UbuntuUpdates.org

Package "libvirt0-dbg"

Name: libvirt0-dbg

Description:

library for interfacing with different virtualization systems
Latest version: 1.2.2-0ubuntu13.1.28
Release: trusty (14.04)
Level: updates
Repository: main
Head package: libvirt
Homepage: http://libvirt.org

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libvirt0-dbg"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libvirt0-dbg" in Trusty

Repository Area Version
base main 1.2.2-0ubuntu13
security main 1.2.2-0ubuntu13.1.28

Changelog

Version: 1.2.2-0ubuntu13.1.22 2017-09-14 23:06:34 UTC

  libvirt (1.2.2-0ubuntu13.1.22) trusty; urgency=medium

  * fix guest channel support (LP: #1393842).
    - d/p/virt-aa-helper-add-trusty-guest-agent-rule.patch: add apparmor rule
      for channels within guest namespace.
    - d/libvirt-bin.postinst: create channel directories if needed.

 -- Christian Ehrhardt <email address hidden> Mon, 28 Aug 2017 12:14:08 +0200
Source diff to previous version

Version: 1.2.2-0ubuntu13.1.21 2017-08-23 01:06:41 UTC
No changelog available yet.
Source diff to previous version

Version: 1.2.2-0ubuntu13.1.20 2017-04-12 05:08:32 UTC
No changelog available yet.
Source diff to previous version

Version: 1.2.2-0ubuntu13.1.17 2016-02-24 20:07:06 UTC

  libvirt (1.2.2-0ubuntu13.1.17) trusty; urgency=medium

  * d/p/fix-util-don-t-fail-if-no-portdata-is-found.patch:
    make ovs-vsctl not raise error if there's no portData available.
    (LP: #1540537).

 -- Jorge Niedbalski <email address hidden> Thu, 04 Feb 2016 16:58:31 +0100
Source diff to previous version
1540537 make ovs-vsctl not raise error if there's no portData available.

Version: 1.2.2-0ubuntu13.1.16 2016-01-12 20:07:52 UTC

  libvirt (1.2.2-0ubuntu13.1.16) trusty-security; urgency=medium

  * SECURITY UPDATE: denial of service via incorrect ACL check handling
    - debian/patches/CVE-2014-8136.patch: properly unlock vm on failed ACL
      check in src/qemu/qemu_driver.c.
    - CVE-2014-8136
  * SECURITY UPDATE: VNC password leak via snapshots and save images
    - debian/patches/CVE-2015-0236.patch: check ACLs when dumping security
      info in src/qemu/qemu_driver.c, src/remote/remote_protocol.x.
    - CVE-2015-0236
  * SECURITY UPDATE: ACL bypass using storage pool directory traversal
    - debian/patches/CVE-2015-5313.patch: filter filesystem volume names in
      src/storage/storage_backend_fs.c.
    - CVE-2015-5313
  * This package does _not_ contain the changes from 1.2.2-0ubuntu13.1.15
    in trusty-proposed.

 -- Marc Deslauriers Fri, 08 Jan 2016 10:03:14 -0500
CVE-2014-8136 The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL che
CVE-2015-0236 libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot
CVE-2015-5313 ACL bypass using ../ to access beyond storage pool


About   -   Send Feedback to @ubuntu_updates