File _patchinfo of Package patchinfo.16732

<patchinfo incident="16732">
  <issue tracker="cve" id="2020-25637"/>
  <issue tracker="cve" id="2020-15708"/>
  <issue tracker="bnc" id="1175465">libvirtd can't start VM, can't get devmapper targets for its disc</issue>
  <issue tracker="bnc" id="1176430">XEN internal error: unexpected domain Domain-0 already exists in sles15sp2</issue>
  <issue tracker="bnc" id="1177155">VUL-0: CVE-2020-25637: libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c</issue>
  <issue tracker="bnc" id="1173157">SLES 15 SP2 GMC - Stale libvirt cache leads to VM startup failures (kvm/secure execution)</issue>
  <issue tracker="bnc" id="1174139">Invalid or unsupported virtual disk identifier fdb, when adding floppy disk</issue>
  <issue tracker="bnc" id="1174955">VUL-0: CVE-2020-15708: libvirt: Arbitrary File Write Privilege Escalation Vulnerability in service file</issue>
  <packager>jfehlig</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for libvirt</summary>
  <description>This update for libvirt fixes the following issues:

- CVE-2020-15708: Added a  note to libvirtd.conf about polkit auth in SUSE distros (bsc#1174955).
- CVE-2020-25637: Fixed a double free in qemuAgentGetInterfaces() (bsc#1177155).
- qemu: Avoid stale capabilities cache host CPU or kernel command line changes (bsc#1173157).
- virdevmapper: Handle kernel without device-mapper support (bsc#1175465).
- Xen: Added support for passing arbitrary commands to the qemu device model, similar to the xl.cfg(5) device_model_args setting (bsc#1174139).
- Xen: Don't add dom0 twice on driver reload (bsc#1176430).
</description>
</patchinfo>