(RHSA-2019:1579) Important: libvirt security and bug fix update

2019-06-2012:44:11

access.redhat.com

154

0.0004 Low

EPSS

Percentile

14.4%

JSON

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fix(es):

libvirt: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API (CVE-2019-10161)
libvirt: virDomainManagedSaveDefineXML API exposed to readonly clients (CVE-2019-10166)
libvirt: arbitrary command execution via virConnectGetDomainCapabilities API (CVE-2019-10167)
libvirt: arbitrary command execution via virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU APIs (CVE-2019-10168)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

Live migration fail with unsafe error when GPFS is used as shared filesystem (BZ#1715867)

OSVersionArchitecturePackageVersionFilename
RedHat7ppc64lelibvirt-client< 4.5.0-10.el7_6.12libvirt-client-4.5.0-10.el7_6.12.ppc64le.rpm
RedHat7s390xlibvirt-daemon-driver-storage-iscsi< 4.5.0-10.el7_6.12libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.12.s390x.rpm
RedHat7aarch64libvirt-daemon-config-nwfilter< 4.5.0-10.el7_6.12libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.12.aarch64.rpm
RedHat7aarch64libvirt-daemon-driver-interface< 4.5.0-10.el7_6.12libvirt-daemon-driver-interface-4.5.0-10.el7_6.12.aarch64.rpm
RedHat7s390xlibvirt-daemon-driver-secret< 4.5.0-10.el7_6.12libvirt-daemon-driver-secret-4.5.0-10.el7_6.12.s390x.rpm
RedHat7x86_64libvirt-daemon-driver-lxc< 4.5.0-10.el7_6.12libvirt-daemon-driver-lxc-4.5.0-10.el7_6.12.x86_64.rpm
RedHat7ppc64lelibvirt-daemon-driver-qemu< 4.5.0-10.el7_6.12libvirt-daemon-driver-qemu-4.5.0-10.el7_6.12.ppc64le.rpm
RedHat7aarch64libvirt-daemon-driver-storage-disk< 4.5.0-10.el7_6.12libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.12.aarch64.rpm
RedHat7x86_64libvirt-nss< 4.5.0-10.el7_6.12libvirt-nss-4.5.0-10.el7_6.12.x86_64.rpm
RedHat7ppc64libvirt-daemon-driver-storage-mpath< 4.5.0-10.el7_6.12libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.12.ppc64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	ppc64le	libvirt-client	< 4.5.0-10.el7_6.12	libvirt-client-4.5.0-10.el7_6.12.ppc64le.rpm
RedHat	7	s390x	libvirt-daemon-driver-storage-iscsi	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-storage-iscsi-4.5.0-10.el7_6.12.s390x.rpm
RedHat	7	aarch64	libvirt-daemon-config-nwfilter	< 4.5.0-10.el7_6.12	libvirt-daemon-config-nwfilter-4.5.0-10.el7_6.12.aarch64.rpm
RedHat	7	aarch64	libvirt-daemon-driver-interface	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-interface-4.5.0-10.el7_6.12.aarch64.rpm
RedHat	7	s390x	libvirt-daemon-driver-secret	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-secret-4.5.0-10.el7_6.12.s390x.rpm
RedHat	7	x86_64	libvirt-daemon-driver-lxc	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-lxc-4.5.0-10.el7_6.12.x86_64.rpm
RedHat	7	ppc64le	libvirt-daemon-driver-qemu	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-qemu-4.5.0-10.el7_6.12.ppc64le.rpm
RedHat	7	aarch64	libvirt-daemon-driver-storage-disk	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-storage-disk-4.5.0-10.el7_6.12.aarch64.rpm
RedHat	7	x86_64	libvirt-nss	< 4.5.0-10.el7_6.12	libvirt-nss-4.5.0-10.el7_6.12.x86_64.rpm
RedHat	7	ppc64	libvirt-daemon-driver-storage-mpath	< 4.5.0-10.el7_6.12	libvirt-daemon-driver-storage-mpath-4.5.0-10.el7_6.12.ppc64.rpm