Upstream information

CVE-2014-1447 at MITRE

Description

Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 3.29
Vector AV:A/AC:L/Au:N/C:N/I:N/A:P
Access Vector Adjacent Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial

This issue is currently rated as having moderate severity.

SUSE Bugzilla entry: 858817 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-client-32bit >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Patchnames:
sledsp3-libvirt
SUSE Linux Enterprise Desktop 12
  • libvirt >= 1.2.5-13.3
  • libvirt-client >= 1.2.5-13.3
  • libvirt-client-32bit >= 1.2.5-13.3
  • libvirt-daemon >= 1.2.5-13.3
  • libvirt-daemon-config-network >= 1.2.5-13.3
  • libvirt-daemon-config-nwfilter >= 1.2.5-13.3
  • libvirt-daemon-driver-interface >= 1.2.5-13.3
  • libvirt-daemon-driver-libxl >= 1.2.5-13.3
  • libvirt-daemon-driver-lxc >= 1.2.5-13.3
  • libvirt-daemon-driver-network >= 1.2.5-13.3
  • libvirt-daemon-driver-nodedev >= 1.2.5-13.3
  • libvirt-daemon-driver-nwfilter >= 1.2.5-13.3
  • libvirt-daemon-driver-qemu >= 1.2.5-13.3
  • libvirt-daemon-driver-secret >= 1.2.5-13.3
  • libvirt-daemon-driver-storage >= 1.2.5-13.3
  • libvirt-daemon-lxc >= 1.2.5-13.3
  • libvirt-daemon-qemu >= 1.2.5-13.3
  • libvirt-daemon-xen >= 1.2.5-13.3
  • libvirt-doc >= 1.2.5-13.3
Patchnames:
SUSE Linux Enterprise Desktop 12 GA libvirt
SUSE Linux Enterprise Desktop 12 SP1
  • libvirt >= 1.2.18.1-4.22
  • libvirt-client >= 1.2.18.1-4.22
  • libvirt-client-32bit >= 1.2.18.1-4.22
  • libvirt-daemon >= 1.2.18.1-4.22
  • libvirt-daemon-config-network >= 1.2.18.1-4.22
  • libvirt-daemon-config-nwfilter >= 1.2.18.1-4.22
  • libvirt-daemon-driver-interface >= 1.2.18.1-4.22
  • libvirt-daemon-driver-libxl >= 1.2.18.1-4.22
  • libvirt-daemon-driver-lxc >= 1.2.18.1-4.22
  • libvirt-daemon-driver-network >= 1.2.18.1-4.22
  • libvirt-daemon-driver-nodedev >= 1.2.18.1-4.22
  • libvirt-daemon-driver-nwfilter >= 1.2.18.1-4.22
  • libvirt-daemon-driver-qemu >= 1.2.18.1-4.22
  • libvirt-daemon-driver-secret >= 1.2.18.1-4.22
  • libvirt-daemon-driver-storage >= 1.2.18.1-4.22
  • libvirt-daemon-lxc >= 1.2.18.1-4.22
  • libvirt-daemon-qemu >= 1.2.18.1-4.22
  • libvirt-daemon-xen >= 1.2.18.1-4.22
  • libvirt-doc >= 1.2.18.1-4.22
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA libvirt
SUSE Linux Enterprise Desktop 12 SP2
  • libvirt >= 2.0.0-26.2
  • libvirt-client >= 2.0.0-26.2
  • libvirt-client-32bit >= 2.0.0-26.2
  • libvirt-daemon >= 2.0.0-26.2
  • libvirt-daemon-config-network >= 2.0.0-26.2
  • libvirt-daemon-config-nwfilter >= 2.0.0-26.2
  • libvirt-daemon-driver-interface >= 2.0.0-26.2
  • libvirt-daemon-driver-libxl >= 2.0.0-26.2
  • libvirt-daemon-driver-lxc >= 2.0.0-26.2
  • libvirt-daemon-driver-network >= 2.0.0-26.2
  • libvirt-daemon-driver-nodedev >= 2.0.0-26.2
  • libvirt-daemon-driver-nwfilter >= 2.0.0-26.2
  • libvirt-daemon-driver-qemu >= 2.0.0-26.2
  • libvirt-daemon-driver-secret >= 2.0.0-26.2
  • libvirt-daemon-driver-storage >= 2.0.0-26.2
  • libvirt-daemon-lxc >= 2.0.0-26.2
  • libvirt-daemon-qemu >= 2.0.0-26.2
  • libvirt-daemon-xen >= 2.0.0-26.2
  • libvirt-doc >= 2.0.0-26.2
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA libvirt
