libvirt

rpm/libvirt

SHA256

Fork 0

forked from pool/libvirt

Commit Graph

Author	SHA256	Message	Date
James Fehlig	2d3b4f44f0	Accepting request 711148 from home:jfehlig:branches:Virtualization Fixes for CVE's made public today. - api: disallow virConnect*HypervisorCPU, virConnectGetDomainCapabilities, virDomainManagedSaveDefineXML, and virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch, CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch, CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch, CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168 bsc#1138301, bsc#1138302, bsc#1138303, bsc#1138305 OBS-URL: https://build.opensuse.org/request/show/711148 OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=765	2019-06-20 15:16:41 +00:00

Author

SHA256

Message

Date

James Fehlig

2d3b4f44f0

Accepting request 711148 from home:jfehlig:branches:Virtualization

Fixes for CVE's made public today.

- api: disallow virConnect*HypervisorCPU,
  virConnectGetDomainCapabilities, virDomainManagedSaveDefineXML,
  and virDomainSaveImageGetXMLDesc on read-only connections
  CVE-2019-10161-api-disallow-virDomainSaveImageGetXMLDesc.patch,
  CVE-2019-10166-api-disallow-virDomainManagedSaveDefineXML.patch,
  CVE-2019-10167-api-disallow-virConnectGetDomainCapabilities.patch,
  CVE-2019-10168-api-disallow-virConnect-HypervisorCPU.patch
  CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168
  bsc#1138301, bsc#1138302, bsc#1138303, bsc#1138305

OBS-URL: https://build.opensuse.org/request/show/711148
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=765

2019-06-20 15:16:41 +00:00

1 Commits