Scientific Linux Security Update : libguestfs and virt-p2v on SL7.x x86_64
Medium Nessus Plugin ID 95843
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionVirt-p2v is a tool for conversion of a physical server to a virtual guest.
The following packages have been upgraded to a newer upstream version:
libguestfs (1.32.7), virt-p2v (1.32.7).
Security Fix(es) :
- An integer conversion flaw was found in the way OCaml's String handled its length. Certain operations on an excessively long String could trigger a buffer overflow or result in an information leak. (CVE-2015-8869)
Note: The libguestfs packages in this advisory were rebuilt with a fixed version of OCaml to address this issue.
Additional Changes :
SolutionUpdate the affected packages.