File _patchinfo of Package patchinfo.239
<patchinfo incident="239"> <issue id="899484" tracker="bnc">VUL-1: CVE-2014-3657: libvirt: domain_conf: domain deadlock DoS</issue> <issue id="903756" tracker="bnc" /> <issue id="902976" tracker="bnc" /> <issue id="899334" tracker="bnc">libvirt claiming Machine already exists</issue> <issue id="904432" tracker="bnc" /> <issue id="904176" tracker="bnc">VUL-1: CVE-2014-7823: libvirt: Information leak with flag VIR_DOMAIN_XML_MIGRATABLE</issue> <issue id="904426" tracker="bnc" /> <issue id="900587" tracker="bnc" /> <issue id="909828" tracker="bnc" /> <issue id="910862" tracker="bnc" /> <issue id="891936" tracker="bnc" /> <issue id="911737" tracker="bnc" /> <issue id="904432" tracker="bnc" /> <issue id="CVE-2014-7823" tracker="cve" /> <issue id="CVE-2014-8136" tracker="cve" /> <issue id="CVE-2014-3657" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>jfehlig</packager> <description>libvirt was updated to fix security issues and bugs. These security issues were fixed: - Fixed denial of service flaw in libvirt's virConnectListAllDomains() function (CVE-2014-3657). - Information leak with flag VIR_DOMAIN_XML_MIGRATABLE (CVE-2014-7823). - local denial of service in qemu driver (CVE-2014-8136) These non-security issues were fixed: - Get /proc/sys/net/ipv[46] read-write for wicked to work in containers (bsc#904432). - libxl: Several migration improvements (bsc#903756). - libxl: allow libxl to find pygrub binary (bdo#770485). - Fix Qemu AppArmor abstraction (bsc#904426). - AppArmor confined kvm domains couldn't find the apparmor profile template (bnc#902976). - Backport commit c110cdb2 to fix non-raw storage format error (bnc#900587). - qemu: use systemd's TerminateMachine to kill all processes (bsc#899334). - Transformed Errors into warnings in detect_scsi_host_caps. - Fix a missing cleanup for lxc containers. - Adding network configuration to containers. bsc#904432 </description> <summary>Security update for libvirt</summary> </patchinfo>
