Overview

File _patchinfo of Package patchinfo.15950

<patchinfo incident="15950">
  <issue tracker="cve" id="2020-14339"/>
  <issue tracker="bnc" id="1167007">[limit][xen][SR950] Fail to load  libvirtd.service on xen 8TB memory system</issue>
  <issue tracker="bnc" id="1161883">L3: scsi reservations setup by pr_helper</issue>
  <issue tracker="bnc" id="1171946">[snapshot] error: Failed to create v1 controller cpu for group: No such file or directory</issue>
  <issue tracker="bnc" id="1174458">VUL-0: CVE-2020-14339: libvirt: leak of /dev/mapper/control into QEMU guests</issue>
  <issue tracker="bnc" id="1172052">[XEN][SR-IOV]hotplug in a vf Ethernet device to domU via virsh but MAC address changed after domU's first reboot</issue>
  <packager>jfehlig</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for libvirt</summary>
  <description>This update for libvirt fixes the following issues:

- CVE-2020-14339: Don't leak /dev/mapper/control into QEMU. Use
  ioctl's to obtain the dependency tree of disks and drop use of
  libdevmapper. - bsc#1161883, bsc#1174458
- qemu: Setup emulator thread and cpuset.mems before exec - bsc#1171946
- libxl: Normalize MAC address in device conf on netdev hotplug - bsc#1172052
- spec: Use a functional requires instead of explicit version
  requires for the new memory-related libxl APIs - bsc#1167007
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places