libvirt-3.9.0-14.el7.4
エラータID: AXSA:2018-3092:06
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Security Fix(es):
* libvirt: Resource exhaustion via qemuMonitorIORead() method (CVE-2018-5748)
* libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent (CVE-2018-1064)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
The CVE-2018-1064 issue was discovered by Daniel P. Berrangé (Asianux) and the CVE-2018-5748 issue was discovered by Daniel P. Berrange (Asianux) and Peter Krempa (Asianux).
Bug Fix(es):
* Previously, the check for a non-unique device boot order did not properly handle updates of existing devices when a new device was attached to a guest. Consequently, updating any device with a specified boot order failed. With this update, the duplicity check detects correctly handles updates and ignores the original device, which avoids reporting false conflicts. As a result, updating a device with a boot order succeeds. (BZ#1557922)
* In Asianux Server 7.5, guests with SCSI passthrough enabled failed to boot because of changes in kernel CGroup detection. With this update, libvirt fetches dependencies and adds them to the device CGroup. As a result, and the affected guests now start as expected. (BZ#1564996)
* The VMX parser in libvirt did not parse more than four network interfaces. As a consequence, the esx driver did not expose more than four network interface cards (NICs) for guests running ESXi. With this update, the VMX parser parses all the available NICs in .vmx files. As a result, libvirt reports all the NICs of guests running ESXi. (BZ#1566524)
* Previously, user aliases for PTY devices that were longer than 32 characters were not supported. Consequently, if a domain included a PTY device with a user alias longer than 32 characters, the domain would not start. With this update, a static buffer was replaced with a dynamic buffer. As a result, the domain starts even if the length of the user alias for a PTY device is longer than 32 characters. (BZ#1566525)
CVE-2018-1064
libvirt version before 4.2.0-rc1 is vulnerable to a resource exhaustion as a result of an incomplete fix for CVE-2018-5748 that affects QEMU monitor but now also triggered via QEMU guest agent.
CVE-2018-5748
qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
Update packages.
libvirt version before 4.2.0-rc1 is vulnerable to a resource exhaustion as a result of an incomplete fix for CVE-2018-5748 that affects QEMU monitor but now also triggered via QEMU guest agent.
qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
N/A
SRPMS
- libvirt-3.9.0-14.el7.4.src.rpm
MD5: 524fa1f4902388712ab40333bfa1382e
SHA-256: 1bb8db2daaea730407798731fbba318b7085a4e53115f666e95e7bcc9f55b2ae
Size: 14.87 MB
Asianux Server 7 for x86_64
- libvirt-3.9.0-14.el7.4.x86_64.rpm
MD5: ddd9219ca303f6e77dfac766a9a882cd
SHA-256: d506c073dc03834ee62ffa78b58f977865101cb3e64d3201d929895cc0d79819
Size: 172.40 kB - libvirt-client-3.9.0-14.el7.4.x86_64.rpm
MD5: afdff08d3c2cdb66e7df7be0ee207951
SHA-256: 42fe5084bd38f83c9ad1a9db17f72e0213fb1e360ebbb915108c285204ac6ad5
Size: 458.20 kB - libvirt-daemon-3.9.0-14.el7.4.x86_64.rpm
MD5: 4f3bc9e2f429fa413734b7724559e73d
SHA-256: 8d5d15130e0438eb90601278299e17894601e269242ca2477544924cd5849fb7
Size: 849.97 kB - libvirt-daemon-config-network-3.9.0-14.el7.4.x86_64.rpm
MD5: d3ea70642521a0f264d14228d826e99b
SHA-256: bd90a8ba37c2f7c4fe333bf5d05b9f4d1bdd84191810378b0763236abe9f2409
Size: 173.71 kB - libvirt-daemon-config-nwfilter-3.9.0-14.el7.4.x86_64.rpm
MD5: fe1cb7ea4be35623597a65f2b717c6e2
SHA-256: 1ea294bb8213dc181b2fb89528d43bab9f80d668af7ce511f22951c858841c38
Size: 178.94 kB - libvirt-daemon-driver-interface-3.9.0-14.el7.4.x86_64.rpm
MD5: 32549064dee048455619e38ff6f0f9c1
SHA-256: 2e7008f5dd6aa6bab82c02cb24bef75e007a384834de791ac194ab5affa438c4
Size: 218.97 kB - libvirt-daemon-driver-lxc-3.9.0-14.el7.4.x86_64.rpm
MD5: 77e89bdaae221e144aca96c583111e79
