SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)

This script is Copyright (C) 2015 Tenable Network Security, Inc.

Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

This collective update for KVM and libvirt provides fixes for security
and non-security issues.

kvm :

- Fix NULL pointer dereference because of uninitialized
UDP socket. (bsc#897654, CVE-2014-3640)

- Fix performance degradation after migration.

- Fix potential image corruption due to missing

- Add validate hex properties for qdev. (bsc#852397)

- Add boot option to do strict boot (bsc#900084)

- Add query-command-line-options QMP command. (bsc#899144)

- Fix incorrect return value of migrate_cancel.

- Fix insufficient parameter validation during ram load.
(bsc#905097, CVE-2014-7840)

- Fix insufficient blit region checks in qemu/cirrus.
(bsc#907805, CVE-2014-8106) libvirt :

- Fix security hole with migratable flag in dumpxml.
(bsc#904176, CVE-2014-7823)

- Fix domain deadlock. (bsc#899484, CVE-2014-3657)

- Use correct definition when looking up disk in qemu
blkiotune. (bsc#897783, CVE-2014-3633)

- Fix undefined symbol when starting virtlockd.

- Add '-boot strict' to qemu's commandline whenever
possible. (bsc#900084)

- Add support for 'reboot-timeout' in qemu. (bsc#899144)

- Increase QEMU's monitor timeout to 30sec. (bsc#911742)

- Allow setting QEMU's migration max downtime any time.

See also :

Solution :

Apply SAT patch number 10222.

Risk factor :

High / CVSS Base Score : 7.5

Family: SuSE Local Security Checks

Nessus Plugin ID: 81481 ()

Bugtraq ID:

CVE ID: CVE-2014-3633

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now