SUSE-SU-2023:2754-1: moderate: Security update for libvirt
sle-security-updates at lists.suse.com
sle-security-updates at lists.suse.com
Fri Jun 30 16:30:08 UTC 2023
# Security update for libvirt
Announcement ID: SUSE-SU-2023:2754-1
Rating: moderate
References:
* #1191668
* #1197636
* #1209861
Cross-References:
* CVE-2022-0897
CVSS scores:
* CVE-2022-0897 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-0897 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Affected Products:
* SUSE Enterprise Storage 7
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
An update that solves one vulnerability and has two fixes can now be installed.
## Description:
This update for libvirt fixes the following issues:
* CVE-2022-0897: Fixed crash when counting number of network filters
(bsc#1197636).
Bug fixes:
* qemu: Fixed potential crash during driver cleanup (bsc#1209861).
* libxl: Marked auto-allocated graphics ports to used on reconnect.
* libxl: Released all auto-allocated graphics ports (bsc#1191668).
* libxl: Added lock process indicator to saved VM state (bsc#1191668).
## Patch Instructions:
To install this SUSE Moderate update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-2754=1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-2754=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2023-2754=1
* SUSE Enterprise Storage 7
zypper in -t patch SUSE-Storage-7-2023-2754=1
## Package List:
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64
x86_64)
* libvirt-client-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
* libvirt-daemon-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-hooks-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
* libvirt-libs-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
* libvirt-devel-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
* libvirt-nss-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
* libvirt-daemon-qemu-6.0.0-150200.13.27.1
* libvirt-client-debuginfo-6.0.0-150200.13.27.1
* libvirt-nss-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-6.0.0-150200.13.27.1
* libvirt-daemon-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
* libvirt-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-admin-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
* libvirt-debugsource-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
* libvirt-daemon-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-config-network-6.0.0-150200.13.27.1
* libvirt-admin-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-debuginfo-6.0.0-150200.13.27.1
* libvirt-libs-debuginfo-6.0.0-150200.13.27.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
* libvirt-doc-6.0.0-150200.13.27.1
* libvirt-bash-completion-6.0.0-150200.13.27.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64)
* libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
* libvirt-daemon-driver-libxl-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-xen-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
x86_64)
* libvirt-client-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
* libvirt-daemon-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-hooks-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
* libvirt-libs-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
* libvirt-devel-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
* libvirt-nss-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-qemu-6.0.0-150200.13.27.1
* libvirt-nss-debuginfo-6.0.0-150200.13.27.1
* libvirt-client-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-6.0.0-150200.13.27.1
* libvirt-daemon-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
* libvirt-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-admin-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
* libvirt-debugsource-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
* libvirt-daemon-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-config-network-6.0.0-150200.13.27.1
* libvirt-admin-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-debuginfo-6.0.0-150200.13.27.1
* libvirt-libs-debuginfo-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
* libvirt-doc-6.0.0-150200.13.27.1
* libvirt-bash-completion-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 x86_64)
* libvirt-daemon-driver-storage-rbd-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64)
* libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
* libvirt-daemon-driver-libxl-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-xen-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
* libvirt-client-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
* libvirt-daemon-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-hooks-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
* libvirt-libs-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
* libvirt-devel-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
* libvirt-nss-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-qemu-6.0.0-150200.13.27.1
* libvirt-nss-debuginfo-6.0.0-150200.13.27.1
* libvirt-client-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-6.0.0-150200.13.27.1
* libvirt-daemon-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
* libvirt-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-admin-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
* libvirt-debugsource-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
* libvirt-daemon-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-config-network-6.0.0-150200.13.27.1
* libvirt-admin-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-debuginfo-6.0.0-150200.13.27.1
* libvirt-libs-debuginfo-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
* libvirt-doc-6.0.0-150200.13.27.1
* libvirt-bash-completion-6.0.0-150200.13.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64)
* libvirt-daemon-driver-storage-rbd-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
* libvirt-daemon-xen-6.0.0-150200.13.27.1
* libvirt-daemon-driver-libxl-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
* SUSE Enterprise Storage 7 (aarch64 x86_64)
* libvirt-client-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-6.0.0-150200.13.27.1
* libvirt-daemon-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-scsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-hooks-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-6.0.0-150200.13.27.1
* libvirt-libs-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-6.0.0-150200.13.27.1
* libvirt-devel-6.0.0-150200.13.27.1
* libvirt-daemon-driver-network-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-core-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-mpath-6.0.0-150200.13.27.1
* libvirt-daemon-driver-qemu-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-6.0.0-150200.13.27.1
* libvirt-nss-6.0.0-150200.13.27.1
* libvirt-daemon-driver-secret-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-6.0.0-150200.13.27.1
* libvirt-daemon-qemu-6.0.0-150200.13.27.1
* libvirt-client-debuginfo-6.0.0-150200.13.27.1
* libvirt-nss-debuginfo-6.0.0-150200.13.27.1
* libvirt-lock-sanlock-6.0.0-150200.13.27.1
* libvirt-daemon-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-rbd-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nodedev-6.0.0-150200.13.27.1
* libvirt-6.0.0-150200.13.27.1
* libvirt-daemon-driver-lxc-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-interface-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-iscsi-debuginfo-6.0.0-150200.13.27.1
* libvirt-admin-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-logical-6.0.0-150200.13.27.1
* libvirt-debugsource-6.0.0-150200.13.27.1
* libvirt-daemon-driver-nwfilter-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-config-nwfilter-6.0.0-150200.13.27.1
* libvirt-daemon-lxc-6.0.0-150200.13.27.1
* libvirt-daemon-config-network-6.0.0-150200.13.27.1
* libvirt-admin-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-driver-storage-disk-debuginfo-6.0.0-150200.13.27.1
* libvirt-libs-debuginfo-6.0.0-150200.13.27.1
* SUSE Enterprise Storage 7 (noarch)
* libvirt-doc-6.0.0-150200.13.27.1
* libvirt-bash-completion-6.0.0-150200.13.27.1
* SUSE Enterprise Storage 7 (x86_64)
* libvirt-daemon-driver-libxl-6.0.0-150200.13.27.1
* libvirt-daemon-driver-libxl-debuginfo-6.0.0-150200.13.27.1
* libvirt-daemon-xen-6.0.0-150200.13.27.1
## References:
* https://www.suse.com/security/cve/CVE-2022-0897.html
* https://bugzilla.suse.com/show_bug.cgi?id=1191668
* https://bugzilla.suse.com/show_bug.cgi?id=1197636
* https://bugzilla.suse.com/show_bug.cgi?id=1209861
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20230630/1b43fbe1/attachment.htm>
More information about the sle-security-updates
mailing list