Overview

File _patchinfo of Package patchinfo.29155

<patchinfo incident="29155">
  <issue tracker="cve" id="2023-2700"/>
  <issue tracker="bnc" id="1199583">KVM guest does not start with 5TB of memory assigned to it</issue>
  <issue tracker="bnc" id="1211390">VUL-0: CVE-2023-2700: libvirt: Memory leak in virPCIVirtualFunctionList cleanup</issue>
  <issue tracker="bnc" id="1208567">qemu-system-x86_64: Failed to lock byte 100</issue>
  <issue tracker="bnc" id="1183247">starting lxc container failes with GDBus.Error:org.freedesktop.machine1.NoMachineForPID: PID 4370 does not belong to any known machine</issue>
  <issue tracker="bnc" id="1209861">SLE-15 SP2 libvirtd core dump due to race condition [ref:_00D1igLOd._5005qOEA8t:ref]</issue>
  <packager>jfehlig</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libvirt</summary>
  <description>This update for libvirt fixes the following issues:

- CVE-2023-2700: Fixed a memory leak that could be triggered by
  repeatedly querying an SR-IOV PCI device's capabilities
  (bsc#1211390).

Non-security fixes:

- Fixed a potential crash during driver cleanup (bsc#1209861).
- Added Apparmor support for SUSE edk2 firmware paths (boo#1208567).
- Fixed lxc container initialization with systemd and hybrid groups
  (boo#1183247).
- Added the option to specify the virtual CPU address size in bits for
  qemu (bsc#1199583).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places