FEDORA-2018-b22d46eabb created by crobinso 2 years ago for Fedora 27
stable
  • CVE-2018-5748: resource exhaustion via qemuMonitorIORead() (bz #1535785)
  • CVE-2018-6764: code injection via libvirt_lxc (bz #1542815)
  • Fix hotplug disk failure (bz #1540872)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-b22d46eabb

This update has been submitted for testing by crobinso.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon cserpentis commented & provided feedback 2 years ago
karma

works for me

User Icon dhgutteridge commented & provided feedback 2 years ago
karma

No regressions noted.

User Icon sassam commented & provided feedback 2 years ago
karma

Works for me.

User Icon amcg commented & provided feedback 2 years ago
karma

no issues

User Icon williamjmorenor commented & provided feedback 2 years ago
karma

wfm

User Icon mhayden commented & provided feedback 2 years ago
karma

Works for me.

User Icon filiperosset commented & provided feedback 2 years ago
karma

no regressions noted

User Icon kparal commented & provided feedback 2 years ago
karma

my VMs work fine

User Icon frantisekz commented & provided feedback 2 years ago
karma

Works just fine

User Icon bowlofeggs commented & provided feedback 2 years ago
karma

This works on my Vagrant host.

This update has been submitted for stable by crobinso.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
10
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1528396 CVE-2018-5748 Libvirt: resource exhaustion via qemuMonitorIORead() method
0
0
BZ#1535785 CVE-2018-5748 Libvirt: resource exhaustion via qemuMonitorIORead() method [fedora-all]
0
0
BZ#1540872 Hotplug disk failing due to cgroups
0
0
BZ#1541444 CVE-2018-6764 libvirt: guest could inject executable code via libnss_dns.so loaded by libvirt_lxc before init
0
0
BZ#1542815 CVE-2018-6764 libvirt: guest could inject executable code via libnss_dns.so loaded by libvirt_lxc before init [fedora-all]
0
0

Automated Test Results