1. Forum
  2. Fsxnet Message
  3. FSX BOT

  • libvirt update vulnerability

    From bugz_ubuntu@21:4/110 to Ubuntu Users on Monday, January 13, 2020 12:10:07
    libvirt vulnerability

    A security issue affects these releases of Ubuntu and its
    derivatives:

    * Ubuntu 14.04 ESM

    Summary

    Several security issues were fixed in libvirt.

    Software Description

    * libvirt - Libvirt virtualization toolkit

    Details

    USN-4047-1 fixed a vulnerability in libvirt. This update provides
    the corresponding update for Ubuntu 14.04 ESM.

    Original advisory details:

    Matthias Gerstner and J**n Tomko discovered that libvirt
    incorrectly handled certain API calls. An attacker could possibly
    use this issue to check for arbitrary files, or execute arbitrary
    binaries. In the default installation, attackers would be isolated
    by the libvirt AppArmor profile.

    Update instructions

    The problem can be corrected by updating your system to the
    following package versions:

    Ubuntu 14.04 ESM
    libvirt-bin - 1.2.2-0ubuntu13.1.28+esm1
    libvirt0 - 1.2.2-0ubuntu13.1.28+esm1

    To update your system, please follow these instructions:
    https://wiki.ubuntu.com/Security/Upgrades.

    After a standard system update you need to reboot your computer to
    make all the necessary changes.

    References

    * USN-4047-1
    * CVE-2019-10161

    --- Mystic BBS v1.12 A43 (Linux/64)
    * Origin: BZ&BZ BBS (21:4/110)