-150200.13.27.1
libvirt-daemon-lxc-6.0.0-150200.13.27.1
libvirt-daemon-qemu-6.0.0-150200.13.27.1
libvirt-daemon-xen-6.0.0-150200.13.27.1
libvirt-devel-6.0.0-150200.13.27.1
libvirt-doc-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
libvirt-lock-sanlock-6.0.0-150200.13.27.1
libvirt-nss-6.0.0-150200.13.27.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
libvirt-6.0.0-150200.13.27.1
libvirt-admin-6.0.0-150200.13.27.1
libvirt-bash-completion-6.0.0-150200.13.27.1
libvirt-client-6.0.0-150200.13.27.1
libvirt-daemon-6.0.0-150200.13.27.1
libvirt-daemon-config-network-6.0.0-150200.13.27.1
libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
libvirt-daemon-driver-network-6.0.0-150200.13.27.1
libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
libvirt-daemon-hooks-6.0.0-150200.13.27.1
libvirt-daemon-lxc-6.0.0-150200.13.27.1
libvirt-daemon-qemu-6.0.0-150200.13.27.1
libvirt-daemon-xen-6.0.0-150200.13.27.1
libvirt-devel-6.0.0-150200.13.27.1
libvirt-doc-6.0.0-150200.13.27.1
libvirt-libs-6.0.0-150200.13.27.1
libvirt-lock-sanlock-6.0.0-150200.13.27.1
libvirt-nss-6.0.0-150200.13.27.1
Ссылки
- Link for SUSE-SU-2023:2754-1
- E-Mail link for SUSE-SU-2023:2754-1
- SUSE Security Ratings
- SUSE Bug 1191668
- SUSE Bug 1197636
- SUSE Bug 1209861
- SUSE CVE CVE-2022-0897 page
Описание
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method failed to acquire the driver->nwfilters mutex before iterating over virNWFilterObj instances. There was no protection to stop another thread from concurrently modifying the driver->nwfilters object. This flaw allows a malicious, unprivileged user to exploit this issue via libvirt's API virConnectNumOfNWFilters to crash the network filter management daemon (libvirtd/virtnwfilterd).
Затронутые продукты
Image SLES15-SP2-SAP-Azure:libvirt-client-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-Azure:libvirt-libs-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-BYOS-Azure:libvirt-client-6.0.0-150200.13.27.1
Image SLES15-SP2-SAP-BYOS-Azure:libvirt-libs-6.0.0-150200.13.27.1
Ссылки
- CVE-2022-0897
- SUSE Bug 1197636