(RHSA-2018:1929) Low: libvirt security update

2018-06-1902:12:46

access.redhat.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.023 Low

EPSS

Percentile

89.5%

JSON

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fix(es):

libvirt: Resource exhaustion via qemuMonitorIORead() method (CVE-2018-5748)
libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent (CVE-2018-1064)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

The CVE-2018-5748 issue was discovered by Daniel P. Berrange (Red Hat) and Peter Krempa (Red Hat), and the CVE-2018-1064 issue was discovered by Daniel P. Berrange (Red Hat).

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 6.10 Release Notes and Red Hat Enterprise Linux 6.10 Technical Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat6x86_64libvirt-client< 0.10.2-64.el6libvirt-client-0.10.2-64.el6.x86_64.rpm
RedHat6s390xlibvirt-debuginfo< 0.10.2-64.el6libvirt-debuginfo-0.10.2-64.el6.s390x.rpm
RedHat6i686libvirt-client< 0.10.2-64.el6libvirt-client-0.10.2-64.el6.i686.rpm
RedHat6x86_64libvirt-debuginfo< 0.10.2-64.el6libvirt-debuginfo-0.10.2-64.el6.x86_64.rpm
RedHat6x86_64libvirt< 0.10.2-64.el6libvirt-0.10.2-64.el6.x86_64.rpm
RedHat6i686libvirt-python< 0.10.2-64.el6libvirt-python-0.10.2-64.el6.i686.rpm
RedHat6s390libvirt-devel< 0.10.2-64.el6libvirt-devel-0.10.2-64.el6.s390.rpm
RedHat6i686libvirt< 0.10.2-64.el6libvirt-0.10.2-64.el6.i686.rpm
RedHat6ppc64libvirt-client< 0.10.2-64.el6libvirt-client-0.10.2-64.el6.ppc64.rpm
RedHat6s390xlibvirt-python< 0.10.2-64.el6libvirt-python-0.10.2-64.el6.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	6	x86_64	libvirt-client	< 0.10.2-64.el6	libvirt-client-0.10.2-64.el6.x86_64.rpm
RedHat	6	s390x	libvirt-debuginfo	< 0.10.2-64.el6	libvirt-debuginfo-0.10.2-64.el6.s390x.rpm
RedHat	6	i686	libvirt-client	< 0.10.2-64.el6	libvirt-client-0.10.2-64.el6.i686.rpm
RedHat	6	x86_64	libvirt-debuginfo	< 0.10.2-64.el6	libvirt-debuginfo-0.10.2-64.el6.x86_64.rpm
RedHat	6	x86_64	libvirt	< 0.10.2-64.el6	libvirt-0.10.2-64.el6.x86_64.rpm
RedHat	6	i686	libvirt-python	< 0.10.2-64.el6	libvirt-python-0.10.2-64.el6.i686.rpm
RedHat	6	s390	libvirt-devel	< 0.10.2-64.el6	libvirt-devel-0.10.2-64.el6.s390.rpm
RedHat	6	i686	libvirt	< 0.10.2-64.el6	libvirt-0.10.2-64.el6.i686.rpm
RedHat	6	ppc64	libvirt-client	< 0.10.2-64.el6	libvirt-client-0.10.2-64.el6.ppc64.rpm
RedHat	6	s390x	libvirt-python	< 0.10.2-64.el6	libvirt-python-0.10.2-64.el6.s390x.rpm