CVE-2023-3750: A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same object from another thread. This issue could allow clients connecting to the read-only socket to crash the libvirt daemon.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=42fd27c7046a483b588a8e4e59f6ab8c1d2edcc2 commit 42fd27c7046a483b588a8e4e59f6ab8c1d2edcc2 Author: Michal Privoznik <michal.privoznik@gmail.com> AuthorDate: 2023-10-31 09:00:44 +0000 Commit: Matthias Maier <tamiko@gentoo.org> CommitDate: 2023-10-31 16:25:18 +0000 app-emulation/libvirt: Backport fix for CVE-2023-3750 A security flaw was identified in <app-emulation/libvirt-9.6.0 which can result int DoS. The upstream is fixed from 9.6.0. Backport the fix to older versions found in portage. Bug: https://bugs.gentoo.org/916497 Closes: https://github.com/gentoo/gentoo/pull/33604 Signed-off-by: Michal Privoznik <michal.privoznik@gmail.com> Signed-off-by: Matthias Maier <tamiko@gentoo.org> ...-returning-of-locked-objects-from-virStor.patch | 57 ++++++++++++++++++++++ ...ibvirt-9.3.0.ebuild => libvirt-9.3.0-r1.ebuild} | 1 + ...irt-9.4.0-r3.ebuild => libvirt-9.4.0-r4.ebuild} | 1 + ...ibvirt-9.5.0.ebuild => libvirt-9.5.0-r1.ebuild} | 1 + 4 files changed, 60 insertions(+)
All versions remaining in the tree (including stable versions) are fixed.
