Package "libvirt"

Name: libvirt


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Programs for the libvirt library
  • Virtualization daemon
  • Virtualization daemon RBD storage driver
  • Libvirt daemon configuration files

Latest version: 5.0.0-1ubuntu2.6
Release: disco (19.04)
Level: updates
Repository: main


Save this URL for the latest version of "libvirt": https://www.ubuntuupdates.org/libvirt

Other versions of "libvirt" in Disco

Repository Area Version
base main 5.0.0-1ubuntu2
base universe 5.0.0-1ubuntu2
security main 5.0.0-1ubuntu2.4
security universe 5.0.0-1ubuntu2.4
updates universe 5.0.0-1ubuntu2.6

Packages in group

Deleted packages are displayed in grey.


Version: 5.0.0-1ubuntu2.6 2019-12-02 12:07:25 UTC

  libvirt (5.0.0-1ubuntu2.6) disco; urgency=medium

  * debian/rules: libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

 -- Rafael David Tinoco <email address hidden> Tue, 19 Nov 2019 00:56:29 +0000

Source diff to previous version
1853074 libnss-libvirt does not include libnss_libvirt_guest.so for nsswitch

Version: 5.0.0-1ubuntu2.5 2019-09-17 08:06:18 UTC

  libvirt (5.0.0-1ubuntu2.5) disco; urgency=medium

  * d/p/ubuntu/lp-1840872-*: avoid hotplug issues with duplicate device
    addresses (LP: #1840872)

 -- Christian Ehrhardt <email address hidden> Wed, 21 Aug 2019 11:15:43 +0200

Source diff to previous version
1840872 ISST-LTE:KVM:Ubuntu1804:BostonLC:boslcp3g5: libvirt fails to check for duplicate address in hotplug xml and causes the guest to go to shutoff state

Version: 5.0.0-1ubuntu2.4 2019-07-08 14:08:49 UTC

  libvirt (5.0.0-1ubuntu2.4) disco-security; urgency=medium

  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    - debian/patches/CVE-2019-10168.patch: add checks to
    - CVE-2019-10168

 -- Marc Deslauriers <email address hidden> Tue, 02 Jul 2019 08:49:48 -0400

Source diff to previous version
CVE-2019-10161 arbitrary file read/exec via virDomainSaveImageGetXMLDesc API
CVE-2019-10166 virDomainManagedSaveDefineXML API exposed to readonly clients
CVE-2019-10167 arbitrary command execution via virConnectGetDomainCapabilities API
CVE-2019-10168 arbitrary command execution via virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU APIs

Version: 5.0.0-1ubuntu2.3 2019-06-19 19:06:30 UTC

  libvirt (5.0.0-1ubuntu2.3) disco-security; urgency=medium

  * SECURITY UPDATE: DoS via incorrect permissions check
    - debian/patches/CVE-2019-3886-1.patch: disallow virDomainGetHostname
      for read-only connections in src/libvirt-domain.c.
    - debian/patches/CVE-2019-3886-2.patch: enforce ACL write permission
      for getting guest time & hostname in src/remote/remote_protocol.x.
    - CVE-2019-3886
  * SECURITY UPDATE: privilege escalation via incorrect socket permissions
    - debian/patches/CVE-2019-10132-1.patch: reject clients unless their
      UID matches the current UID in src/admin/admin_server_dispatch.c.
    - debian/patches/CVE-2019-10132-2.patch: restrict sockets to mode 0600
      in src/locking/virtlockd-admin.socket.in,
    - debian/patches/CVE-2019-10132-3.patch: restrict sockets to mode 0600
      in src/logging/virtlogd-admin.socket.in,
    - CVE-2019-10132

 -- Marc Deslauriers <email address hidden> Mon, 17 Jun 2019 07:18:24 -0400

Source diff to previous version
CVE-2019-3886 An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest a
CVE-2019-10132 A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin.socket systemd units. A missing SocketMode configurati

Version: 5.0.0-1ubuntu2.2 2019-05-30 09:06:50 UTC

  libvirt (5.0.0-1ubuntu2.2) disco; urgency=medium

  * d/p/ubuntu/lp-1825195-*.patch: fix issues with old guests that defined
    the never functional osxsave and ospke features (LP: #1825195).

 -- Christian Ehrhardt <email address hidden> Thu, 16 May 2019 10:42:09 +0200

1825195 qemu dropped osxsave/ospke feature triggering upgrade issues

About   -   Send Feedback to @ubuntu_updates