(RHSA-2023:3715) Moderate: libvirt security update

2023-06-2113:52:09

access.redhat.com

libvirt

security update

memory leak

cve-2023-2700

virtualization

linux

remote management

cvss score

references

operating systems

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fix(es):

libvirt: Memory leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9aarch64libvirt-daemon-driver-storage-disk-debuginfo< 9.0.0-10.2.el9_2libvirt-daemon-driver-storage-disk-debuginfo-9.0.0-10.2.el9_2.aarch64.rpm
RedHat9s390xlibvirt-daemon-debuginfo< 9.0.0-10.2.el9_2libvirt-daemon-debuginfo-9.0.0-10.2.el9_2.s390x.rpm
RedHat9ppc64lelibvirt-daemon-driver-network-debuginfo< 9.0.0-10.2.el9_2libvirt-daemon-driver-network-debuginfo-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat9s390xlibvirt-daemon-driver-secret-debuginfo< 9.0.0-10.2.el9_2libvirt-daemon-driver-secret-debuginfo-9.0.0-10.2.el9_2.s390x.rpm
RedHat9s390xlibvirt< 9.0.0-10.2.el9_2libvirt-9.0.0-10.2.el9_2.s390x.rpm
RedHat9x86_64libvirt-client< 9.0.0-10.2.el9_2libvirt-client-9.0.0-10.2.el9_2.x86_64.rpm
RedHat9ppc64lelibvirt-daemon< 9.0.0-10.2.el9_2libvirt-daemon-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat9ppc64lelibvirt-daemon-driver-storage-logical-debuginfo< 9.0.0-10.2.el9_2libvirt-daemon-driver-storage-logical-debuginfo-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat9ppc64lelibvirt-daemon-driver-storage-rbd< 9.0.0-10.2.el9_2libvirt-daemon-driver-storage-rbd-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat9aarch64libvirt-daemon< 9.0.0-10.2.el9_2libvirt-daemon-9.0.0-10.2.el9_2.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	aarch64	libvirt-daemon-driver-storage-disk-debuginfo	< 9.0.0-10.2.el9_2	libvirt-daemon-driver-storage-disk-debuginfo-9.0.0-10.2.el9_2.aarch64.rpm
RedHat	9	s390x	libvirt-daemon-debuginfo	< 9.0.0-10.2.el9_2	libvirt-daemon-debuginfo-9.0.0-10.2.el9_2.s390x.rpm
RedHat	9	ppc64le	libvirt-daemon-driver-network-debuginfo	< 9.0.0-10.2.el9_2	libvirt-daemon-driver-network-debuginfo-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat	9	s390x	libvirt-daemon-driver-secret-debuginfo	< 9.0.0-10.2.el9_2	libvirt-daemon-driver-secret-debuginfo-9.0.0-10.2.el9_2.s390x.rpm
RedHat	9	s390x	libvirt	< 9.0.0-10.2.el9_2	libvirt-9.0.0-10.2.el9_2.s390x.rpm
RedHat	9	x86_64	libvirt-client	< 9.0.0-10.2.el9_2	libvirt-client-9.0.0-10.2.el9_2.x86_64.rpm
RedHat	9	ppc64le	libvirt-daemon	< 9.0.0-10.2.el9_2	libvirt-daemon-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat	9	ppc64le	libvirt-daemon-driver-storage-logical-debuginfo	< 9.0.0-10.2.el9_2	libvirt-daemon-driver-storage-logical-debuginfo-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat	9	ppc64le	libvirt-daemon-driver-storage-rbd	< 9.0.0-10.2.el9_2	libvirt-daemon-driver-storage-rbd-9.0.0-10.2.el9_2.ppc64le.rpm
RedHat	9	aarch64	libvirt-daemon	< 9.0.0-10.2.el9_2	libvirt-daemon-9.0.0-10.2.el9_2.aarch64.rpm