Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SU-2018:0920-1
HistoryApr 11, 2018 - 12:11 p.m.

Security update for libvirt (important)

2018-04-1112:11:26
lists.opensuse.org
71

0.975 High

EPSS

Percentile

100.0%

JSON

This update for libvirt and virt-manager fixes the following issues:

Security issues fixed:

  • CVE-2017-5715: Fixes for speculative side channel attacks aka
    "SpectreAttack" (var2) (bsc#1079869).
  • CVE-2018-6764: Fixed guest executable code injection via libnss_dns.so
    loaded by libvirt_lxc before init (bsc#1080042).
  • CVE-2018-1064: Fixed denial of service when reading from guest agent
    (bsc#1083625).

Non-security issues fixed in libvirt:

  • bsc#1070615: Fixed TPM device passthrough failure on kernels >= 4.0.
  • bsc#1082041: SUSE Linux Enterprise 11 SP4 hvm converted to pvhvm. Unless
    vm memory is on gig boundary, vm won’t boot.
  • bsc#1082161: Unable to change RTC basis or adjustment for Xen HVM guests
    using libvirt.

Non-security issues fixed in virt-manager:

  • bsc#1086038: VM guests cannot be properly installed with virt-install
  • bsc#1067018: KVM Guest creation failed - Property .cmt not found
  • bsc#1054986: Fix openSUSE 15.0 detection. It has no content file or
    .treeinfo file
  • bsc#1085757: Fallback to latest version of openSUSE when
    opensuse-unknown is detected for the ISO
OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server12.3aarch64libvirt-daemon-driver-nodedev< 3.3.0-5.19.2libvirt-daemon-driver-nodedev-3.3.0-5.19.2.aarch64.rpm
SUSE Linux Enterprise Server12.3ppc64lelibvirt-daemon-driver-storage-iscsi-debuginfo< 3.3.0-5.19.2libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-5.19.2.ppc64le.rpm
SUSE Linux Enterprise Desktop12.3x86_64libvirt-daemon-driver-storage-core-debuginfo< 3.3.0-5.19.2libvirt-daemon-driver-storage-core-debuginfo-3.3.0-5.19.2.x86_64.rpm
SUSE Linux Enterprise Software Development Kit12.3x86_64libvirt-debugsource< 3.3.0-5.19.2libvirt-debugsource-3.3.0-5.19.2.x86_64.rpm
SUSE Linux Enterprise Server12.3ppc64lelibvirt-daemon-driver-storage-logical< 3.3.0-5.19.2libvirt-daemon-driver-storage-logical-3.3.0-5.19.2.ppc64le.rpm
SUSE Linux Enterprise Desktop12.3x86_64libvirt-daemon-xen< 3.3.0-5.19.2libvirt-daemon-xen-3.3.0-5.19.2.x86_64.rpm
SUSE Linux Enterprise Desktop12.3x86_64libvirt-admin-debuginfo< 3.3.0-5.19.2libvirt-admin-debuginfo-3.3.0-5.19.2.x86_64.rpm
SUSE Linux Enterprise Server12.3ppc64lelibvirt-daemon-driver-storage< 3.3.0-5.19.2libvirt-daemon-driver-storage-3.3.0-5.19.2.ppc64le.rpm
SUSE Linux Enterprise Server12.3ppc64lelibvirt< 3.3.0-5.19.2libvirt-3.3.0-5.19.2.ppc64le.rpm
SUSE Linux Enterprise Server12.3aarch64libvirt-daemon-driver-storage-mpath< 3.3.0-5.19.2libvirt-daemon-driver-storage-mpath-3.3.0-5.19.2.aarch64.rpm
Rows per page:
1-10 of 2531

