Format: 1.8 Date: Mon, 17 Jun 2019 07:18:24 -0400 Source: libvirt Binary: libnss-libvirt libvirt-clients libvirt-daemon libvirt-daemon-driver-storage-gluster libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-zfs libvirt-daemon-system libvirt-dev libvirt-doc libvirt-sanlock libvirt-wireshark libvirt0 Architecture: amd64 all amd64_translations Version: 5.0.0-1ubuntu2.3 Distribution: disco Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libnss-libvirt - nss plugin providing IP address resolution for virtual machines libvirt-clients - Programs for the libvirt library libvirt-daemon - Virtualization daemon libvirt-daemon-driver-storage-gluster - Virtualization daemon glusterfs storage driver libvirt-daemon-driver-storage-rbd - Virtualization daemon RBD storage driver libvirt-daemon-driver-storage-zfs - Virtualization daemon ZFS storage driver libvirt-daemon-system - Libvirt daemon configuration files libvirt-dev - development files for the libvirt library libvirt-doc - documentation for the libvirt library libvirt-sanlock - Sanlock plugin for virtlockd libvirt-wireshark - Wireshark dissector for the libvirt protocol libvirt0 - library for interfacing with different virtualization systems Changes: libvirt (5.0.0-1ubuntu2.3) disco-security; urgency=medium . * SECURITY UPDATE: DoS via incorrect permissions check - debian/patches/CVE-2019-3886-1.patch: disallow virDomainGetHostname for read-only connections in src/libvirt-domain.c. - debian/patches/CVE-2019-3886-2.patch: enforce ACL write permission for getting guest time & hostname in src/remote/remote_protocol.x. - CVE-2019-3886 * SECURITY UPDATE: privilege escalation via incorrect socket permissions - debian/patches/CVE-2019-10132-1.patch: reject clients unless their UID matches the current UID in src/admin/admin_server_dispatch.c. - debian/patches/CVE-2019-10132-2.patch: restrict sockets to mode 0600 in src/locking/virtlockd-admin.socket.in, src/locking/virtlockd.socket.in. - debian/patches/CVE-2019-10132-3.patch: restrict sockets to mode 0600 in src/logging/virtlogd-admin.socket.in, src/logging/virtlogd.socket.in. - CVE-2019-10132 Checksums-Sha1: c8084b19860025213fa066befe43fcdfc07794f0 528848 libnss-libvirt-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 422b9d3afe65ed6bd2cc041c561c119f825a349e 157096 libnss-libvirt_5.0.0-1ubuntu2.3_amd64.deb c9ce267d78ec59d4d3f07cd91413cf1b2ab1b708 2189424 libvirt-clients-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 1a6f35f1882ee141bd16163bafd9d9b41180cc8d 665672 libvirt-clients_5.0.0-1ubuntu2.3_amd64.deb f7c9841ec31d4c25ef31efa7a3f35745b1ce8dfd 12913140 libvirt-daemon-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 8b9e2463051836c40d5c2ff67bccf8ac53f101a6 418060 libvirt-daemon-driver-storage-gluster-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 647dbd9b464e7c2eff60c69a3814927b31134794 72748 libvirt-daemon-driver-storage-gluster_5.0.0-1ubuntu2.3_amd64.deb f062fed69429abd9a1ea2433e1752136e7e3327b 244684 libvirt-daemon-driver-storage-rbd-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb b96ba64a406807e41801c6f658190f3f0899b0f3 68836 libvirt-daemon-driver-storage-rbd_5.0.0-1ubuntu2.3_amd64.deb c4c8f3daa1b092de4b845eb531d5008f062b4390 213376 libvirt-daemon-driver-storage-zfs-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb bbc1dc36969cf51d486c02f7028a1d42fc4e21e5 62912 libvirt-daemon-driver-storage-zfs_5.0.0-1ubuntu2.3_amd64.deb 4d5f0dce4b4ad199fd97ae19ce9eab16f1cb0880 102712 libvirt-daemon-system-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 