Overview

File _patchinfo of Package patchinfo.20358

<patchinfo incident="20358">
  <issue tracker="cve" id="2021-3667"/>
  <issue tracker="cve" id="2021-3631"/>
  <issue tracker="bnc" id="1188843">VUL-0: CVE-2021-3667: libvirt: improper locking on ACL failure in virStoragePoolLookupByTargetPath API</issue>
  <issue tracker="bnc" id="1188232">L3-Question: updating libvirt removes "--listen" setting in /etc/sysconfig/libvirtd ref:_00D1igLOd._5001igcSe9:ref</issue>
  <issue tracker="bnc" id="1187871">VUL-1: CVE-2021-3631: libvirt: insecure sVirt label generation</issue>
  <issue tracker="bnc" id="1184253">virtlockd: Requested operation is not valid: Lockspace for path /var/lib/libvirt/lockd/files already exists</issue>
  <packager>jfehlig</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libvirt</summary>
  <description>This update for libvirt fixes the following issues:

Security issues fixed:

- CVE-2021-3631: fix SELinux label generation logic (bsc#1187871)
- CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath (bsc#1188843)

Non-security issues fixed:

- virtlockd: Don't report error if lockspace exists (bsc#1184253)
- Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. (bsc#1188232)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places