Описание
Security update for libvirt
This update for libvirt fixes the following issues:
- CVE-2024-2494: Add a check for negative array lengths before allocation to prevent potential DoS. (bsc#1221815)
- CVE-2024-2496: Fixed NULL pointer dereference in udevConnectListAllInterfaces() (bsc#1221468).
- CVE-2024-1441: Fix off-by-one error in udevListInterfacesByStatus (bsc#1221237)
- qemu: domain: Fix logic when tainting domain (bsc#1220512)
- conf: Remove some firmware validation checks (bsc#1216980)
- libxl: Fix connection to modular network daemon (bsc#1214223)
Список пакетов
Image SLES15-SP5-SAP-Azure-3P
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-EC2
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-GCE
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Hardened-Azure
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Hardened-GCE
libvirt-client-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
SUSE Linux Enterprise Micro 5.5
libvirt-client-9.0.0-150500.6.20.1
libvirt-daemon-9.0.0-150500.6.20.1
libvirt-daemon-driver-interface-9.0.0-150500.6.20.1
libvirt-daemon-driver-network-9.0.0-150500.6.20.1
libvirt-daemon-driver-nodedev-9.0.0-150500.6.20.1
libvirt-daemon-driver-nwfilter-9.0.0-150500.6.20.1
libvirt-daemon-driver-qemu-9.0.0-150500.6.20.1
libvirt-daemon-driver-secret-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-core-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-disk-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-direct-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-logical-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-mpath-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-rbd-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-scsi-9.0.0-150500.6.20.1
libvirt-daemon-qemu-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
libvirt-libs-9.0.0-150500.6.20.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
libvirt-9.0.0-150500.6.20.1
libvirt-client-9.0.0-150500.6.20.1
libvirt-client-qemu-9.0.0-150500.6.20.1
libvirt-daemon-9.0.0-150500.6.20.1
libvirt-daemon-config-network-9.0.0-150500.6.20.1
libvirt-daemon-config-nwfilter-9.0.0-150500.6.20.1
libvirt-daemon-driver-interface-9.0.0-150500.6.20.1
libvirt-daemon-driver-libxl-9.0.0-150500.6.20.1
libvirt-daemon-driver-network-9.0.0-150500.6.20.1
libvirt-daemon-driver-nodedev-9.0.0-150500.6.20.1
libvirt-daemon-driver-nwfilter-9.0.0-150500.6.20.1
libvirt-daemon-driver-qemu-9.0.0-150500.6.20.1
libvirt-daemon-driver-secret-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-core-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-disk-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-direct-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-logical-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-mpath-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-rbd-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-scsi-9.0.0-150500.6.20.1
libvirt-daemon-hooks-9.0.0-150500.6.20.1
libvirt-daemon-qemu-9.0.0-150500.6.20.1
libvirt-daemon-xen-9.0.0-150500.6.20.1
libvirt-devel-9.0.0-150500.6.20.1
libvirt-doc-9.0.0-150500.6.20.1
libvirt-lock-sanlock-9.0.0-150500.6.20.1
libvirt-nss-9.0.0-150500.6.20.1
openSUSE Leap 15.5
libvirt-9.0.0-150500.6.20.1
libvirt-client-9.0.0-150500.6.20.1
libvirt-client-qemu-9.0.0-150500.6.20.1
libvirt-daemon-9.0.0-150500.6.20.1
libvirt-daemon-config-network-9.0.0-150500.6.20.1
libvirt-daemon-config-nwfilter-9.0.0-150500.6.20.1
libvirt-daemon-driver-interface-9.0.0-150500.6.20.1
libvirt-daemon-driver-libxl-9.0.0-150500.6.20.1
libvirt-daemon-driver-lxc-9.0.0-150500.6.20.1
libvirt-daemon-driver-network-9.0.0-150500.6.20.1
libvirt-daemon-driver-nodedev-9.0.0-150500.6.20.1
libvirt-daemon-driver-nwfilter-9.0.0-150500.6.20.1
libvirt-daemon-driver-qemu-9.0.0-150500.6.20.1
libvirt-daemon-driver-secret-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-core-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-disk-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-gluster-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-iscsi-direct-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-logical-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-mpath-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-rbd-9.0.0-150500.6.20.1
libvirt-daemon-driver-storage-scsi-9.0.0-150500.6.20.1
libvirt-daemon-hooks-9.0.0-150500.6.20.1
libvirt-daemon-lxc-9.0.0-150500.6.20.1
libvirt-daemon-qemu-9.0.0-150500.6.20.1
libvirt-daemon-xen-9.0.0-150500.6.20.1
libvirt-devel-9.0.0-150500.6.20.1
libvirt-devel-32bit-9.0.0-150500.6.20.1
libvirt-doc-9.0.0-150500.6.20.1
libvirt-libs-9.0.0-150500.6.20.1
libvirt-lock-sanlock-9.0.0-150500.6.20.1
libvirt-nss-9.0.0-150500.6.20.1
wireshark-plugin-libvirt-9.0.0-150500.6.20.1
Ссылки
- Link for SUSE-SU-2024:1099-1
- E-Mail link for SUSE-SU-2024:1099-1
- SUSE Security Ratings
- SUSE Bug 1214223
- SUSE Bug 1216980
- SUSE Bug 1220512
- SUSE Bug 1221237
- SUSE Bug 1221468
- SUSE Bug 1221815
- SUSE CVE CVE-2024-1441 page
- SUSE CVE CVE-2024-2494 page
- SUSE CVE CVE-2024-2496 page
Описание
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending specially crafted data to the libvirt daemon, allowing an unprivileged client to perform a denial of service attack by causing the libvirt daemon to crash.
Затронутые продукты
Image SLES15-SP5-SAP-Azure-3P:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Azure-3P:libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-libs-9.0.0-150500.6.20.1
Ссылки
- CVE-2024-1441
- SUSE Bug 1221237
Описание
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passing a negative length to the g_new0 function results in a crash due to the negative length being treated as a huge positive number. This flaw allows a local, unprivileged user to perform a denial of service attack by causing the libvirt daemon to crash.
Затронутые продукты
Image SLES15-SP5-SAP-Azure-3P:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Azure-3P:libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-libs-9.0.0-150500.6.20.1
Ссылки
- CVE-2024-2494
- SUSE Bug 1221815
Описание
A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.
Затронутые продукты
Image SLES15-SP5-SAP-Azure-3P:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-Azure-3P:libvirt-libs-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-client-9.0.0-150500.6.20.1
Image SLES15-SP5-SAP-BYOS-Azure:libvirt-libs-9.0.0-150500.6.20.1
Ссылки
- CVE-2024-2496
- SUSE Bug 1221468