-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

====================================================================                   Red Hat Security Advisory

Synopsis:          Low: libvirt security, bug fix, and enhancement update
Advisory ID:       RHSA-2022:8003-01
Product:           Red Hat Enterprise Linux
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8003
Issue date:        2022-11-15
CVE Names:         CVE-2022-0897 
====================================================================
1. Summary:

An update for libvirt is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact
of Low. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

The libvirt library contains a C API for managing and interacting with the
virtualization capabilities of Linux and other operating systems. In
addition, libvirt provides tools for remote management of virtualized
systems.

The following packages have been upgraded to a later upstream version:
libvirt (8.5.0). (BZ#2060313)

Security Fix(es):

* libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to
denial of service (CVE-2022-0897)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 9.1 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, libvirtd will be restarted
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

1475431 - migration/postcopy: Handle network failures (libvirt)
1653327 - libvirt: Implement virtio-iommu support for aarch64
1745868 - Remove the support for 'virtio-input-host-pci-{non-}transitional model
1866400 - RFE: provide API which allows to take memory snapshot in sync with storage when storage is outsourced (e.g. using vhost-user-blk)
1901394 - --tls-destination doesn't take effect for disk migration
1910856 - Disk pool changed to be inactive after restarting libvirtd
1999372 - Error unclear when starting guest with wrong  virtiofsd path
2026765 - Can't define a TFTP server without a DHCP server in network configuration
2035163 - Starting guest with spice audio backend should fail when SPICE graphics is disabled in QEMU
2036300 - video heads can be configured for 'bochs_display' even max_outputs is not supported
2037146 - Better to report error when setting acpi index='0' in device
2038045 - Documentation about using virt-admin to manage other daemons should be added
2040548 - 'unassigned' address type changed after hotplug
2040555 - Pinning iothread to not allowed cpuset fails but vm xml got updated unexpectedly
2041665 - guestinfo returns wrong value when domain's filesystems are frozen
2045953 - 'virsh nodedev-list --cap storage' doesn't list host nvme storage
2045959 - Not update Documentation for systemd config file
2046024 - virsh domsetlaunchsecstate not report an error message when the input parameter is not enough
2051451 - qemu driver must not use hardcoded "/machine/unattached/device[0]" QOM path when probing cpu flags
2057067 - `virsh blockjob --abort' logs error when cancelling a copy job started with '--reuse-external --shallow', where the target image has a backing file
2057768 - [RFE]Support copy/paste in the VNC console in libvirt
2060313 - Rebase libvirt for RHEL 9.1
2060776 - missing 'nvram-template' when start ovmf guest [rhel-9.1.0]
2063883 - CVE-2022-0897 libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service
2064115 - Start encrypted tpm guest failed
2065381 - Libvirt multiqueue support for vDPA [rhel-9.1.0]
2065399 - virtnwfilterd modular daemon occasionally hangs on concurrent access [rhel-9.1.0]
2070380 - Start a guest with numatune restrictive mode has different behavior with virsh numatune cmd.
2073867 - Missing the doc of dirtyrate.calc_mode and dirtyrate.vcpu..megabytes_per_second
2073887 - Segmentation fault when listening specified event types
2075383 - The vlan tag setting does not work in the   xml
2075464 - There is error log when restart virtqemud during vm is running
2075765 - [cgroup] Libvirt cannot operate vm control groups after restarting virtqemud
2075837 - virtnwfilterd crashed when start->reload->restart virtnwfilterd with running guest having filter setting
2078274 - Blockcopy failed with catchXMLError
2081981 - input element with non-virtio bus should fail to accept the model attribute
2082540 - Update device to update the rss setting report success but no changes in xml
2089431 - [RFE] RFE to allow enabling ZEROCOPY live migration through libvirt
2092833 - [RFE] Support vDPA live migration in libvirt
2092856 - Hotplug interface fail with null file descriptor
2095260 - Revert the patch to ignore KVM_CAP_MAX_VCPUS in libvirt
2102009 - Attach interface fail will cause unexpected behavior
2103119 - [RFE] Expose supported TPM version in domCapabilities (via 'swtpm')
2103524 - Run virsh dumpxml cmd with extra options should return error
2105231 - [MT2910] XML error: Invalid value for attribute 'speed' in element 'link': '(null)'.
2107424 - "mem lock limit" of qemu process is not restored when kill src virtqemud during zerocopy migration.
2107892 - Migrate parameters are not restored if kill virtproxyd/virtqemud during migration
2111070 - --postcopy-bandwidth is not hornored when recovering postcopy migration
2112348 - pass the OPENSSL_CONF env var through to the "ssh" binary
2121141 - [libvirt] Kernel does not provide mount namespace
2121441 - NVME disk hot-plug fails due to the denial from selinux

