[ubuntu/saucy-proposed] libvirt 1.1.1-0ubuntu6 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Sep 24 23:53:16 UTC 2013
libvirt (1.1.1-0ubuntu6) saucy; urgency=low
* SECURITY UPDATE: possible privilege escalation via pkcheck race.
- debian/patches/CVE-2013-4311.patch: add uid to pkcheck call in
configure.ac, daemon/remote.c, src/access/viraccessdriverpolkit.c,
src/rpc/virnetserverclient.c, src/util/viridentity.*.
- debian/rules: use DEB_AUTO_UPDATE_AUTOCONF and
DEB_AUTO_UPDATE_AUTOHEADER.
- debian/control: specify version of policykit-1 security update, add
libpolkit-gobject-1-dev to Build-Depends.
- CVE-2013-4311
* SECURITY UPDATE: denial of service in remoteDispatchDomainMemoryStats
- debian/patches/CVE-2013-4296.patch: properly initialize stats in
daemon/remote.c.
- CVE-2013-4296
Date: Tue, 24 Sep 2013 19:25:55 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/libvirt/1.1.1-0ubuntu6
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 24 Sep 2013 19:25:55 -0400
Source: libvirt
Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev python-libvirt
Architecture: source
Version: 1.1.1-0ubuntu6
Distribution: saucy
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libvirt-bin - programs for the libvirt library
libvirt-dev - development files for the libvirt library
libvirt-doc - documentation for the libvirt library
libvirt0 - library for interfacing with different virtualization systems
libvirt0-dbg - library for interfacing with different virtualization systems
python-libvirt - libvirt Python bindings
Changes:
libvirt (1.1.1-0ubuntu6) saucy; urgency=low
.
* SECURITY UPDATE: possible privilege escalation via pkcheck race.
- debian/patches/CVE-2013-4311.patch: add uid to pkcheck call in
configure.ac, daemon/remote.c, src/access/viraccessdriverpolkit.c,
src/rpc/virnetserverclient.c, src/util/viridentity.*.
- debian/rules: use DEB_AUTO_UPDATE_AUTOCONF and
DEB_AUTO_UPDATE_AUTOHEADER.
- debian/control: specify version of policykit-1 security update, add
libpolkit-gobject-1-dev to Build-Depends.
- CVE-2013-4311
* SECURITY UPDATE: denial of service in remoteDispatchDomainMemoryStats
- debian/patches/CVE-2013-4296.patch: properly initialize stats in
daemon/remote.c.
- CVE-2013-4296
Checksums-Sha1:
381aaeadafc293727e73ca4908634107e7fe6c4b 3007 libvirt_1.1.1-0ubuntu6.dsc
b884dc2142292606a53d659b303df514986ca580 117618 libvirt_1.1.1-0ubuntu6.debian.tar.gz
Checksums-Sha256:
deb864a36b44e32dc378d38fc2a9cdc398e07eb1e7c9b910810a8401d394edf3 3007 libvirt_1.1.1-0ubuntu6.dsc
a491f86f538992b8bb1c98250a39ac6372a19a4ce87a877f6290fe760ebb5b39 117618 libvirt_1.1.1-0ubuntu6.debian.tar.gz
Files:
a9b7ab3654dc5facffff6ba5e3e1a82c 3007 libs optional libvirt_1.1.1-0ubuntu6.dsc
d50a7fa469aef76540744e476c2d81ba 117618 libs optional libvirt_1.1.1-0ubuntu6.debian.tar.gz
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=9INI
-----END PGP SIGNATURE-----
More information about the Saucy-changes
mailing list