Bugzilla – Bug 858824
VUL-1: CVE-2013-6457: libvirt: avoid crashing if calling 'virsh numatune' on an inactive domain (libxl)
Last modified: 2014-09-01 10:04:30 UTC
bugbot adjusting priority
This issue only affects libvirt versions 1.1.1 through 1.2.0 inclusive, meaning
openSUSE13.1, Factory, and SLE12. For Factory and SLE12, the issue is fixed by
updating to libvirt 1.2.1. For openSUSE13.1, I've backported the fix and
have it queued for a future maintenance update in
Reassinging to the security-team...
The SWAMPID for this issue is 56039.
This issue was rated as moderate.
Please submit fixed packages until 2014-02-11.
When done, please reassign the bug to email@example.com.
Patchinfo will be handled by security team.
openSUSE-SU-2014:0268-1: An update that solves four vulnerabilities and has three fixes is now available.
Category: security (moderate)
Bug References: 817407,857271,857492,858817,858824,859041,859051
CVE References: CVE-2013-6457,CVE-2013-6458,CVE-2014-0028,CVE-2014-1447
openSUSE 13.1 (src): libvirt-1.1.2-2.18.3