UbuntuUpdates.org

Package "libvirt"

Name: libvirt

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • nss plugins providing IP address resolution for virtual machines
  • Virtualization daemon glusterfs storage driver
  • Virtualization daemon ZFS storage driver
  • Sanlock plugin for virtlockd

Latest version: 5.4.0-0ubuntu5.4
Release: eoan (19.10)
Level: security
Repository: universe

Links

Save this URL for the latest version of "libvirt": https://www.ubuntuupdates.org/libvirt



Other versions of "libvirt" in Eoan

Repository Area Version
base universe 5.4.0-0ubuntu5
base main 5.4.0-0ubuntu5
security main 5.4.0-0ubuntu5.4
updates universe 5.4.0-0ubuntu5.4
updates main 5.4.0-0ubuntu5.4

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 5.4.0-0ubuntu5.4 2020-05-21 18:06:45 UTC

  libvirt (5.4.0-0ubuntu5.4) eoan-security; urgency=medium

  * SECURITY UPDATE: denial of service via active pool without target path
    - debian/patches/ubuntu/CVE-2020-10703.patch: fix daemon crash on
      lookup storagepool by targetpath in src/storage/storage_driver.c.
    - CVE-2020-10703
  * SECURITY UPDATE: memory leak in virDomainListGetStats
    - debian/patches/ubuntu/CVE-2020-12430.patch: don't leak array with 0
      iothreads in src/qemu/qemu_driver.c.
    - CVE-2020-12430

 -- Marc Deslauriers <email address hidden> Wed, 06 May 2020 13:26:20 -0400

CVE-2020-12430 An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the
CVE-2020-10703 Potential denial of service via active pool without target path



About   -   Send Feedback to @ubuntu_updates