Lucene search

K
oraclelinuxOracleLinuxELSA-2022-9700
HistoryAug 08, 2022 - 12:00 a.m.

virt:kvm_utils security update

2022-08-0800:00:00
linux.oracle.com
35

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

libvirt
[5.7.0-34.el8]

  • qemu: blockcopy: Allow late opening of the backing chain of a shallow copy (Peter Krempa) [Orabug: 33091019]
  • qemu: capabilities: Introduce QEMU_CAPS_BLOCKDEV_SNAPSHOT_ALLOW_WRITE_ONLY (Peter Krempa) [Orabug: 33091019]
  • qemuDomainBlockCopyCommon: Record updated flags to block job (Peter Krempa) [Orabug: 33091019]
  • qemuDomainBlockPivot: Move check prior to executing the pivot steps (Peter Krempa) [Orabug: 33091019]
  • qemu: Tell secdrivers which images are top parent (Michal Privoznik) [Orabug: 33091019]
  • qemuDomainBlockPivot: Copy bitmaps backing checkpoints for virDomainBlockCopy (Peter Krempa) [Orabug: 33091019]
  • qemu: block: Introduce function to calculate bitmap handling for block-copy (Peter Krempa) [Orabug: 33091019]
  • qemu: block: Add validator for bitmap chains accross backing chains (Peter Krempa) [Orabug: 33091019]
  • qemu: blockjob: Store flags for all the block job types (Peter Krempa) [Orabug: 33091019]
  • qemu: blockjob: Store jobflags with block job data (Peter Krempa) [Orabug: 33091019]
  • util: json: Introduce virJSONValueArrayConcat (Peter Krempa) [Orabug: 33091019]
  • qemu: block: Extract calls of qemuBlockGetNamedNodeData into a helper function (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Track and relabel images for bitmap merging (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Introduce support for deleting checkpoints accross snapshots (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Extract calculation of bitmap merging for checkpoint deletion (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Introduce helper to find checkpoint disk definition in parents (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: tolerate missing disks on checkpoint deletion (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Use disk definition directly when creating checkpoint (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: rename disk->chkdisk in qemuCheckpointAddActions (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: rename disk->chkdisk in qemuCheckpointDiscardBitmaps (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: split out checkpoint deletion bitmaps (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Store whether deleted checkpoint is current in a variable (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Extract and export rollback of checkpoint metadata storing (Peter Krempa) [Orabug: 33091019]
  • qemu: block: Introduce qemuBlockNamedNodeDataGetBitmapByName (Peter Krempa) [Orabug: 33091019]
  • qemu: snapshot: Propagate active bitmaps through external snapshots (Peter Krempa) [Orabug: 33091019]
  • qemu: monitor: Add granularity parameter for block-dirty-bitmap-add (Peter Krempa) [Orabug: 33091019]
  • qemu: snapshot: Fold formatting of snapshot transaction into prepare func (Peter Krempa) [Orabug: 33091019]
  • qemu: Check for explicit failure of qemuBlockSnapshotAddBlockdev (Peter Krempa) [Orabug: 33091019]
  • qemu: monitor: Extract internals of qemuMonitorJSONBlockGetNamedNodeData (Peter Krempa) [Orabug: 33091019]
  • qemu: monitor: Extract data about dirty-bimaps in qemuMonitorBlockGetNamedNodeData (Peter Krempa) [Orabug: 33091019]
  • qemu: block: enable the snapshot image deletion feature (Pavel Mores) [Orabug: 33091019]
  • qemu: block: propagate the delete flag to where it can actually be used (Pavel Mores) [Orabug: 33091019]
  • qemu: checkpoint: fix NULL dereference at create time (Cole Robinson) [Orabug: 33091019]
  • qemu: snapshot: Mark file becoming backingStore as read-only (Peter Krempa) [Orabug: 33091019]
  • util: consolidate on one free callback for hash data (Daniel P. Berrange) [Orabug: 33091019]
  • conf: stop using hash key when freeing hash entries (Daniel P. Berrange) [Orabug: 33091019]
