[ubuntu-cloud-archive/stein-proposed] libvirt (Accepted)

Corey Bryant corey.bryant at canonical.com
Thu Jul 11 12:59:44 UTC 2019

 libvirt (5.0.0-1ubuntu2.4~cloud0) bionic-stein; urgency=medium
   * New update for the Ubuntu Cloud Archive.
 libvirt (5.0.0-1ubuntu2.4) disco-security; urgency=medium
   * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
     read-only connection
     - debian/patches/CVE-2019-10161.patch: add check to
       src/libvirt-domain.c, src/qemu/qemu_driver.c,
     - CVE-2019-10161
   * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
     read-only connection
     - debian/patches/CVE-2019-10166.patch: add check to
     - CVE-2019-10166
   * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
     read-only connection
     - debian/patches/CVE-2019-10167.patch: add check to
     - CVE-2019-10167
   * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
     - debian/patches/CVE-2019-10168.patch: add checks to
     - CVE-2019-10168

Date: Mon, 08 Jul 2019 12:21:28 +0000
Changed-By: Openstack Ubuntu Testing Bot <openstack-testing-bot at ubuntu.com>
Signed-By: Openstack Ubuntu Testing Bot
Published-By: Corey Bryant <corey.bryant at canonical.com>

More information about the Cloud-archive-changes mailing list