libvirt security and bug fix update

2024-05-1014:32:38

Rockylinux Product Errata

errata.rockylinux.org

libvirt

security update

bug fix

cvss

c api

virtualization

linux

remote management

cve-2024-1441

cve-2024-2494

jira

6.2 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.8%

JSON

An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fixes:

libvirt: off-by-one error in udevListInterfacesByStatus() (CVE-2024-1441)
libvirt: negative g_new0 length can lead to unbounded memory allocation (CVE-2024-2494)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fixes:

libvirt: off-by-one error in udevListInterfacesByStatus() [rhel-9] (JIRA:Rocky Linux-25081)
libvirt: negative g_new0 length can lead to unbounded memory allocation [rhel-9] (JIRA:Rocky Linux-29515)

OSVersionArchitecturePackageVersionFilename
rocky9aarch64libvirt< 10.0.0-6.2.el9_4libvirt-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky9ppc64lelibvirt< 10.0.0-6.2.el9_4libvirt-0:10.0.0-6.2.el9_4.ppc64le.rpm
rocky9s390xlibvirt< 10.0.0-6.2.el9_4libvirt-0:10.0.0-6.2.el9_4.s390x.rpm
rocky9x86_64libvirt< 10.0.0-6.2.el9_4libvirt-0:10.0.0-6.2.el9_4.x86_64.rpm
rocky9aarch64libvirt-client< 10.0.0-6.2.el9_4libvirt-client-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky9ppc64lelibvirt-client< 10.0.0-6.2.el9_4libvirt-client-0:10.0.0-6.2.el9_4.ppc64le.rpm
rocky9s390xlibvirt-client< 10.0.0-6.2.el9_4libvirt-client-0:10.0.0-6.2.el9_4.s390x.rpm
rocky9x86_64libvirt-client< 10.0.0-6.2.el9_4libvirt-client-0:10.0.0-6.2.el9_4.x86_64.rpm
rocky9aarch64libvirt-client-debuginfo< 10.0.0-6.2.el9_4libvirt-client-debuginfo-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky9ppc64lelibvirt-client-debuginfo< 10.0.0-6.2.el9_4libvirt-client-debuginfo-0:10.0.0-6.2.el9_4.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
rocky	9	aarch64	libvirt	< 10.0.0-6.2.el9_4	libvirt-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky	9	ppc64le	libvirt	< 10.0.0-6.2.el9_4	libvirt-0:10.0.0-6.2.el9_4.ppc64le.rpm
rocky	9	s390x	libvirt	< 10.0.0-6.2.el9_4	libvirt-0:10.0.0-6.2.el9_4.s390x.rpm
rocky	9	x86_64	libvirt	< 10.0.0-6.2.el9_4	libvirt-0:10.0.0-6.2.el9_4.x86_64.rpm
rocky	9	aarch64	libvirt-client	< 10.0.0-6.2.el9_4	libvirt-client-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky	9	ppc64le	libvirt-client	< 10.0.0-6.2.el9_4	libvirt-client-0:10.0.0-6.2.el9_4.ppc64le.rpm
rocky	9	s390x	libvirt-client	< 10.0.0-6.2.el9_4	libvirt-client-0:10.0.0-6.2.el9_4.s390x.rpm
rocky	9	x86_64	libvirt-client	< 10.0.0-6.2.el9_4	libvirt-client-0:10.0.0-6.2.el9_4.x86_64.rpm
rocky	9	aarch64	libvirt-client-debuginfo	< 10.0.0-6.2.el9_4	libvirt-client-debuginfo-0:10.0.0-6.2.el9_4.aarch64.rpm
rocky	9	ppc64le	libvirt-client-debuginfo	< 10.0.0-6.2.el9_4	libvirt-client-debuginfo-0:10.0.0-6.2.el9_4.ppc64le.rpm