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:
libvirt-8.5.0-7.el9_1.src.rpm

aarch64:
libvirt-8.5.0-7.el9_1.aarch64.rpm
libvirt-client-8.5.0-7.el9_1.aarch64.rpm
libvirt-client-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-config-network-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-interface-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-network-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-qemu-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-secret-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-kvm-8.5.0-7.el9_1.aarch64.rpm
libvirt-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-debugsource-8.5.0-7.el9_1.aarch64.rpm
libvirt-libs-8.5.0-7.el9_1.aarch64.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-nss-8.5.0-7.el9_1.aarch64.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.aarch64.rpm

ppc64le:
libvirt-8.5.0-7.el9_1.ppc64le.rpm
libvirt-client-8.5.0-7.el9_1.ppc64le.rpm
libvirt-client-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-config-network-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-interface-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-network-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-secret-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-debugsource-8.5.0-7.el9_1.ppc64le.rpm
libvirt-libs-8.5.0-7.el9_1.ppc64le.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-nss-8.5.0-7.el9_1.ppc64le.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.ppc64le.rpm

s390x:
libvirt-8.5.0-7.el9_1.s390x.rpm
libvirt-client-8.5.0-7.el9_1.s390x.rpm
libvirt-client-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-config-network-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-interface-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-network-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-qemu-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-secret-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-kvm-8.5.0-7.el9_1.s390x.rpm
libvirt-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-debugsource-8.5.0-7.el9_1.s390x.rpm
libvirt-libs-8.5.0-7.el9_1.s390x.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-nss-8.5.0-7.el9_1.s390x.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.s390x.rpm

x86_64:
libvirt-8.5.0-7.el9_1.x86_64.rpm
libvirt-client-8.5.0-7.el9_1.x86_64.rpm
libvirt-client-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-config-network-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-interface-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-network-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-qemu-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-secret-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-kvm-8.5.0-7.el9_1.x86_64.rpm
libvirt-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-debugsource-8.5.0-7.el9_1.x86_64.rpm
libvirt-libs-8.5.0-7.el9_1.x86_64.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-nss-8.5.0-7.el9_1.x86_64.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

aarch64:
libvirt-client-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-debugsource-8.5.0-7.el9_1.aarch64.rpm
libvirt-devel-8.5.0-7.el9_1.aarch64.rpm
libvirt-docs-8.5.0-7.el9_1.aarch64.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-lock-sanlock-8.5.0-7.el9_1.aarch64.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.aarch64.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.aarch64.rpm

ppc64le:
libvirt-client-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-debugsource-8.5.0-7.el9_1.ppc64le.rpm
libvirt-devel-8.5.0-7.el9_1.ppc64le.rpm
libvirt-docs-8.5.0-7.el9_1.ppc64le.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.ppc64le.rpm

s390x:
libvirt-client-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-debugsource-8.5.0-7.el9_1.s390x.rpm
libvirt-devel-8.5.0-7.el9_1.s390x.rpm
libvirt-docs-8.5.0-7.el9_1.s390x.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-lock-sanlock-8.5.0-7.el9_1.s390x.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.s390x.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.s390x.rpm

x86_64:
libvirt-client-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-debugsource-8.5.0-7.el9_1.x86_64.rpm
libvirt-devel-8.5.0-7.el9_1.x86_64.rpm
libvirt-docs-8.5.0-7.el9_1.x86_64.rpm
libvirt-libs-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-lock-sanlock-8.5.0-7.el9_1.x86_64.rpm
libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-nss-debuginfo-8.5.0-7.el9_1.x86_64.rpm
libvirt-wireshark-debuginfo-8.5.0-7.el9_1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-0897
https://access.redhat.com/security/updates/classification/#low
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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xBto
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://listman.redhat.com/mailman/listinfo/rhsa-announce

RedHat: RHSA-2022-8003:01 Low: libvirt security, bug fix,

An update for libvirt is now available for Red Hat Enterprise Linux 9

Summary

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
The following packages have been upgraded to a later upstream version: libvirt (8.5.0). (BZ#2060313)
Security Fix(es):
* libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.



