openSUSE Security Update : libvirt (openSUSE-SU-2012:0347-1)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This collective update 2012/02 for Xen provides fixes for the
following reports :

Xen ===

- 649209: Fix Xen live migrations being slow

- 683580: Fix hangs during boot up after the message
'Enabled directed EOI with ioapic_ack_old on!

- 691256: unable to open a connection to the XEN
Hypervisor

- 694863: Fix kexec fails in xen

- 701686: kdump hangs on megaraid_sas driver

- 704160: crm resource migrate fails with xen machines

- 706106: Fix Inconsistent reporting of VM names during
migration

- 706574: xm console DomUName hang after 'xm save/restore'
of PVM on the latest Xen

- 712051: Fix xen: IOMMU fault livelock

- 712823: Xen guest does not start reliable when rebooted

- 714183: Since last update Xen VM's don't start if the
name contains dots (as in 'example.mydomain.com')

- 715655: No support for performance counters for Westmere
E7-8837 and SandyBridge i5-2500

- 716695: dom-us using tap devices will not start

- 725169: xen-4.0.2_21511_03-0.5.3: bootup hangs

- 726332: Xen changeset 21326 introduces considerable
performance hit

- 727515: Fragmented packets hang network boot of HVM
guest

- 732782: xm create hangs when maxmen value is enclosed in
'quotes'

- 734826: xm rename doesn't work anymore

- 736824: Microcode patches for AMD's 15h processors panic
the system

- 739585: Xen block-attach fails after repeated
attach/detach

- 740165: Fix heap overflow in e1000 device emulation

libvirt =======

- 728681: libvirtd litters syslog with
'interfaceGetXMLDesc:355 : internal error' messages when
using virt-manager

virt-utils ==========

- Add Support for creating images that can be run on
Microsoft Hyper-V host (Fix vpc file format. Add support
for fixed disks)

See also :

http://lists.opensuse.org/opensuse-updates/2012-03/msg00013.html
https://bugzilla.novell.com/show_bug.cgi?id=649209
https://bugzilla.novell.com/show_bug.cgi?id=683580
https://bugzilla.novell.com/show_bug.cgi?id=691256
https://bugzilla.novell.com/show_bug.cgi?id=694863
https://bugzilla.novell.com/show_bug.cgi?id=701686
https://bugzilla.novell.com/show_bug.cgi?id=704160
https://bugzilla.novell.com/show_bug.cgi?id=706106
https://bugzilla.novell.com/show_bug.cgi?id=706574
https://bugzilla.novell.com/show_bug.cgi?id=712051
https://bugzilla.novell.com/show_bug.cgi?id=712823
https://bugzilla.novell.com/show_bug.cgi?id=714183
https://bugzilla.novell.com/show_bug.cgi?id=715655
https://bugzilla.novell.com/show_bug.cgi?id=716695
https://bugzilla.novell.com/show_bug.cgi?id=725169
https://bugzilla.novell.com/show_bug.cgi?id=726332
https://bugzilla.novell.com/show_bug.cgi?id=727515
https://bugzilla.novell.com/show_bug.cgi?id=728681
https://bugzilla.novell.com/show_bug.cgi?id=732782
https://bugzilla.novell.com/show_bug.cgi?id=734826
https://bugzilla.novell.com/show_bug.cgi?id=736824
https://bugzilla.novell.com/show_bug.cgi?id=739585
https://bugzilla.novell.com/show_bug.cgi?id=740165

Solution :

Update the affected libvirt packages.

Risk factor :

High / CVSS Base Score : 7.4
(CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 75931 ()

Bugtraq ID:

CVE ID: CVE-2012-0029

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now