openSUSE Security Update : libvirt (openSUSE-SU-2012:0347-1)

high Nessus Plugin ID 75931

Synopsis

The remote openSUSE host is missing a security update.

Description

This collective update 2012/02 for Xen provides fixes for the following reports :

Xen ===

- 649209: Fix Xen live migrations being slow

- 683580: Fix hangs during boot up after the message 'Enabled directed EOI with ioapic_ack_old on!

- 691256: unable to open a connection to the XEN Hypervisor

- 694863: Fix kexec fails in xen

- 701686: kdump hangs on megaraid_sas driver

- 704160: crm resource migrate fails with xen machines

- 706106: Fix Inconsistent reporting of VM names during migration

- 706574: xm console DomUName hang after 'xm save/restore' of PVM on the latest Xen

- 712051: Fix xen: IOMMU fault livelock

- 712823: Xen guest does not start reliable when rebooted

- 714183: Since last update Xen VM's don't start if the name contains dots (as in 'example.mydomain.com')

- 715655: No support for performance counters for Westmere E7-8837 and SandyBridge i5-2500

- 716695: dom-us using tap devices will not start

- 725169: xen-4.0.2_21511_03-0.5.3: bootup hangs

- 726332: Xen changeset 21326 introduces considerable performance hit

- 727515: Fragmented packets hang network boot of HVM guest

- 732782: xm create hangs when maxmen value is enclosed in 'quotes'

- 734826: xm rename doesn't work anymore

- 736824: Microcode patches for AMD's 15h processors panic the system

- 739585: Xen block-attach fails after repeated attach/detach

- 740165: Fix heap overflow in e1000 device emulation

libvirt =======

- 728681: libvirtd litters syslog with 'interfaceGetXMLDesc:355 : internal error' messages when using virt-manager

virt-utils ==========

- Add Support for creating images that can be run on Microsoft Hyper-V host (Fix vpc file format. Add support for fixed disks)

Solution

Update the affected libvirt packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=649209

https://bugzilla.novell.com/show_bug.cgi?id=683580

https://bugzilla.novell.com/show_bug.cgi?id=691256

https://bugzilla.novell.com/show_bug.cgi?id=694863

https://bugzilla.novell.com/show_bug.cgi?id=701686

https://bugzilla.novell.com/show_bug.cgi?id=704160

https://bugzilla.novell.com/show_bug.cgi?id=706106

https://bugzilla.novell.com/show_bug.cgi?id=706574

https://bugzilla.novell.com/show_bug.cgi?id=712051

https://bugzilla.novell.com/show_bug.cgi?id=712823

https://bugzilla.novell.com/show_bug.cgi?id=714183

https://bugzilla.novell.com/show_bug.cgi?id=715655

https://bugzilla.novell.com/show_bug.cgi?id=716695

https://bugzilla.novell.com/show_bug.cgi?id=725169

https://bugzilla.novell.com/show_bug.cgi?id=726332

https://bugzilla.novell.com/show_bug.cgi?id=727515

https://bugzilla.novell.com/show_bug.cgi?id=728681

https://bugzilla.novell.com/show_bug.cgi?id=732782

https://bugzilla.novell.com/show_bug.cgi?id=734826

https://bugzilla.novell.com/show_bug.cgi?id=736824

https://bugzilla.novell.com/show_bug.cgi?id=739585

https://bugzilla.novell.com/show_bug.cgi?id=740165

https://lists.opensuse.org/opensuse-updates/2012-03/msg00013.html

Plugin Details

Severity: High

ID: 75931

File Name: suse_11_4_libvirt-120208.nasl

Version: 1.5

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment Azure, Nessus Agent, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.5

CVSS v2

Risk Factor: High

Base Score: 7.4

Vector: CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:novell:opensuse:11.4, p-cpe:/a:novell:opensuse:xen-debugsource, p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo, p-cpe:/a:novell:opensuse:libvirt-client-debuginfo, p-cpe:/a:novell:opensuse:virt-utils, p-cpe:/a:novell:opensuse:xen-tools-domu-debuginfo, p-cpe:/a:novell:opensuse:libvirt-python-debuginfo, p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo, p-cpe:/a:novell:opensuse:xen-tools, p-cpe:/a:novell:opensuse:xen-kmp-pae, p-cpe:/a:novell:opensuse:xen-tools-debuginfo, p-cpe:/a:novell:opensuse:xen-tools-domu, p-cpe:/a:novell:opensuse:libvirt, p-cpe:/a:novell:opensuse:xen-devel, p-cpe:/a:novell:opensuse:xen-libs, p-cpe:/a:novell:opensuse:libvirt-debugsource, p-cpe:/a:novell:opensuse:xen-doc-pdf, p-cpe:/a:novell:opensuse:xen-libs-debuginfo, p-cpe:/a:novell:opensuse:xen, p-cpe:/a:novell:opensuse:xen-kmp-default, p-cpe:/a:novell:opensuse:libvirt-devel, p-cpe:/a:novell:opensuse:libvirt-python, p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo, p-cpe:/a:novell:opensuse:libvirt-client, p-cpe:/a:novell:opensuse:libvirt-debuginfo, p-cpe:/a:novell:opensuse:xen-doc-html, p-cpe:/a:novell:opensuse:xen-kmp-desktop

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2/8/2012

Reference Information

CVE: CVE-2012-0029