Lucene search
SuseOPENSUSE-SU-2019:1294-1HistoryApr 29, 2019 - 12:00 a.m.
Security update for libvirt (moderate)
2019-04-2900:00:00
lists.opensuse.org
29
0.002 Low
EPSS
Percentile
62.2%
An update that solves two vulnerabilities and has three
fixes is now available.
Description:
This update for libvirt fixes the following issues:
Security issues fixed:
- CVE-2019-3840: Fixed a null pointer dereference vulnerability in
virJSONValueObjectHasKey function which could have resulted in a remote
denial of service via the guest agent (bsc#1127458). - CVE-2019-3886: Fixed an information leak which allowed to retrieve the
guest hostname under readonly mode (bsc#1131595).
Other issue addressed:
- cpu: add Skylake-Server and Skylake-Server-IBRS CPU models (FATE#327261,
bsc#1131955) - libxl: save current memory value after successful balloon (bsc#1120813).
- libxl: support Xen’s max_grant_frames setting with maxGrantFrames
attribute on the xenbus controller (bsc#1126325). - conf: add new ‘xenbus’ controller type
This update was imported from the SUSE:SLE-12-SP3:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-1294=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | i586 | < - openSUSE Leap 42.3 (i586 x86_64): | - openSUSE Leap 42.3 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 42.3 | x86_64 | < - openSUSE Leap 42.3 (i586 x86_64): | - openSUSE Leap 42.3 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 42.3 | x86_64 | < - openSUSE Leap 42.3 (x86_64): | - openSUSE Leap 42.3 (x86_64):.x86_64.rpm |
Related
nessus
nessus
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2019:0948-1)
2019-04-16 00:00:00
openSUSE Security Update : libvirt (openSUSE-2019-1294)
2019-04-30 00:00:00
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2019:1042-1)
2019-04-29 00:00:00
openvas
openvas
openSUSE: Security Advisory for libvirt (openSUSE-SU-2019:1294-1)
2019-04-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1042-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0948-1)
2021-04-19 00:00:00
prion
prion
Information disclosure
2019-04-04 16:29:00
Null pointer dereference
2019-03-27 13:29:00
Design/Logic Flaw
2019-04-18 16:29:00
osv
osv
debiancve
debiancve
veracode
veracode
Insecure Authorization
2019-04-05 02:54:38
Denial Of Service (DoS)
2019-03-13 02:51:32
cvelist
cvelist
cbl_mariner
cbl_mariner
CVE-2019-3886 affecting package libvirt 6.1.0-1
2020-09-09 06:09:20
nvd
nvd
cve
cve
redhatcve
redhatcve
ubuntucve
ubuntucve
fedora
fedora
[SECURITY] Fedora 29 Update: libvirt-4.7.0-2.fc29
2019-05-05 02:43:52
[SECURITY] Fedora 29 Update: libvirt-4.7.0-5.fc29
2019-07-09 02:25:07
[SECURITY] Fedora 29 Update: libvirt-4.7.0-3.fc29
2019-05-17 03:18:05
altlinux
altlinux
Security fix for the ALT Linux 8 package libvirt version 3.10.0-alt3
2019-08-29 00:00:00
ubuntu
ubuntu
libvirt vulnerability
2019-03-14 00:00:00
libvirt vulnerabilities
2019-06-19 00:00:00
redhat
redhat
(RHSA-2019:2294) Moderate: libvirt security, bug fix, and enhancement update
2019-08-06 08:22:20
centos
centos
libvirt security update
2019-08-30 03:33:00
suse
suse
Security update for libvirt (important)
2019-04-29 00:00:00
mageia
mageia
Updated libvirt packages fix security vulnerability
2019-04-11 00:25:19
Updated libvirt packages fix security vulnerabilities
2019-12-15 21:03:05
amazon
amazon
Medium: libvirt
2019-11-11 17:40:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0016
2019-05-30 00:00:00
Critical Photon OS Security Update - PHSA-2019-3.0-0016
2019-05-30 00:00:00
oraclelinux
oraclelinux
libvirt security, bug fix, and enhancement update
2019-08-13 00:00:00