File _patchinfo of Package patchinfo.7420

<patchinfo incident="7420">
  <issue id="1062563" tracker="bnc">VUL-0: CVE-2017-1000256: libvirt: QEMU TLS clients have x509 certificate verification disabled</issue>
  <issue id="1062620" tracker="bnc">libvirt-daemon-qemu package missing dependency on libvirt-daemon-driver-storage</issue>
  <issue id="2017-1000256" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jfehlig</packager>
  <description>This update for libvirt fixes the following issues:

Security issue fixed:

- CVE-2017-1000256: Ensure TLS clients always verify the server certificate in the serial/TLS support. (bsc#1062563)

Non security issue fixed:

- libvirt-daemon-qemu requires libvirt-daemon-driver-storage (bsc#1062620)

This update was imported from the SUSE:SLE-12-SP3:Update update project.</description>
  <summary>Security update for libvirt</summary>
</patchinfo>
Places

File _patchinfo of Package patchinfo.7420

Places