Summary


Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing the updated packages, libvirtd will be restarted automatically.

References

https://access.redhat.com/security/cve/CVE-2022-0897 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.1_release_notes/index

Package List

Red Hat Enterprise Linux AppStream (v. 9):
Source: libvirt-8.5.0-7.el9_1.src.rpm
aarch64: libvirt-8.5.0-7.el9_1.aarch64.rpm libvirt-client-8.5.0-7.el9_1.aarch64.rpm libvirt-client-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-config-network-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-interface-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-network-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-qemu-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-secret-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-kvm-8.5.0-7.el9_1.aarch64.rpm libvirt-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-debugsource-8.5.0-7.el9_1.aarch64.rpm libvirt-libs-8.5.0-7.el9_1.aarch64.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-nss-8.5.0-7.el9_1.aarch64.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.aarch64.rpm
ppc64le: libvirt-8.5.0-7.el9_1.ppc64le.rpm libvirt-client-8.5.0-7.el9_1.ppc64le.rpm libvirt-client-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-config-network-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-interface-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-network-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-secret-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-debugsource-8.5.0-7.el9_1.ppc64le.rpm libvirt-libs-8.5.0-7.el9_1.ppc64le.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-nss-8.5.0-7.el9_1.ppc64le.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
s390x: libvirt-8.5.0-7.el9_1.s390x.rpm libvirt-client-8.5.0-7.el9_1.s390x.rpm libvirt-client-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-config-network-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-interface-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-network-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-qemu-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-secret-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-kvm-8.5.0-7.el9_1.s390x.rpm libvirt-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-debugsource-8.5.0-7.el9_1.s390x.rpm libvirt-libs-8.5.0-7.el9_1.s390x.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-nss-8.5.0-7.el9_1.s390x.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.s390x.rpm
x86_64: libvirt-8.5.0-7.el9_1.x86_64.rpm libvirt-client-8.5.0-7.el9_1.x86_64.rpm libvirt-client-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-config-network-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-config-nwfilter-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-interface-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-network-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nodedev-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nwfilter-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-qemu-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-secret-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-core-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-disk-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-logical-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-mpath-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-rbd-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-scsi-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-kvm-8.5.0-7.el9_1.x86_64.rpm libvirt-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-debugsource-8.5.0-7.el9_1.x86_64.rpm libvirt-libs-8.5.0-7.el9_1.x86_64.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-nss-8.5.0-7.el9_1.x86_64.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.x86_64.rpm
Red Hat CodeReady Linux Builder (v. 9):
aarch64: libvirt-client-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-debugsource-8.5.0-7.el9_1.aarch64.rpm libvirt-devel-8.5.0-7.el9_1.aarch64.rpm libvirt-docs-8.5.0-7.el9_1.aarch64.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-lock-sanlock-8.5.0-7.el9_1.aarch64.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.aarch64.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.aarch64.rpm
ppc64le: libvirt-client-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-debugsource-8.5.0-7.el9_1.ppc64le.rpm libvirt-devel-8.5.0-7.el9_1.ppc64le.rpm libvirt-docs-8.5.0-7.el9_1.ppc64le.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.ppc64le.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.ppc64le.rpm
s390x: libvirt-client-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-debugsource-8.5.0-7.el9_1.s390x.rpm libvirt-devel-8.5.0-7.el9_1.s390x.rpm libvirt-docs-8.5.0-7.el9_1.s390x.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-lock-sanlock-8.5.0-7.el9_1.s390x.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.s390x.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.s390x.rpm
x86_64: libvirt-client-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-interface-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-network-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nodedev-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-nwfilter-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-qemu-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-secret-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-core-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-disk-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-logical-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-debugsource-8.5.0-7.el9_1.x86_64.rpm libvirt-devel-8.5.0-7.el9_1.x86_64.rpm libvirt-docs-8.5.0-7.el9_1.x86_64.rpm libvirt-libs-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-lock-sanlock-8.5.0-7.el9_1.x86_64.rpm libvirt-lock-sanlock-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-nss-debuginfo-8.5.0-7.el9_1.x86_64.rpm libvirt-wireshark-debuginfo-8.5.0-7.el9_1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


Severity
Advisory ID: RHSA-2022:8003-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2022:8003
Issued Date: : 2022-11-15
CVE Names: CVE-2022-0897

Topic

An update for libvirt is now available for Red Hat Enterprise Linux 9.Red Hat Product Security has rated this update as having a security impactof Low. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.


