SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2018:0920-1) (Spectre)

This update for libvirt and virt-manager fixes the following issues: Security issues fixed : - CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' var2 bsc1079869. - CVE-2018-6764: Fixed guest executable code injection via libnssdns.so loaded by libvirtlxc before init...

SUSE-SU-2018:0920-1 Security update for libvirt

This update for libvirt and virt-manager fixes the following issues: Security issues fixed: - CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' var2 bsc1079869. - CVE-2018-6764: Fixed guest executable code injection via libnssdns.so loaded by libvirtlxc before init...

SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2018:0385-1)

This update for libvirt provides several fixes. This security issue was fixed : - CVE-2018-5748: Prevent resource exhaustion via qemuMonitorIORead method which allowed to cause DoS bsc1076500. These security issues were fixed : - Add a qemu hook script providing functionality similar to Xen's...

SUSE-SU-2017:3115-1 Security update for xen

This update for xen to version 4.9.1 bsc1027519 fixes several issues. This new feature was added: - Support migration of HVM domains larger than 1 TB These security issues were fixed: - bsc1068187: Failure to recognize errors in the Populate on Demand PoD code allowed for DoS XSA-246 - bsc1068191...

Scientific Linux Security Update : libguestfs and virt-p2v on SL7.x x86_64 (20161103)

Virt-p2v is a tool for conversion of a physical server to a virtual guest. The following packages have been upgraded to a newer upstream version: libguestfs 1.32.7, virt-p2v 1.32.7. Security Fixes : - An integer conversion flaw was found in the way OCaml's String handled its length. Certain...

CentOS 7 : libguestfs (CESA-2016:2576)

An update for libguestfs and virt-p2v is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

libguestfs, lua, ocaml, perl, python, ruby, virt security update

CentOS Errata and Security Advisory CESA-2016:2576 An update for libguestfs and virt-p2v is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

Oracle Linux 7 : libguestfs / and / virt-p2v (ELSA-2016-2576)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2576 advisory. - Build using OCaml with fix for CVE-2015-8869. resolves: rhbz1343101 Tenable has extracted the preceding description block directly from the Oracle Linux...

libguestfs and virt-p2v security, bug fix, and enhancement update

libguestfs 1:1.32.7-3 - Rebase to libguestfs 1.32 in RHEL 7.3 resolves: rhbz1218766 - The full tests are now run after the package has been built. - New tool and subpackage: virt-dib safe diskimage-builder replacement. - New subpackage libguestfs-inspect-icons to reduce dependencies of main pkg s...

RHEL 7 : libguestfs and virt-p2v (RHSA-2016:2576)

An update for libguestfs and virt-p2v is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Security Advisory: libguestfs and virt-p2v security, bug fix, and enhancement update

An update for libguestfs and virt-p2v is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Bug Fix Advisory: Satellite 6.2.1 bug fix update

Updated Satellite 6.2 packages that fix several bugs are now available. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs...

Fedora 24 : xen (2016-a21b2cb7a0)

create link to /usr/bin/qemu-system-i386 from /usr/lib/xen/bin for back compatibility and for virt-manager ---- qemu-kvm: Integer overflow in SDL when creating too wide screen, QEMU: Banked access to VGA memory VBE uses inconsistent bounds check XSA-179, CVE-2016-3710, CVE-2016-3712 Note that...

SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2016:1560-1)

qemu was updated to fix 37 security issues. These security issues were fixed : - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation bsc981266 - CVE-2015-8817: Avo...

Oracle Linux 6 : kernel (ELSA-2016-0855)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0855 advisory. - x86 kernel: espfix not working for 32-bit KVM paravirt guests Jacob Tanenbaum 1172767 CVE-2014-8134 - x86 nmi/64: Fix a paravirt stack-clobbering bug...

kernel security and bug fix update

2.6.32-573.12.1 - Revert: netdrv igb: add support for 1512 PHY Stefan Assmann 1278275 1238551 2.6.32-573.11.1 - kvm svm: unconditionally intercept DB Paolo Bonzini 1279467 1279468 CVE-2015-8104 - x86 virt: guest to host DoS by triggering an infinite loop in microcode Paolo Bonzini 1277557 1277559...

Oracle Linux 7 : kernel (ELSA-2015-2552)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2552 advisory. - x86 kvm: svm: unconditionally intercept DB Paolo Bonzini 1279469 1279470 CVE-2015-8104 - x86 virt: guest to host DoS by triggering an infinite loop i...

kernel security and bug fix update

3.10.0-327.3.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.3.1 - rebuild 3.10.0-327.2.1 - netdrv macvtap: unbreak receiving of gro skb with frag list Jason Wang 1279794 1273737 - net ipv6: drop frames with attached skb-sk in forwarding Hannes Frederic Sowa 1281701 1243966 - net ipv...

SUSE: Security Advisory for Xen (SUSE-SU-2015:0613-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle: Security Advisory (ELSA-2011-0928)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...