Bug 1521 - [UPDATE REQUEST] [UPSTREAM UPDATE] libvirt
: [UPDATE REQUEST] [UPSTREAM UPDATE] libvirt
Status: RESOLVED INVALID
Product: Server Bugs
Classification: ROSA Server
Component: Main Packages
: unspecified
: All Linux
: Normal normal
: ---
Assigned To: Andrew Lukoshko
: ROSA Server Bugs
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-01-29 00:21 MSK by Andrew Lukoshko
Modified: 2013-02-08 18:39 MSK (History)
2 users (show)

See Also:
RPM Package:
ISO-related:
Bad POT generating:
Upstream:
dmitry.romashkin: secteam_verified+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andrew Lukoshko 2013-01-29 00:21:54 MSK
Updated libvirt from RHEL6 upstream.

Advisory:
A flaw was found in the way libvirtd handled connection cleanup (when a
connection was being closed) under certain error conditions. A remote
attacker able to establish a read-only connection to libvirtd could use
this flaw to crash libvirtd or, potentially, execute arbitrary code with
the privileges of the root user. (CVE-2013-0170)

http://rhn.redhat.com/errata/RHSA-2013-0199.html

Build lists:
https://abf.rosalinux.ru/build_lists/923630
https://abf.rosalinux.ru/build_lists/923633
Comment 1 Andrew Lukoshko 2013-01-29 00:28:40 MSK
Sorry, I've already published it. My mistake.
Please let me know if something wrong with this update, then I'll do roll-back.