558eb9e741ca43afaeff1bc4aa5f59ba522449f4 76472 libvirt-daemon-system_5.0.0-1ubuntu2.3_amd64.deb 131ce21b1164e09cef06a48a538eb2765fd6698a 1744364 libvirt-daemon_5.0.0-1ubuntu2.3_amd64.deb 133ce8592635ffedc2ac98a89a374302884836af 146764 libvirt-dev_5.0.0-1ubuntu2.3_amd64.deb ebf925cc6ad11267626f312edf43531a889b270e 1241128 libvirt-doc_5.0.0-1ubuntu2.3_all.deb e784e33a90882cb5bbe37f55b290e4aa766a5fa2 221768 libvirt-sanlock-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 0a79f1327beb4c2e14b8017a4fc96ce0e556a572 68504 libvirt-sanlock_5.0.0-1ubuntu2.3_amd64.deb 70debd49b062189061b1de7487f3332625753e06 331200 libvirt-wireshark-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 710bc0a57deaa27babb1f72deee97474ed081843 93300 libvirt-wireshark_5.0.0-1ubuntu2.3_amd64.deb 04cc3bc0a7f4d94304c777cf331dd0d088d091df 6073852 libvirt0-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb d4a6da9d29f7b6eed6a01a47c410e0a30354e6ee 1462096 libvirt0_5.0.0-1ubuntu2.3_amd64.deb a7918c3d4b4fa3ffbabbc6bbff57565407ec1f3e 20423 libvirt_5.0.0-1ubuntu2.3_amd64.buildinfo 1142fe8c82bdae41448e6866d68f2bf1ecbea8ab 19327664 libvirt_5.0.0-1ubuntu2.3_amd64_translations.tar.gz Checksums-Sha256: b19eb7c1673287c10806fe78b9f62158fb1e9f178ed2d48f26a13a41596c0ba6 528848 libnss-libvirt-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 59e6111d9e9f42f9b843e69bcb8372b3fbb7a44d7b78f4b0d31939986254f263 157096 libnss-libvirt_5.0.0-1ubuntu2.3_amd64.deb bb21f14060333bd600088287ed9211b6577be92ea5e08b528d6d3cc9597ac638 2189424 libvirt-clients-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb a9a5114eab515eb9b00a73ca65524cff711dbe8b60ad94c0482fad8cad394b59 665672 libvirt-clients_5.0.0-1ubuntu2.3_amd64.deb 7fd429f563e59efede9c6d8fd1db07e14c11505636baf8056e59838c4c5e818e 12913140 libvirt-daemon-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb aa49f74cc63ac686af20509697135e8936f39a0e11418ff7b0d84efb69d16137 418060 libvirt-daemon-driver-storage-gluster-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb a17de40a81de05c8d056e0af25497f4cb1baaf9e6c9cec67bbb223553f2b43e9 72748 libvirt-daemon-driver-storage-gluster_5.0.0-1ubuntu2.3_amd64.deb 766b804ce72fa37e2258f647c9d7bdc3d672e0bab7f25a8c0349af2cd259c3e9 244684 libvirt-daemon-driver-storage-rbd-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb be8973efab68bcdc85f9fa1475c0380958be0c4351e01c4d817692cf68040675 68836 libvirt-daemon-driver-storage-rbd_5.0.0-1ubuntu2.3_amd64.deb 95573220de39d329aef2e357cd9b576e85059c115318291245495bd12d07743f 213376 libvirt-daemon-driver-storage-zfs-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb f225ed94d11a172e8e5df673a834ca6934c333835e9214e5c4655b4c8867e1da 62912 libvirt-daemon-driver-storage-zfs_5.0.0-1ubuntu2.3_amd64.deb f8e533ab2fdb4524e3b502fa3caba4d9ca955defc8b243e4d6fcba257cb0521b 102712 libvirt-daemon-system-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 3c5cb7cdca7c4831eb70d761c513df25e555a6be26b259a55f366d91d86e939a 76472 libvirt-daemon-system_5.0.0-1ubuntu2.3_amd64.deb 23eb889ff168afbdb423406d54d8b07eff88ed0bcaa18c1ec61fbacd44453a20 1744364 libvirt-daemon_5.0.0-1ubuntu2.3_amd64.deb 5d0dd2a8a1f1d1a9af48b8d0a12a375fa7f27905c338ffb8f264fc0942794f1a 146764 libvirt-dev_5.0.0-1ubuntu2.3_amd64.deb 0a3851fdb9c181df81ee19dbd9729093be6174f91c2e8e4bf66dbf4043c2747e 1241128 libvirt-doc_5.0.0-1ubuntu2.3_all.deb c90d8cadd0a05c497bf25245c31df96345b764e330395398f1bc8f77db361457 221768 libvirt-sanlock-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 9412e902ebbf5dfae26c320bfa8057288e0695797e88b3db2c1c9f3aa4cc693b 68504 