| Summary: | <app-emulation/libvirt-8.2.0: unprivileged daemon DoS | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | minor | CC: | michal.privoznik, tamiko, virtualization |
| Priority: | Normal | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://gitlab.com/libvirt/libvirt/-/commit/a4947e8f63c3e6b7b067b444f3d6cf674c0d7f36 | ||
| Whiteboard: | B3 [glsa+] | ||
| Package list: | Runtime testing required: | --- | |
| Bug Depends on: | 872428 | ||
| Bug Blocks: | |||
|
Description
John Helmert III
2022-03-26 05:11:33 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f80abc70fa18166129b827b6ed4c671cb5c656b0 commit f80abc70fa18166129b827b6ed4c671cb5c656b0 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-04-03 04:04:09 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-04-03 04:35:37 +0000 app-emulation/libvirt: add 8.2.0 * Add 8.2.0 * Tighten up some lower bounds on dependencies * Add shorewall to init script 'after' Bug: https://bugs.gentoo.org/836128 Closes: https://bugs.gentoo.org/833754 Closes: https://bugs.gentoo.org/831121 Signed-off-by: Sam James <sam@gentoo.org> app-emulation/libvirt/Manifest | 2 + app-emulation/libvirt/files/libvirtd.init-r19 | 2 +- app-emulation/libvirt/libvirt-8.2.0.ebuild | 336 ++++++++++++++++++++++++++ app-emulation/libvirt/libvirt-9999.ebuild | 52 ++-- app-emulation/libvirt/metadata.xml | 4 + 5 files changed, 368 insertions(+), 28 deletions(-) GLSA request filed The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=48e6804ed5fa75343b7496c1033000fda3741b42 commit 48e6804ed5fa75343b7496c1033000fda3741b42 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-10-16 14:42:10 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-10-16 14:45:24 +0000 [ GLSA 202210-06 ] libvirt: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/746119 Bug: https://bugs.gentoo.org/799713 Bug: https://bugs.gentoo.org/812317 Bug: https://bugs.gentoo.org/836128 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202210-06.xml | 60 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 60 insertions(+) Michal, tamiko, any reason to keep old libvirts around here? The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c433fe97671c3f9786ffe2405e91ba9f00ae04fe commit c433fe97671c3f9786ffe2405e91ba9f00ae04fe Author: Matthias Maier <tamiko@gentoo.org> AuthorDate: 2023-06-18 01:42:49 +0000 Commit: Matthias Maier <tamiko@gentoo.org> CommitDate: 2023-06-18 01:54:05 +0000 app-emulation/libvirt: drop 8.7.0-r1, 8.8.0-r1, 8.9.0, 8.9.0-r2, 9.2.0 Bug: https://bugs.gentoo.org/908042 Bug: https://bugs.gentoo.org/836128 Signed-off-by: Matthias Maier <tamiko@gentoo.org> app-emulation/libvirt/Manifest | 8 - ....0-meson-Stop-detecting-Wl-version-script.patch | 55 ---- ....0-meson-Stop-detecting-Wl-version-script.patch | 53 --- app-emulation/libvirt/libvirt-8.7.0-r1.ebuild | 353 -------------------- app-emulation/libvirt/libvirt-8.8.0-r1.ebuild | 353 -------------------- app-emulation/libvirt/libvirt-8.9.0-r2.ebuild | 360 --------------------- app-emulation/libvirt/libvirt-8.9.0.ebuild | 356 -------------------- app-emulation/libvirt/libvirt-9.2.0.ebuild | 359 -------------------- 8 files changed, 1897 deletions(-) |