Overview

File _patchinfo of Package patchinfo.2053

<patchinfo>
  <issue id="838638" tracker="bnc">VUL-1: CVE-2013-4296: libvirt: Fix crash in remoteDispatchDomainMemoryStats</issue>
  <issue id="810611" tracker="bnc">Libvirt's network filter option is partly broken.</issue>
  <issue id="820888" tracker="bnc">systemd libvirtd.service starts before xen services</issue>
  <issue id="836931" tracker="bnc">VUL-1: CVE-2013-4311: libvirtd: polkit-process subject race condition</issue>
  <issue id="837999" tracker="bnc">VUL-0: CVE-2013-5651: libvirt: virBitmapParse out-of-bounds read access</issue>
  <issue id="CVE-2013-4311" tracker="cve" />
  <issue id="CVE-2013-4296" tracker="cve" />
  <issue id="CVE-2013-5651" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jfehlig</packager>
  <description>
libvirt was updated to fix security issues and bugs:

Security issues fixed:
CVE-2013-4311: Add support for using 3-arg pkcheck syntax for process to
avoid race conditions.

CVE-2013-4296: Fix a crash (denial of service) in remoteDispatchDomainMemoryStats

CVE-2013-5651: Fix virBitmapParse to avoid access beyond bounds of array (denial of service crash).

Also bugs were fixed:
- nwfilter: check for inverted ctdir. bnc#810611
- Add xencommons as 'Wanted' in the systemd libvirtd service file. bnc#820888
</description>
  <summary>libvirt: security and bugfix update</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places