Oval Definition:oval:org.mitre.oval:def:25621
Revision Date:2014-09-08Version:5
Title:SUSE-SU-2013:1642-1 -- Security update for libvirt
Description:libvirt has been updated to the 1.0.5.6 stable release thatfixes bugs and security issues: * CVE-2013-4296: Fix crash inremoteDispatchDomainMemoryStats * CVE-2013-5651: virBitmapParse out-of-bounds readaccess Libvirt on SLES 11 SP3 is not affected: * CVE-2013-4311: Add support for using 3-arg pkchecksyntax for process () * CVE-2013-4291: security: provide supplemental groupseven when parsing label ()Changes in this version: * virsh: fix change-media bug on disk block type * Include process start time when doing polkit checks * qemuDomainChangeGraphics: Check listen address changeby listen type * python: return dictionary without value in case of noblockjob * virbitmap: Refactor virBitmapParse to avoid accessbeyond bounds of arrayAlso the following bug has been fixed: * Fix retrieval of SRIOV VF info, which prevented usingsome SRIOV virtual functions in guest domains with ""(bnc#837329)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2013-4291
CVE-2013-4296
CVE-2013-4311
CVE-2013-5651
SUSE-SU-2013:1642-1
Platform(s):SUSE Linux Enterprise Desktop 11
SUSE Linux Enterprise Server 11
Product(s):libvirt
Definition Synopsis
  • SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section
  • Operation system section
  • SUSE Linux Enterprise Server 11.x is installed
  • OR SUSE Linux Enterprise Desktop 11.x is installed
  • AND Packages match section
  • libvirt RPM is earlier than 0:1.0.5.6-0.7.1
  • OR libvirt-client RPM is earlier than 0:1.0.5.6-0.7.1
  • OR libvirt-doc RPM is earlier than 0:1.0.5.6-0.7.1
  • OR libvirt-python RPM is earlier than 0:1.0.5.6-0.7.1
  • OR libvirt-client-32bit RPM is earlier than 0:1.0.5.6-0.7.1
  • SUSE Linux Enterprise Server 11 release section
  • SUSE Linux Enterprise Server 11.x is installed
  • AND libvirt-lock-sanlock RPM is earlier than 0:1.0.5.6-0.7.1
    • BACK