File _patchinfo of Package patchinfo.29155
<patchinfo incident="29155">
<issue tracker="cve" id="2023-2700"/>
<issue tracker="bnc" id="1199583">KVM guest does not start with 5TB of memory assigned to it</issue>
<issue tracker="bnc" id="1211390">VUL-0: CVE-2023-2700: libvirt: Memory leak in virPCIVirtualFunctionList cleanup</issue>
<issue tracker="bnc" id="1208567">qemu-system-x86_64: Failed to lock byte 100</issue>
<issue tracker="bnc" id="1183247">starting lxc container failes with GDBus.Error:org.freedesktop.machine1.NoMachineForPID: PID 4370 does not belong to any known machine</issue>
<issue tracker="bnc" id="1209861">SLE-15 SP2 libvirtd core dump due to race condition [ref:_00D1igLOd._5005qOEA8t:ref]</issue>
<packager>jfehlig</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for libvirt</summary>
<description>This update for libvirt fixes the following issues:
- CVE-2023-2700: Fixed a memory leak that could be triggered by
repeatedly querying an SR-IOV PCI device's capabilities
(bsc#1211390).
Non-security fixes:
- Fixed a potential crash during driver cleanup (bsc#1209861).
- Added Apparmor support for SUSE edk2 firmware paths (boo#1208567).
- Fixed lxc container initialization with systemd and hybrid groups
(boo#1183247).
- Added the option to specify the virtual CPU address size in bits for
qemu (bsc#1199583).
</description>
</patchinfo>