[El-errata] ELSA-2014-0103 Moderate: Oracle Linux 6 libvirt security and bug fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Jan 28 15:58:24 PST 2014
Oracle Linux Security Advisory ELSA-2014-0103
https://rhn.redhat.com/errata/RHSA-2014-0103.html
The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:
i386:
libvirt-0.10.2-29.0.1.el6_5.3.i686.rpm
libvirt-client-0.10.2-29.0.1.el6_5.3.i686.rpm
libvirt-devel-0.10.2-29.0.1.el6_5.3.i686.rpm
libvirt-python-0.10.2-29.0.1.el6_5.3.i686.rpm
x86_64:
libvirt-0.10.2-29.0.1.el6_5.3.x86_64.rpm
libvirt-client-0.10.2-29.0.1.el6_5.3.i686.rpm
libvirt-client-0.10.2-29.0.1.el6_5.3.x86_64.rpm
libvirt-devel-0.10.2-29.0.1.el6_5.3.i686.rpm
libvirt-devel-0.10.2-29.0.1.el6_5.3.x86_64.rpm
libvirt-lock-sanlock-0.10.2-29.0.1.el6_5.3.x86_64.rpm
libvirt-python-0.10.2-29.0.1.el6_5.3.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/libvirt-0.10.2-29.0.1.el6_5.3.src.rpm
Description of changes:
[0.10.2-29.0.1.el6_5.3]
- Replace docs/et.png in tarball with blank image
[0.10.2-29.el6_5.3]
- qemu: Avoid operations on NULL monitor if VM fails early (rhbz#1055578)
- qemu: Do not access stale data in virDomainBlockStats (CVE-2013-6458)
- qemu: Avoid using stale data in virDomainGetBlockInfo (CVE-2013-6458)
- qemu: Fix job usage in qemuDomainBlockJobImpl (CVE-2013-6458)
- qemu: Fix job usage in qemuDomainBlockCopy (rhbz#1054804)
- qemu: Fix job usage in virDomainGetBlockIoTune (CVE-2013-6458)
- Don't crash if a connection closes early (CVE-2014-1447)
- Really don't crash if a connection closes early (CVE-2014-1447)
More information about the El-errata
mailing list