openSUSE-SU-2018:1621-1

Опубликовано: 09 июн. 2018

Источник: suse-cvrf

Описание

Security update for libvirt

This update for libvirt fixes the following issues:

This update fixes the following security issue:

Added support for 'ssbd' and 'virt-ssbd' CPUID feature bits (CVE-2018-3639, boo#1092885)

Список пакетов

openSUSE Leap 15.0

libvirt-4.0.0-lp150.7.3.1

libvirt-admin-4.0.0-lp150.7.3.1

libvirt-client-4.0.0-lp150.7.3.1

libvirt-daemon-4.0.0-lp150.7.3.1

libvirt-daemon-config-network-4.0.0-lp150.7.3.1

libvirt-daemon-config-nwfilter-4.0.0-lp150.7.3.1

libvirt-daemon-driver-interface-4.0.0-lp150.7.3.1

libvirt-daemon-driver-libxl-4.0.0-lp150.7.3.1

libvirt-daemon-driver-lxc-4.0.0-lp150.7.3.1

libvirt-daemon-driver-network-4.0.0-lp150.7.3.1

libvirt-daemon-driver-nodedev-4.0.0-lp150.7.3.1

libvirt-daemon-driver-nwfilter-4.0.0-lp150.7.3.1

libvirt-daemon-driver-qemu-4.0.0-lp150.7.3.1

libvirt-daemon-driver-secret-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-core-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-disk-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-iscsi-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-logical-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-mpath-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-rbd-4.0.0-lp150.7.3.1

libvirt-daemon-driver-storage-scsi-4.0.0-lp150.7.3.1

libvirt-daemon-driver-uml-4.0.0-lp150.7.3.1

libvirt-daemon-driver-vbox-4.0.0-lp150.7.3.1

libvirt-daemon-hooks-4.0.0-lp150.7.3.1

libvirt-daemon-lxc-4.0.0-lp150.7.3.1

libvirt-daemon-qemu-4.0.0-lp150.7.3.1

libvirt-daemon-uml-4.0.0-lp150.7.3.1

libvirt-daemon-vbox-4.0.0-lp150.7.3.1

libvirt-daemon-xen-4.0.0-lp150.7.3.1

libvirt-devel-4.0.0-lp150.7.3.1

libvirt-devel-32bit-4.0.0-lp150.7.3.1

libvirt-doc-4.0.0-lp150.7.3.1

libvirt-libs-4.0.0-lp150.7.3.1

libvirt-lock-sanlock-4.0.0-lp150.7.3.1

libvirt-nss-4.0.0-lp150.7.3.1

wireshark-plugin-libvirt-4.0.0-lp150.7.3.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2018-06/msg00012.html
E-Mail link for openSUSE-SU-2018:1621-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.

Затронутые продукты

openSUSE Leap 15.0:libvirt-4.0.0-lp150.7.3.1

openSUSE Leap 15.0:libvirt-admin-4.0.0-lp150.7.3.1

openSUSE Leap 15.0:libvirt-client-4.0.0-lp150.7.3.1

openSUSE Leap 15.0:libvirt-daemon-4.0.0-lp150.7.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-3639.html
CVE-2018-3639
https://bugzilla.suse.com/0
SUSE Bug 0
https://bugzilla.suse.com/1074701
SUSE Bug 1074701
https://bugzilla.suse.com/1085235
SUSE Bug 1085235
https://bugzilla.suse.com/1085308
SUSE Bug 1085308
https://bugzilla.suse.com/1087078
SUSE Bug 1087078
https://bugzilla.suse.com/1087082
SUSE Bug 1087082
https://bugzilla.suse.com/1094912
SUSE Bug 1094912
https://bugzilla.suse.com/1100394
SUSE Bug 1100394
https://bugzilla.suse.com/1102640
SUSE Bug 1102640
https://bugzilla.suse.com/1105412
SUSE Bug 1105412
https://bugzilla.suse.com/1113769
SUSE Bug 1113769

openSUSE-SU-2018:1621-1

Описание

Список пакетов

openSUSE Leap 15.0

Ссылки

Уязвимость: CVE-2018-3639

Описание

Затронутые продукты

Ссылки