Oval Definition:oval:org.opensuse.security:def:80032
Revision Date:2015-01-23Version:1
Title:Security update for kvm and libvirt
Description:



This collective update for KVM and libvirt provides fixes for security and non-security issues.

kvm:

* Fix NULL pointer dereference because of uninitialized UDP socket. (bsc#897654, CVE-2014-3640) * Fix performance degradation after migration. (bsc#878350) * Fix potential image corruption due to missing FIEMAP_FLAG_SYNC flag in FS_IOC_FIEMAP ioctl. (bsc#908381) * Add validate hex properties for qdev. (bsc#852397) * Add boot option to do strict boot (bsc#900084) * Add query-command-line-options QMP command. (bsc#899144) * Fix incorrect return value of migrate_cancel. (bsc#843074) * Fix insufficient parameter validation during ram load. (bsc#905097, CVE-2014-7840) * Fix insufficient blit region checks in qemu/cirrus. (bsc#907805, CVE-2014-8106)

libvirt:

* Fix security hole with migratable flag in dumpxml. (bsc#904176, CVE-2014-7823) * Fix domain deadlock. (bsc#899484, CVE-2014-3657) * Use correct definition when looking up disk in qemu blkiotune. (bsc#897783, CVE-2014-3633) * Fix undefined symbol when starting virtlockd. (bsc#910145) * Add '-boot strict' to qemu's commandline whenever possible. (bsc#900084) * Add support for 'reboot-timeout' in qemu. (bsc#899144) * Increase QEMU's monitor timeout to 30sec. (bsc#911742) * Allow setting QEMU's migration max downtime any time. (bsc#879665)

Security Issues:

* CVE-2014-7823 * CVE-2014-3657 * CVE-2014-3633 * CVE-2014-3640 * CVE-2014-7840 * CVE-2014-8106

Family:unixClass:patch
Status:Reference(s):843074
852397
878350
879665
897654
897783
899144
899484
900084
904176
905097
907805
908381
910145
911742
CVE-2014-3633
CVE-2014-3640
CVE-2014-3657
CVE-2014-7823
CVE-2014-7840
CVE-2014-8106
SUSE-SU-2015:0357-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • kvm-1.4.2-0.21.4 is installed
  • OR libvirt-1.0.5.9-0.19.3 is installed
  • OR libvirt-client-1.0.5.9-0.19.3 is installed
  • OR libvirt-client-32bit-1.0.5.9-0.19.3 is installed
  • OR libvirt-doc-1.0.5.9-0.19.3 is installed
  • OR libvirt-python-1.0.5.9-0.19.3 is installed
    • BACK