openSUSE Recommended Update: libvirt: Update to 0.9.11.6 ______________________________________________________________________________ Announcement ID: openSUSE-RU-2012:1378-1 Rating: moderate References: #780432 #780956 #780966 Affected Products: openSUSE 12.2 ______________________________________________________________________________ An update that solves two vulnerabilities and has one errata is now available. Description: This udpate fixes the following issues for libvirt: 0.9.11.6: - remove dnsmasq command line parameter "--filterwin2k" - dnsmasq: avoid forwarding queries without a domain - security: Fix libvirtd crash possibility - Remove the following patches now upstream in 0.9.11.6 stable 4036aa91-systemd.patch 57349ffc-lxc-ctrl.patch, 6039a2cb-CVE-2012-3445.patch 79ca7e4e-libvirt-guests-service.patch b7ff9e69-CVE-2012-4423.patch revert-d8978c90.patch - Fixes bnc#780956 by including cherry picked master commit f3868259 - bnc#780966: Add upstream fixes to libvirt-guests service and init files 79ca7e4e-libvirt-guests-service.patch c18dc28b-libvirt-guests.patch - security: Fix libvirtd crash possibility CVE-2012-4423 b7ff9e69-CVE-2012-4423.patch bnc#780432 Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.2: zypper in -t patch openSUSE-2012-725 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.2 (i586 x86_64): libvirt-0.9.11.6-1.5.1 libvirt-client-0.9.11.6-1.5.1 libvirt-client-debuginfo-0.9.11.6-1.5.1 libvirt-debuginfo-0.9.11.6-1.5.1 libvirt-debugsource-0.9.11.6-1.5.1 libvirt-devel-0.9.11.6-1.5.1 libvirt-doc-0.9.11.6-1.5.1 libvirt-lock-sanlock-0.9.11.6-1.5.1 libvirt-lock-sanlock-debuginfo-0.9.11.6-1.5.1 libvirt-python-0.9.11.6-1.5.1 libvirt-python-debuginfo-0.9.11.6-1.5.1 - openSUSE 12.2 (x86_64): libvirt-client-32bit-0.9.11.6-1.5.1 libvirt-client-debuginfo-32bit-0.9.11.6-1.5.1 libvirt-devel-32bit-0.9.11.6-1.5.1 References: http://support.novell.com/security/cve/cve-2012-3445.html http://support.novell.com/security/cve/cve-2012-4423.html https://bugzilla.novell.com/780432 https://bugzilla.novell.com/780956 https://bugzilla.novell.com/780966