Topic


 

Relevant Releases Architectures

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64


Bugs Fixed

1475431 - migration/postcopy: Handle network failures (libvirt)

1653327 - libvirt: Implement virtio-iommu support for aarch64

1745868 - Remove the support for 'virtio-input-host-pci-{non-}transitional model

1866400 - RFE: provide API which allows to take memory snapshot in sync with storage when storage is outsourced (e.g. using vhost-user-blk)

1901394 - --tls-destination doesn't take effect for disk migration

1910856 - Disk pool changed to be inactive after restarting libvirtd

1999372 - Error unclear when starting guest with wrong virtiofsd path

2026765 - Can't define a TFTP server without a DHCP server in network configuration

2035163 - Starting guest with spice audio backend should fail when SPICE graphics is disabled in QEMU

2036300 - video heads can be configured for 'bochs_display' even max_outputs is not supported

2037146 - Better to report error when setting acpi index='0' in device

2038045 - Documentation about using virt-admin to manage other daemons should be added

2040548 - 'unassigned' address type changed after hotplug

2040555 - Pinning iothread to not allowed cpuset fails but vm xml got updated unexpectedly

2041665 - guestinfo returns wrong value when domain's filesystems are frozen

2045953 - 'virsh nodedev-list --cap storage' doesn't list host nvme storage

2045959 - Not update Documentation for systemd config file

2046024 - virsh domsetlaunchsecstate not report an error message when the input parameter is not enough

2051451 - qemu driver must not use hardcoded "/machine/unattached/device[0]" QOM path when probing cpu flags

2057067 - `virsh blockjob --abort' logs error when cancelling a copy job started with '--reuse-external --shallow', where the target image has a backing file

2057768 - [RFE]Support copy/paste in the VNC console in libvirt

2060313 - Rebase libvirt for RHEL 9.1

2060776 - missing 'nvram-template' when start ovmf guest [rhel-9.1.0]

2063883 - CVE-2022-0897 libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service

2064115 - Start encrypted tpm guest failed

2065381 - Libvirt multiqueue support for vDPA [rhel-9.1.0]

2065399 - virtnwfilterd modular daemon occasionally hangs on concurrent access [rhel-9.1.0]

2070380 - Start a guest with numatune restrictive mode has different behavior with virsh numatune cmd.

2073867 - Missing the doc of dirtyrate.calc_mode and dirtyrate.vcpu..megabytes_per_second

2073887 - Segmentation fault when listening specified event types

2075383 - The vlan tag setting does not work in the xml

2075464 - There is error log when restart virtqemud during vm is running

2075765 - [cgroup] Libvirt cannot operate vm control groups after restarting virtqemud

2075837 - virtnwfilterd crashed when start->reload->restart virtnwfilterd with running guest having filter setting

2078274 - Blockcopy failed with catchXMLError

2081981 - input element with non-virtio bus should fail to accept the model attribute

2082540 - Update device to update the rss setting report success but no changes in xml

2089431 - [RFE] RFE to allow enabling ZEROCOPY live migration through libvirt

2092833 - [RFE] Support vDPA live migration in libvirt

2092856 - Hotplug interface fail with null file descriptor

2095260 - Revert the patch to ignore KVM_CAP_MAX_VCPUS in libvirt

2102009 - Attach interface fail will cause unexpected behavior

2103119 - [RFE] Expose supported TPM version in domCapabilities (via 'swtpm')

2103524 - Run virsh dumpxml cmd with extra options should return error

2105231 - [MT2910] XML error: Invalid value for attribute 'speed' in element 'link': '(null)'.

2107424 - "mem lock limit" of qemu process is not restored when kill src virtqemud during zerocopy migration.

2107892 - Migrate parameters are not restored if kill virtproxyd/virtqemud during migration

2111070 - --postcopy-bandwidth is not hornored when recovering postcopy migration

2112348 - pass the OPENSSL_CONF env var through to the "ssh" binary

2121141 - [libvirt] Kernel does not provide mount namespace

2121441 - NVME disk hot-plug fails due to the denial from selinux


Related News

19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved