SUSE-SU-2016:0923-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2015-5313

Published: 31 Mar 2016, 12:19

Last modified:04 Feb 2026, 03:52

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

31 Mar 2016, 12:19

Published

Vulnerability first disclosed

04 Feb 2026, 03:52

Last Modified

Vulnerability information updated

Description

Security update for libvirt This update to libvirt 1.2.18.2 fixes the following minor security issue: - CVE-2015-5313: Directory traversal allowed privilege escalation (bsc#953110) The following bugs were fixed: - bsc#952849: Don't add apparmor deny rw rule for 9P readonly mounts. - bsc#960305: libxl: support parsing and formatting vif bandwidth - bsc#954872: libxl: Add support for block-{dmmd,drbd,npiv} scripts - bsc#964465: Remove 'Wants=xencommons.service' from libvirtd service file

Affected Systems

suse•libvirt&distro=SUSE Linux Enterprise Desktop 12 SP1
< 1.2.18.2-8.1
suse•libvirt&distro=SUSE Linux Enterprise Server 12 SP1
< 1.2.18.2-8.1
suse•libvirt&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1
< 1.2.18.2-8.1
suse•libvirt&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
< 1.2.18.2-8.1
suse•libvirt&distro=SUSE Linux Enterprise Workstation Extension 12 SP1
< 1.2.18.2-8.1

SUSE-SU-2016:0923-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (7)