[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2013-0276 -- Oracle libvirt

ID: oval:org.secpod.oval:def:1500028Date: (C)2013-03-20   (M)2023-02-20
Class: PATCHFamily: unix




Updated libvirt packages that fix one security issue, multiple bugs, andadd various enhancements are now available for Red Hat Enterprise Linux 6.The Red Hat Security Response Team has rated this update as having moderatesecurity impact. A Common Vulnerability Scoring System base score,which gives a detailed severity rating, is available from the CVE link inthe References section. The libvirt library is a C API for managing and interacting with thevirtualization capabilities of Linux and other operating systems. Inaddition, libvirt provides tools for remote management of virtualizedsystems.It was discovered that libvirt made certain invalid assumptions aboutdnsmasq#39;s command line options when setting up DNS masquerading for virtualmachines, resulting in dnsmasq incorrectly processing network packets fromnetwork interfaces that were intended to be prohibited. This updateincludes the changes necessary to call dnsmasq with a new command lineoption, which was introduced to dnsmasq via RHSA-2013:0277. In order for libvirt to be able to make use of the new command line option, updated dnsmasq packages need to be installed. Refer toRHSA-2013:0277 for additional information.These updated libvirt packages include numerous bug fixes and enhancements.Space precludes documenting all of these changes in this advisory. Usersare directed to the Red Hat Enterprise Linux 6.4 Technical Notes, linkedto in the References, for information on the most significant of thesechanges.All users of libvirt are advised to upgrade to these updated packages,which fix these issues and add these enhancements. After installing theupdated packages, libvirtd must be restarted for this update to take effect.

Platform:
Oracle Linux 6
Product:
libvirt
Reference:
ELSA-2013-0276
CVE-2012-3411
CVE    1
CVE-2012-3411
CPE    2
cpe:/o:oracle:linux:6
cpe:/a:redhat:libvirt

© SecPod Technologies