SHA-256: 1f45b4401465a7b89d6dc3ba012dafa779bd498df96546574e06e484e8074f6b
Size: 900.45 kB - libvirt-daemon-driver-network-3.9.0-14.el7.4.x86_64.rpm
MD5: 0a6cec5afa72de94b5241535f2236406
SHA-256: e65b516266da475bd3aec4963ce78b1243de3f390cd4207f2ae33d96b133fe67
Size: 387.48 kB - libvirt-daemon-driver-nodedev-3.9.0-14.el7.4.x86_64.rpm
MD5: d7502e9a905fcdd479f58a95d918aad8
SHA-256: 11a542481316e899423d9bac96573d02195843a52479439e69b9e835eea5a4ef
Size: 219.84 kB - libvirt-daemon-driver-nwfilter-3.9.0-14.el7.4.x86_64.rpm
MD5: 639fd2967bcee555de8a50e2a050d345
SHA-256: 357b2c050e9b8da993c72c4c62b856a7dbc466bf41c8c78bc3fcb9a646a80150
Size: 241.82 kB - libvirt-daemon-driver-qemu-3.9.0-14.el7.4.x86_64.rpm
MD5: bf534994b96f3742ff6b526b647cf2cf
SHA-256: ece8c7a2434beb6eb365077d7f6d34f802b5c8d25d24f24bac3e865b7af7a6cd
Size: 712.90 kB - libvirt-daemon-driver-secret-3.9.0-14.el7.4.x86_64.rpm
MD5: 7d0d596d90a4464913ea86a2f51a3a3e
SHA-256: 76ccb8f8fa01823ccb78b3a25b54d584a2dbe68d3dd617e29c5c6527a82b2f77
Size: 208.85 kB - libvirt-daemon-driver-storage-3.9.0-14.el7.4.x86_64.rpm
MD5: 1afc5f145e8e81adb5ff5202cfc18569
SHA-256: ff2ceca13bf85df1c961b16ece4e60eaf85c6ed65578ae095b4d070ac4747434
Size: 171.77 kB - libvirt-daemon-driver-storage-core-3.9.0-14.el7.4.x86_64.rpm
MD5: 4f98ac787332d6fcb6f98e0553f44d63
SHA-256: 238e73155e2bc5cd7e2cece37b183e77fbb8c28a5f6430cbc06f4f6ddcffd838
Size: 403.42 kB - libvirt-daemon-driver-storage-disk-3.9.0-14.el7.4.x86_64.rpm
MD5: 25b91d394bc9cc0b8862ab070db98d35
SHA-256: cbc46f0f54e6158dd11f57bd9e7537f6bb4ff057ae59a702a3869e362077cb48
Size: 180.52 kB - libvirt-daemon-driver-storage-gluster-3.9.0-14.el7.4.x86_64.rpm
MD5: 4d34bc773286f7c19e2769f09ff3605e
SHA-256: 7d4fdd17f1024b7431b35703a3b0c619c4f8becdb305c630e9388853504976c6
Size: 181.36 kB - libvirt-daemon-driver-storage-iscsi-3.9.0-14.el7.4.x86_64.rpm
MD5: 78c201c83e09dd023950634b99775a7b
SHA-256: 7c6779504449911e239e7acc02a48e88fcaa1d46e17b7b0ab4e3a3116854e1d5
Size: 177.89 kB - libvirt-daemon-driver-storage-logical-3.9.0-14.el7.4.x86_64.rpm
MD5: e92725de2d16f1436aa5ae17cafdddd6
SHA-256: 81aa8a7f29a8651cf5efe1ec26ad9fdc62d2f8169035b99e3feff4a4653e6a80
Size: 181.84 kB - libvirt-daemon-driver-storage-mpath-3.9.0-14.el7.4.x86_64.rpm
MD5: 2b09ce8d9fa9d1e6519c4b870b7d3db3
SHA-256: 1abe7d0b287cec66893301f7ba6e606105af8b08f68a2ba552eca7f1299e9f8d
Size: 176.31 kB - libvirt-daemon-driver-storage-rbd-3.9.0-14.el7.4.x86_64.rpm
MD5: 3e9915f7ddf9b2efae3763de2b61a7a5
SHA-256: 15dcdeb454c7ad8e4d767430106dfb6868cd11ba29014eae8092cb3531ab147e
Size: 183.44 kB - libvirt-daemon-driver-storage-scsi-3.9.0-14.el7.4.x86_64.rpm
MD5: 3018f007e997d31a24e9561f0e237fee
SHA-256: debc26903c6ebc205e68d27e052e7ba082074c9f53e0aa478f96379aecde8da1
Size: 177.88 kB - libvirt-daemon-kvm-3.9.0-14.el7.4.x86_64.rpm
MD5: 30cbe998767e48d42517ce978a1b9ffa
SHA-256: 49aa5ccc4a282c49d75a6548415be7f52522bb9936d8c3ac21efb2c00801637f
Size: 171.64 kB - libvirt-devel-3.9.0-14.el7.4.x86_64.rpm
MD5: 9375716cb015607a7bccee2abefbcf37
SHA-256: 4fb890111b8044a46004ad1f3ffcfccd0140858b8fc189055f7b0275161cb757
Size: 329.51 kB - libvirt-docs-3.9.0-14.el7.4.x86_64.rpm
MD5: 44abd38b1250947c9fa996669115a6f4
SHA-256: 908413537a6b2def0a32c3c0693fb38f660aca6ae4f47c5afa7048a30899da2b
Size: 5.05 MB - libvirt-libs-3.9.0-14.el7.4.x86_64.rpm
MD5: 77fc63a9be2f1b7c061ed817b09e2833
SHA-256: 9d91c537f793c1ae3cb6a7fad67f9f4fc5f84dbda10ae929d08a170c27907cbe
Size: 4.12 MB - libvirt-client-3.9.0-14.el7.4.i686.rpm
MD5: fcbd7eea782f6f269cefe2c420f14b44
SHA-256: 779c8e6bf1dc1358d005c316c1dec62ee9dac939feec133bd9d1b1cbab13e5b8
Size: 447.58 kB - libvirt-devel-3.9.0-14.el7.4.i686.rpm
MD5: 83e5672469fe3efaed22f74f2e5ed6b8
SHA-256: b4e2b59614b054fdb7b8126a99c60038eb1d516fa5cfd7b62c0381ed1137a8b0
Size: 329.51 kB - libvirt-libs-3.9.0-14.el7.4.i686.rpm
MD5: b36da4c0838efbccf8d051ed4b5f1b03
SHA-256: c5209d1c9d8323fabb04212cdf36a58a0d09b6105c42014fa0e34da6c3533254
Size: 4.10 MB