libvirt security update

2018-01-0500:00:00

linux.oracle.com

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.975 High

EPSS

Percentile

100.0%

JSON

[3.2.0-14.0.1.el7_4.7]

bump release and rebuild
[3.2.0-14.el7_4.7]
qemu: Properly store microcode version in QEMU caps cache (CVE-2017-5715)
[3.2.0-14.el7_4.6]
util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD (CVE-2017-5715)
util: introduce virHostCPUGetMicrocodeVersion (CVE-2017-5715)
cpu_x86: Rename virCPUx86MapInitialize (CVE-2017-5715)
conf: include x86 microcode version in virsh capabiltiies (CVE-2017-5715)
qemu: capabilities: force update if the microcode version does not match (CVE-2017-5715)
cpu: add CPU features and model for indirect branch prediction protection (CVE-2017-5715)

OSVersionArchitecturePackageVersionFilename
oracle linux7srclibvirt< 3.2.0-14.0.1.el7_4.7libvirt-3.2.0-14.0.1.el7_4.7.src.rpm
oracle linux7x86_64libvirt< 3.2.0-14.0.1.el7_4.7libvirt-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-admin< 3.2.0-14.0.1.el7_4.7libvirt-admin-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7i686libvirt-client< 3.2.0-14.0.1.el7_4.7libvirt-client-3.2.0-14.0.1.el7_4.7.i686.rpm
oracle linux7x86_64libvirt-client< 3.2.0-14.0.1.el7_4.7libvirt-client-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-daemon< 3.2.0-14.0.1.el7_4.7libvirt-daemon-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-daemon-config-network< 3.2.0-14.0.1.el7_4.7libvirt-daemon-config-network-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-daemon-config-nwfilter< 3.2.0-14.0.1.el7_4.7libvirt-daemon-config-nwfilter-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-daemon-driver-interface< 3.2.0-14.0.1.el7_4.7libvirt-daemon-driver-interface-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux7x86_64libvirt-daemon-driver-lxc< 3.2.0-14.0.1.el7_4.7libvirt-daemon-driver-lxc-3.2.0-14.0.1.el7_4.7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	7	src	libvirt	< 3.2.0-14.0.1.el7_4.7	libvirt-3.2.0-14.0.1.el7_4.7.src.rpm
oracle linux	7	x86_64	libvirt	< 3.2.0-14.0.1.el7_4.7	libvirt-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-admin	< 3.2.0-14.0.1.el7_4.7	libvirt-admin-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	i686	libvirt-client	< 3.2.0-14.0.1.el7_4.7	libvirt-client-3.2.0-14.0.1.el7_4.7.i686.rpm
oracle linux	7	x86_64	libvirt-client	< 3.2.0-14.0.1.el7_4.7	libvirt-client-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-daemon	< 3.2.0-14.0.1.el7_4.7	libvirt-daemon-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-daemon-config-network	< 3.2.0-14.0.1.el7_4.7	libvirt-daemon-config-network-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-daemon-config-nwfilter	< 3.2.0-14.0.1.el7_4.7	libvirt-daemon-config-nwfilter-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-daemon-driver-interface	< 3.2.0-14.0.1.el7_4.7	libvirt-daemon-driver-interface-3.2.0-14.0.1.el7_4.7.x86_64.rpm
oracle linux	7	x86_64	libvirt-daemon-driver-lxc	< 3.2.0-14.0.1.el7_4.7	libvirt-daemon-driver-lxc-3.2.0-14.0.1.el7_4.7.x86_64.rpm