  • qemu: checkpoint: Use qemuMonitorTransactionBitmapMergeSourceAddBitmap (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Fix rollback and access to unlocked vm when deleting checkpoints (Peter Krempa) [Orabug: 33091019]
  • qemu: snapshot: split out preparation of a snapshot with blockdev (Peter Krempa) [Orabug: 33091019]
  • qemu: monitor: Add helper for generating data for block bitmap merging (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Extract finalizing steps of checkpoint creation (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Split out checkpoint creation code (Peter Krempa) [Orabug: 33091019]
  • qemu: block: Dont query monitor in qemuBlockStorageSourceCreateDetectSize (Peter Krempa) [Orabug: 33091019]
  • qemu: monitor: Introduce new interface to query-named-block-nodes (Peter Krempa) [Orabug: 33091019]
  • util: hash: Introduce virHashHasEntry (Peter Krempa) [Orabug: 33091019]
  • util: hash: Add new constructor virHashNew (Peter Krempa) [Orabug: 33091019]
  • util: hash: Add possibility to use simpler data free function in virHash (Peter Krempa) [Orabug: 33091019]
  • conf: Introduce virDomainDiskByTarget (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Dont update current checkpoint until we are done (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Replace open-coded transaction action generators (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Refactor cleanup in qemuCheckpointCreateXML (Peter Krempa) [Orabug: 33091019]
  • qemu: domain: Move checkpoint related code to qemu_checkpoint.c (Peter Krempa) [Orabug: 33091019]
  • qemu: driver: Move checkpoint-related code to qemu_checkpoint.c (Peter Krempa) [Orabug: 33091019]
  • qemu: Move, rename and export qemuDomObjFromDomain (Peter Krempa) [Orabug: 33091019]
  • qemu: checkpoint: Dont forbid checkpoint when VM is marked for autodestroy (Peter Krempa) [Orabug: 33091019]
  • Prepare to hotplug vNUMA targets for non-X86_64 guests (Wim ten Have) [Orabug: 34256070]
  • qemu: Add missing lock in qemuProcessHandleMonitorEOF (Peng Liang) [Orabug: 34210159] {CVE-2021-3975}
    libvirt-python
    [5.7.0-34.el8]
  • libvirt-python.spec: Bump Obsoletes version number for libvirt-python (Karl Heubaum) [Orabug: 34185868]
    qemu-kvm
    [4.2.1-18.el8]
  • block: introduce max_hw_iov for use in scsi-generic (Paolo Bonzini) [Orabug: 33785156]
  • file-posix: try BLKSECTGET on block devices too, do not round to power of 2 (Paolo Bonzini) [Orabug: 33785156]
  • block: add max_hw_transfer to BlockLimits (Paolo Bonzini) [Orabug: 33785156]
  • block-backend: align max_transfer to request alignment (Paolo Bonzini) [Orabug: 33785156]
  • osdep: provide ROUND_DOWN macro (Paolo Bonzini) [Orabug: 33785156]
  • scsi-generic: pass max_segments via max_iov field in BlockLimits (Paolo Bonzini) [Orabug: 33785156]
  • file-posix: fix max_iov for /dev/sg devices (Paolo Bonzini) [Orabug: 33785156]
  • display/qxl-render: fix race condition in qxl_cursor (CVE-2021-4207) (Mauro Matteo Cascella) [Orabug: 34049511] {CVE-2021-4207}
  • ui/cursor: fix integer overflow in cursor_alloc (CVE-2021-4206) (Mauro Matteo Cascella) [Orabug: 34049509] {CVE-2021-4206}
  • hw/block/fdc: Prevent end-of-track overrun (CVE-2021-3507) (Philippe Mathieu-Daude) [Orabug: 32860387] {CVE-2021-3507}
  • pc: q35: Bump max_cpus to 512 (Suravee Suthikulpanit) [Orabug: 34314249]
  • tests/qtest: fix pvpanic-pci-test (Mark Kanda) [Orabug: 34284763]
  • libqos: pci-pc: use 32-bit write for EJ register (Paolo Bonzini) [Orabug: 34284758]
  • libqos: usb-hcd-ehci: use 32-bit write for config register (Paolo Bonzini) [Orabug: 34284768]
  • target/i386/kvm: Fix disabling MPX on -cpu host with MPX-capable host (Maciej S. Szmigiero) [Orabug: 33528615]
  • i386: Mask SVM features if nested SVM is disabled (Eduardo Habkost) [Orabug: 33860224]
  • ide: Cap LBA28 capacity announcement to 2^28-1 (Samuel Thibault) [Orabug: 25327652]
  • tests/acpi: update expected arm/virt tables (Mark Kanda) [Orabug: 34132842]

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

Related for ELSA-2022-9700