SUSE-SU-2018:0861-1
Vulnerability Summary
Timeline
Description
Security update for libvirt This update for libvirt fixes the following issues: Security issues fixed: - CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' (var2) (bsc#1079869). - CVE-2018-6764: Fixed guest executable code injection via libnss_dns.so loaded by libvirt_lxc before init (bsc#1080042). - CVE-2018-1064: Fixed denial of service when reading from guest agent (bsc#1083625). Non-security issues fixed: - Error starting domain: internal error: No usable sysfs TPM cancel file could be found (bsc#1078808). - SUSE Linux Enterprise 11 SP4 hvm converted to pvhvm. Unless vm memory is on gig boundary, vm won't boot (bsc#1082041).
Affected Systems
- suse•libvirt&distro=SUSE Linux Enterprise Desktop 12 SP2
< 2.0.0-27.34.1
- suse•libvirt&distro=SUSE Linux Enterprise Server 12 SP2
< 2.0.0-27.34.1
- suse•libvirt&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
< 2.0.0-27.34.1
- suse•libvirt&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2
< 2.0.0-27.34.1
- suse•libvirt&distro=SUSE Linux Enterprise Software Development Kit 12 SP2
< 2.0.0-27.34.1
- suse•libvirt&distro=SUSE Linux Enterprise Workstation Extension 12 SP2
< 2.0.0-27.34.1
References (9)
- https://www.suse.com/support/update/announcement/2018/suse-su-20180861-1/
- https://bugzilla.suse.com/1078808
- https://bugzilla.suse.com/1079869
- https://bugzilla.suse.com/1080042
- https://bugzilla.suse.com/1082041
- https://bugzilla.suse.com/1083625
- https://www.suse.com/security/cve/CVE-2017-5715
- https://www.suse.com/security/cve/CVE-2018-1064
- https://www.suse.com/security/cve/CVE-2018-6764