Related

nessus 82
suse 12
openvas 53
debian 4
mageia 3
prion 1
oraclelinux 4
ubuntucve 1
redhatcve 1
redhat 13
veracode 1
cve 1
amazon 3
centos 6
debiancve 1
osv 1
fedora 2
threatpost 2
gentoo 1
slackware 1
ubuntu 3
virtuozzo 1
paloalto 1
cloudfoundry 1
nessus
nessus
openSUSE Security Update : libvirt (openSUSE-2018-358) (Spectre)
2018-04-13 00:00:00
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2018:0861-1) (Spectre)
2018-04-04 00:00:00
SUSE SLED12 / SLES12 Security Update : libvirt (SUSE-SU-2018:0920-1) (Spectre)
2018-04-12 00:00:00
suse
suse
Security update for libvirt (important)
2018-04-13 00:09:16
Security update for libvirt (important)
2018-04-03 21:08:15
Security update for libvirt (important)
2018-03-29 12:11:46
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:0920-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for libvirt (openSUSE-SU-2018:0939-1)
2018-04-13 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0861-1)
2021-04-19 00:00:00
debian
debian
[SECURITY] [DSA 4137-1] libvirt security update
2018-03-14 21:50:24
[SECURITY] [DLA 1349-1] linux-tools security update
2018-04-16 22:31:08
[SECURITY] [DLA 1362-1] gcc-4.9-backport new package
2018-04-25 16:19:40
mageia
mageia
Updated libvirt packages fix security vulnerabilities
2018-03-02 00:27:52
Updated libvirt packages fix CVE-2018-1064
2018-03-30 00:00:32
Updated microcode packages fix security vulnerability
2018-05-29 22:41:14
prion
prion
Design/Logic Flaw
2018-02-23 17:29:00
oraclelinux
oraclelinux
libvirt security, bug fix, and enhancement update
2018-11-05 00:00:00
qemu-kvm security update
2018-01-04 00:00:00
microcode_ctl security update
2018-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2018-6764
2018-02-07 00:00:00
redhatcve
redhatcve
CVE-2018-6764
2018-02-07 04:48:56
redhat
redhat
(RHSA-2018:3113) Moderate: libvirt security, bug fix, and enhancement update
2018-10-30 04:19:54
(RHSA-2018:0109) Important: libvirt security update
2018-01-22 10:05:55
(RHSA-2018:0050) Important: vdsm security update
2018-01-05 15:36:32
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:26:55
cve
cve
CVE-2018-6764
2018-02-23 17:29:00
amazon
amazon
Medium: libvirt
2018-12-18 19:07:00
Important: linux-firmware
2018-02-20 21:46:00
Important: qemu-kvm
2018-02-07 18:49:00
centos
centos
libvirt security update
2018-12-14 16:36:40
libvirt security update
2018-01-04 19:54:04
microcode_ctl security update
2018-01-17 14:59:21
debiancve
debiancve
CVE-2018-6764
2018-02-23 17:29:00
osv
osv
libvirt - security update
2018-03-14 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: libvirt-3.7.0-6.fc27
2018-08-01 17:55:42
[SECURITY] Fedora 27 Update: libvirt-3.7.0-4.fc27
2018-03-01 16:24:36
threatpost
threatpost
New Spectre-Level Flaw Targets Return Stack Buffer
2018-07-23 18:27:20
Intel Halts Spectre Fixes On Older Chips, Citing Limited Ecosystem Support
2018-04-04 15:18:47
gentoo
gentoo
libvirt: Multiple vulnerabilities
2018-04-08 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2018-02-07 06:34:12
ubuntu
ubuntu
intel-microcode update
2018-03-29 00:00:00
libvirt update
2018-02-07 00:00:00
Intel Microcode update
2018-01-11 00:00:00
virtuozzo
virtuozzo
Kernel update: new kernel 3.10.0-693.21.1.vz7.46.7, Virtuozzo 7.0 Update 7 Hotfix 2 (7.0.7-453)
2018-04-28 00:00:00
paloalto
paloalto
Meltdown and Spectre update for WildFire-500 Appliance
2018-05-15 21:35:00
cloudfoundry
cloudfoundry
USN-3690-2: AMD Microcode regression | Cloud Foundry
2018-07-19 00:00:00

0.975 High

EPSS

Percentile

100.0%

JSON
Related for SUSE-SU-2018:0920-1
nessus82suse12openvas53debian4mageia3prion1oraclelinux4ubuntucve1redhatcve1redhat13veracode1cve1amazon3centos6debiancve1osv1fedora2threatpost2gentoo1slackware1ubuntu3virtuozzo1paloalto1cloudfoundry1