SUSE-SU-2015:0241-1
Vulnerability Summary
Timeline
Description
Security update for libvirt libvirt was updated to fix security issues and bugs. These security issues were fixed: - Fixed denial of service flaw in libvirt's virConnectListAllDomains() function (CVE-2014-3657). - Information leak with flag VIR_DOMAIN_XML_MIGRATABLE (CVE-2014-7823). - local denial of service in qemu driver (CVE-2014-8136) These non-security issues were fixed: - Get /proc/sys/net/ipv[46] read-write for wicked to work in containers (bsc#904432). - libxl: Several migration improvements (bsc#903756). - libxl: allow libxl to find pygrub binary (bdo#770485). - Fix Qemu AppArmor abstraction (bsc#904426). - AppArmor confined kvm domains couldn't find the apparmor profile template (bnc#902976). - Backport commit c110cdb2 to fix non-raw storage format error (bnc#900587). - qemu: use systemd's TerminateMachine to kill all processes (bsc#899334). - Transformed Errors into warnings in detect_scsi_host_caps. - Fix a missing cleanup for lxc containers. - Adding network configuration to containers. bsc#904432
Affected Systems
- suse•libvirt&distro=SUSE Linux Enterprise Desktop 12
< 1.2.5-21.1
- suse•libvirt&distro=SUSE Linux Enterprise Server 12
< 1.2.5-21.1
- suse•libvirt&distro=SUSE Linux Enterprise Server for SAP Applications 12
< 1.2.5-21.1
- suse•libvirt&distro=SUSE Linux Enterprise Software Development Kit 12
< 1.2.5-21.1
- suse•libvirt&distro=SUSE Linux Enterprise Workstation Extension 12
< 1.2.5-21.1
References (16)
- https://www.suse.com/support/update/announcement/2015/suse-su-20150241-1/
- https://bugzilla.suse.com/891936
- https://bugzilla.suse.com/899334
- https://bugzilla.suse.com/899484
- https://bugzilla.suse.com/900587
- https://bugzilla.suse.com/902976
- https://bugzilla.suse.com/903756
- https://bugzilla.suse.com/904176
- https://bugzilla.suse.com/904426
- https://bugzilla.suse.com/904432
- https://bugzilla.suse.com/909828
- https://bugzilla.suse.com/910862
- https://bugzilla.suse.com/911737
- https://www.suse.com/security/cve/CVE-2014-3657
- https://www.suse.com/security/cve/CVE-2014-7823
- https://www.suse.com/security/cve/CVE-2014-8136