Overview

File _patchinfo of Package patchinfo.10506

<patchinfo incident="10506">
  <issue tracker="bnc" id="1126325">L3: No way to set max_grant_frames for domUs via libvirt</issue>
  <issue tracker="bnc" id="1112182">[SLES15] VxLAN macvtap interface is not listing in virt-manager GUI in SLES15 OS</issue>
  <issue tracker="bnc" id="1127458">VUL-0: CVE-2019-3840: libvirt: NULL pointer dereference after running qemuAgentCommand in qemuAgentGetInterfaces function</issue>
  <issue tracker="bnc" id="1125665">libvirt regression: can't start domains in qemu:///session -- prctl failed to enable 'dac_override' in the AMBIENT set</issue>
  <issue tracker="bnc" id="1120813">Virsh setmem  &#8211;config does not preserve memory settings on live migrate</issue>
  <issue tracker="bnc" id="1102604">root only permissions on sev device</issue>
  <issue tracker="bnc" id="1081516">Crash kexec not working in Xen HVM domains created by libvirt</issue>
  <issue tracker="bnc" id="1131595">VUL-0: CVE-2019-3886: libvirt: virsh domhostname command discloses guest hostname in readonly mode</issue>
  <issue tracker="cve" id="2019-3840"/>
  <issue tracker="cve" id="2019-3886"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>jfehlig</packager>
  <description>This update for libvirt fixes the following issues:

Security issue fixed: 

- CVE-2019-3840: Fixed a null pointer dereference vulnerability in virJSONValueObjectHasKey function which could
  have resulted in a remote denial of service via the guest agent (bsc#1127458).
- CVE-2019-3886: Fixed an information leak which allowed to retrieve the guest
  hostname under readonly mode (bsc#1131595).

Other issues addressed: 

- libxl: support Xen's max_grant_frames setting with maxGrantFrames attribute on the xenbus controller (bsc#1126325).
- conf: added new 'xenbus' controller type
- util: skip RDMA detection for non-PCI network devices (bsc#1112182).
- qemu: don't use CAP_DAC_OVERRIDE capability if non-root (bsc#1125665).
- qemu: fix issues related to restricted permissions on /dev/sev(bsc#1102604).
- libxl: save current memory value after successful balloon (bsc#1120813).
- libxl: Add support for soft reset. (bsc#1081516)
</description>
  <summary>Security update for libvirt</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places