libvirt-sanlock_5.0.0-1ubuntu2.3_amd64.deb 9233346710a4ff50dcf75b39ea2b6884f487f3c524d850d345ba2b7835f26381 331200 libvirt-wireshark-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 7f528d784807e3fce4dc874dfeed58195402bda26c73a5d2c2d50cdadb731d69 93300 libvirt-wireshark_5.0.0-1ubuntu2.3_amd64.deb d49ff84463fe94593ebcffcc955af9ff4a796bd7fb7905dc3f9d0177bbba1c71 6073852 libvirt0-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 097de769bed2f18d661a187eab5e3e579086bf604f7959331d9adae491396493 1462096 libvirt0_5.0.0-1ubuntu2.3_amd64.deb 1c37c4cd4ef18cdcd225c7ec2cbea930fb0ee8ef99941234ca6368570fc3775d 20423 libvirt_5.0.0-1ubuntu2.3_amd64.buildinfo caa3eaf5ce570217ae32d8ffa302ae183da815b68c9a53bbc9060f4772d9ad37 19327664 libvirt_5.0.0-1ubuntu2.3_amd64_translations.tar.gz Files: 68730bbe6354b3c343f989df319ed89b 528848 debug optional libnss-libvirt-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb bdbae5789c200b0b2f31ad33f8d7a152 157096 libs optional libnss-libvirt_5.0.0-1ubuntu2.3_amd64.deb 3b2e3d5a55fd6e3ffe7cc9b2cfecae69 2189424 debug optional libvirt-clients-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 436e34c9c7c2b3c74b75b7f98bcc8493 665672 admin optional libvirt-clients_5.0.0-1ubuntu2.3_amd64.deb d2d3ef2c9e74e5660a68d75abf7db4f0 12913140 debug optional libvirt-daemon-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 300adf0bcd98fb1797942930a7e90e24 418060 debug optional libvirt-daemon-driver-storage-gluster-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 8764c1144121fabb5529125fb84a8d19 72748 admin optional libvirt-daemon-driver-storage-gluster_5.0.0-1ubuntu2.3_amd64.deb 49eeeb952d5d22f8a1792b9439711fc1 244684 debug optional libvirt-daemon-driver-storage-rbd-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb ad838cbe562d359b173ae105336ef0bd 68836 admin optional libvirt-daemon-driver-storage-rbd_5.0.0-1ubuntu2.3_amd64.deb 6215209ea95f958fe3695907e04f2599 213376 debug optional libvirt-daemon-driver-storage-zfs-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 6801b601ff93cdbb8df4c21847dc84ef 62912 admin optional libvirt-daemon-driver-storage-zfs_5.0.0-1ubuntu2.3_amd64.deb cc81a4ae3d74bfb1dfd0ba817187ebca 102712 debug optional libvirt-daemon-system-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 8fb2efdf552d98bdd82c384ea143e485 76472 admin optional libvirt-daemon-system_5.0.0-1ubuntu2.3_amd64.deb f3d09f159a69be211a2c0f8815b0bbd8 1744364 admin optional libvirt-daemon_5.0.0-1ubuntu2.3_amd64.deb 21a5d645fed6297a9d5ebb79572201ec 146764 libdevel optional libvirt-dev_5.0.0-1ubuntu2.3_amd64.deb ed7a8d1369465030419f5a2f9c08e39c 1241128 doc optional libvirt-doc_5.0.0-1ubuntu2.3_all.deb 666dbe8cecaf9b900bdc82411b316116 221768 debug optional libvirt-sanlock-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 41334c51bb8422506edc83898e19957b 68504 libs optional libvirt-sanlock_5.0.0-1ubuntu2.3_amd64.deb 4eaabbf9ded9cb4453af8b1cb9f38521 331200 debug optional libvirt-wireshark-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb 44bd3695c0c1511ef189261077d4b9ac 93300 libs optional libvirt-wireshark_5.0.0-1ubuntu2.3_amd64.deb 48e7ec5c06f9b6781dfa245d0c48d4b6 6073852 debug optional libvirt0-dbgsym_5.0.0-1ubuntu2.3_amd64.ddeb b250e008cbc0746a0ad8b7cd2bf88257 1462096 libs optional libvirt0_5.0.0-1ubuntu2.3_amd64.deb aae36fc78d152d2942e42bc4ef095c08 20423 libs optional libvirt_5.0.0-1ubuntu2.3_amd64.buildinfo 773b567ea01a110f1cd932226d823986 19327664 raw-translations - libvirt_5.0.0-1ubuntu2.3_amd64_translations.tar.gz Original-Maintainer: Debian Libvirt Maintainers