[ubuntu/vivid-proposed] libvirt 1.2.8-0ubuntu14 (Accepted)

[Marc Deslauriers]

libvirt (1.2.8-0ubuntu14) vivid; urgency=medium

  [ Serge Hallyn ]
  * 9036-util-prepare-uri-for-libxml2-2.9.2.patch: fix FTBFS against new
    libxml 2.9.2 (LP: #1390637)

  [ Marc Deslauriers ]
  * SECURITY UPDATE: denial of service via virConnectListAllDomains
    - debian/patches/CVE-2014-3657.patch: fix domain deadlock in
      src/conf/domain_conf.c.
    - CVE-2014-3657
  * SECURITY UPDATE: xml information leak with read-only connections
    - debian/patches/CVE-2014-7823.patch: check for migratable flag in
      src/libvirt.c, src/remote/remote_protocol.x.
    - CVE-2014-7823

Date: Tue, 11 Nov 2014 13:14:00 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libvirt/1.2.8-0ubuntu14
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 11 Nov 2014 13:14:00 -0500
Source: libvirt
Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev
Architecture: source
Version: 1.2.8-0ubuntu14
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 libvirt-bin - programs for the libvirt library
 libvirt-dev - development files for the libvirt library
 libvirt-doc - documentation for the libvirt library
 libvirt0   - library for interfacing with different virtualization systems
 libvirt0-dbg - library for interfacing with different virtualization systems
Launchpad-Bugs-Fixed: 1390637
Changes:
 libvirt (1.2.8-0ubuntu14) vivid; urgency=medium
 .
   [ Serge Hallyn ]
   * 9036-util-prepare-uri-for-libxml2-2.9.2.patch: fix FTBFS against new
     libxml 2.9.2 (LP: #1390637)
 .
   [ Marc Deslauriers ]
   * SECURITY UPDATE: denial of service via virConnectListAllDomains
     - debian/patches/CVE-2014-3657.patch: fix domain deadlock in
       src/conf/domain_conf.c.
     - CVE-2014-3657
   * SECURITY UPDATE: xml information leak with read-only connections
     - debian/patches/CVE-2014-7823.patch: check for migratable flag in
       src/libvirt.c, src/remote/remote_protocol.x.
     - CVE-2014-7823
Checksums-Sha1:
 6c86cc50034ffcd6c4c20efcbc0fd118cd95c43d 3035 libvirt_1.2.8-0ubuntu14.dsc
 ddc13a1b866815a4d482b4c02e9f60134dbcc168 88408 libvirt_1.2.8-0ubuntu14.debian.tar.xz
Checksums-Sha256:
 8bb9f3f3805b9ce37efea190eb6aad6a44649de291784baad5a637e6f41c2084 3035 libvirt_1.2.8-0ubuntu14.dsc
 0a6bf5c807d1c51853c0aa772bf18b4f73063a219d43cf2528a4e8bc10a593c9 88408 libvirt_1.2.8-0ubuntu14.debian.tar.xz
Files:
 68b5e5f27b794ade13d1e2e00cb7dfe6 3035 libs optional libvirt_1.2.8-0ubuntu14.dsc
 d4065e04a76f59f4fee6fa6ca2225b74 88408 libs optional libvirt_1.2.8-0ubuntu14.debian.tar.xz
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJUYlWIAAoJEGVp2FWnRL6TvhYQAJrWMbB7xo1Xrfy9parYwPGq
NUQYAsu1nrOox36CelnMZTGWUMs5wYWoxwe3tkUW9xdRHL9vTMKPbOHPNmG1zEDv
U9JWRVh9/GmITLiZGPtBpN2T/b/P0SyKrfxozkhaHfjdPWDFrbPr+cYqjkDPS/G3
p9/gTiaxGYCUMoAbes9knY2TpgR6vlRnVUZCDou4Tt2S3iWEZ4yioXACTqJoyLSO
gjr6Yq6S7Fofar0Ns8Dy6z0xD7O6Phf1+29v7L4JyMypQjmwzj+ZIfM0eoD4qXC+
4PNvC3zFzC4Eusuk7nkL4Pv14ijyY4WV1fth3Kb8RH43jA2kZHGygUsIk9bdGl6n
YyiJjTcOLAibs3ECHLdY1NL2qGVODqmrxjiENG92k4/O9P9tWytHdCkxcOSuwHHR
RFvAo18JLbWWddmdZ9oA/9TLmLj7ow5wPYwvhG/tQx+guoP1Cq5s+ON/y/Bos9Mk
qErRbbq+aK7w0Tiayl+U76FOXQNc6HR/A2g42YKJ/15rvsQtWDsl4I5d+TU9r23L
Z37SlwIJSX2qrdWaN8QzPDBBXgH1VaybUbkT2PS4HV5NEtvFlWPtG+v+WnyB5JUO
X+9y7K/7ZCH0w8bfSvrOVtRDCDWGkbSO4WHkRLPabjDNwlny6pp069ft5VH12/Kj
zyhUOkMr2I0WDitvOdYS
=dsFH
-----END PGP SIGNATURE-----