SUSE-SU-2018:0838-1

Details

This update for libvirt fixes the following issues:

Security issues fixed:

CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' (var2) (bsc#1079869).
CVE-2018-1064: Fixed denial of service when reading from guest agent (bsc#1083625).
CVE-2018-5748: Fixed possible denial of service when reading from QEMU monitor (bsc#1076500).

Non-security issues fixed:

bsc#1083061: Fixed 'dumpxml --migratable' exports domain id in output on SLES11 SP4.
bsc#1055365: Improve performance when listing hundreds of interfaces.

Affected Packages

libvirt

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4SUSE Linux Enterprise Software Development Kit 11 SP4

Fixed in:

1.2.5-23.6.1

libvirt-client

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in:

1.2.5-23.6.1

libvirt-client-32bit

SUSE Linux Enterprise Server 11 SP4SUSE Linux Enterprise Server for SAP Applications 11 SP4

Fixed in: