openSUSE-SU-2024:14490-1: moderate: libvirt-10.9.0-3.1 on GA media

15 Nov 2024

      # libvirt-10.9.0-3.1 on GA media

Announcement ID: openSUSE-SU-2024:14490-1
Rating: moderate

Cross-References:

  * CVE-2020-12430
  * CVE-2023-2700

CVSS scores:

  * CVE-2020-12430 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
  * CVE-2023-2700 ( SUSE ): 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Affected Products:

  * openSUSE Tumbleweed

An update that solves 2 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the libvirt-10.9.0-3.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

  * openSUSE Tumbleweed:
    * libvirt 10.9.0-3.1
    * libvirt-client 10.9.0-3.1
    * libvirt-client-qemu 10.9.0-3.1
    * libvirt-daemon 10.9.0-3.1
    * libvirt-daemon-common 10.9.0-3.1
    * libvirt-daemon-config-network 10.9.0-3.1
    * libvirt-daemon-config-nwfilter 10.9.0-3.1
    * libvirt-daemon-driver-libxl 10.9.0-3.1
    * libvirt-daemon-driver-lxc 10.9.0-3.1
    * libvirt-daemon-driver-network 10.9.0-3.1
    * libvirt-daemon-driver-nodedev 10.9.0-3.1
    * libvirt-daemon-driver-nwfilter 10.9.0-3.1
    * libvirt-daemon-driver-qemu 10.9.0-3.1
    * libvirt-daemon-driver-secret 10.9.0-3.1
    * libvirt-daemon-driver-storage 10.9.0-3.1
    * libvirt-daemon-driver-storage-core 10.9.0-3.1
    * libvirt-daemon-driver-storage-disk 10.9.0-3.1
    * libvirt-daemon-driver-storage-gluster 10.9.0-3.1
    * libvirt-daemon-driver-storage-iscsi 10.9.0-3.1
    * libvirt-daemon-driver-storage-iscsi-direct 10.9.0-3.1
    * libvirt-daemon-driver-storage-logical 10.9.0-3.1
    * libvirt-daemon-driver-storage-mpath 10.9.0-3.1
    * libvirt-daemon-driver-storage-rbd 10.9.0-3.1
    * libvirt-daemon-driver-storage-scsi 10.9.0-3.1
    * libvirt-daemon-hooks 10.9.0-3.1
    * libvirt-daemon-lock 10.9.0-3.1
    * libvirt-daemon-log 10.9.0-3.1
    * libvirt-daemon-lxc 10.9.0-3.1
    * libvirt-daemon-plugin-lockd 10.9.0-3.1
    * libvirt-daemon-plugin-sanlock 10.9.0-3.1
    * libvirt-daemon-proxy 10.9.0-3.1
    * libvirt-daemon-qemu 10.9.0-3.1
    * libvirt-daemon-xen 10.9.0-3.1
    * libvirt-devel 10.9.0-3.1
    * libvirt-doc 10.9.0-3.1
    * libvirt-libs 10.9.0-3.1
    * libvirt-nss 10.9.0-3.1
    * libvirt-ssh-proxy 10.9.0-3.1
    * wireshark-plugin-libvirt 10.9.0-3.1

## References:

  * https://www.suse.com/security/cve/CVE-2020-12430.html
  * https://www.suse.com/security/cve/CVE-2023-2700.html

openSUSE-SU-2024:14490-1: moderate: libvirt-10.9.0-3.1 on GA media

meissner＠suse.com