Overview

File _patchinfo of Package patchinfo.10498

<patchinfo incident="10498">
  <issue tracker="bnc" id="1127458">VUL-0: CVE-2019-3840: libvirt: NULL pointer dereference after running qemuAgentCommand in qemuAgentGetInterfaces function</issue>
  <issue tracker="bnc" id="1120813">Virsh setmem  &#8211;config does not preserve memory settings on live migrate</issue>
  <issue tracker="bnc" id="1104662">zypper patch executes /usr/bin/systemctl try-restart libvirt-guests.service</issue>
  <issue tracker="cve" id="2019-3840"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>jfehlig</packager>
  <description>This update for libvirt fixes the following issues:

Security issues fixed: 

- CVE-2019-3840: Fixed a null pointer dereference vulnerability in virJSONValueObjectHasKey function which could
  have resulted in a remote denial of service via the guest agent (bsc#1127458).

Other issues fixed:   

- libxl: save current memory value after successful balloon (bsc#1120813).
- spec: Don't restart libvirt-guests when updating libvirt-client (bsc#1104662).
</description>
  <summary>Security update for libvirt</summary>
  </patchinfo>
openSUSE Build Service is sponsored by
Places