Security update for libvirt (important)

2019-06-03T15:18:12
ID OPENSUSE-SU-2019:1505-1
Type suse
Reporter Suse
Modified 2019-06-03T15:18:12

Description

This update for libvirt fixes the following issues:

Four new speculative execution information leak issues have been identified in Intel CPUs. (bsc#1111331)

  • CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS)
  • CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling (MFBDS)
  • CVE-2018-12130: Microarchitectural Load Port Data Sampling (MLPDS)
  • CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)

These updates contain the libvirt adjustments, that pass through the new 'md-clear' CPU flag (bsc#1135273).

For more information on this set of vulnerabilities, check out <a rel="nofollow" href="https://www.suse.com/support/kb/doc/?id=7023736">https://www.suse.com/support/kb/doc/?id=7023736</a>

This update was imported from the SUSE:SLE-15:Update update project.