SUSE Linux Enterprise Server 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-client-32bit >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-lock-sanlock >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Patchnames:
slessp3-libvirt
SUSE Linux Enterprise Server 12 SP2
  • libvirt >= 2.0.0-26.2
  • libvirt-client >= 2.0.0-26.2
  • libvirt-client-debuginfo >= 2.0.0-26.2
  • libvirt-daemon >= 2.0.0-26.2
  • libvirt-daemon-config-network >= 2.0.0-26.2
  • libvirt-daemon-config-nwfilter >= 2.0.0-26.2
  • libvirt-daemon-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-interface >= 2.0.0-26.2
  • libvirt-daemon-driver-interface-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-libxl >= 2.0.0-26.2
  • libvirt-daemon-driver-libxl-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-lxc >= 2.0.0-26.2
  • libvirt-daemon-driver-lxc-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-network >= 2.0.0-26.2
  • libvirt-daemon-driver-network-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-nodedev >= 2.0.0-26.2
  • libvirt-daemon-driver-nodedev-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-nwfilter >= 2.0.0-26.2
  • libvirt-daemon-driver-nwfilter-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-qemu >= 2.0.0-26.2
  • libvirt-daemon-driver-qemu-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-secret >= 2.0.0-26.2
  • libvirt-daemon-driver-secret-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-driver-storage >= 2.0.0-26.2
  • libvirt-daemon-driver-storage-debuginfo >= 2.0.0-26.2
  • libvirt-daemon-lxc >= 2.0.0-26.2
  • libvirt-daemon-qemu >= 2.0.0-26.2
  • libvirt-daemon-xen >= 2.0.0-26.2
  • libvirt-debugsource >= 2.0.0-26.2
  • libvirt-doc >= 2.0.0-26.2
  • libvirt-lock-sanlock >= 2.0.0-26.2
  • libvirt-lock-sanlock-debuginfo >= 2.0.0-26.2
  • libvirt-nss >= 2.0.0-26.2
  • libvirt-nss-debuginfo >= 2.0.0-26.2
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA libvirt
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libvirt-devel >= 1.0.5.9-0.7.1
  • libvirt-devel-32bit >= 1.0.5.9-0.7.1
Patchnames:
sdksp3-libvirt
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libvirt-devel >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
SUSE Linux Enterprise Software Development Kit 11 SP3
  • libvirt-devel >= 1.0.5.9-0.7.1
  • libvirt-devel-32bit >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
SUSE Linux Enterprise Desktop 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
SUSE Linux Enterprise Desktop 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-client-32bit >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
SUSE Linux Enterprise Server 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-lock-sanlock >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
SUSE Linux Enterprise Server 11 SP3
  • libvirt >= 1.0.5.9-0.7.1
  • libvirt-client >= 1.0.5.9-0.7.1
  • libvirt-client-32bit >= 1.0.5.9-0.7.1
  • libvirt-doc >= 1.0.5.9-0.7.1
  • libvirt-lock-sanlock >= 1.0.5.9-0.7.1
  • libvirt-python >= 1.0.5.9-0.7.1
Builds
SAT Patch Nr: 8886
openSUSE 12.3
  • libvirt >= 1.0.2-1.14.1
  • libvirt-client >= 1.0.2-1.14.1
  • libvirt-client-32bit >= 1.0.2-1.14.1
  • libvirt-client-debuginfo >= 1.0.2-1.14.1
  • libvirt-client-debuginfo-32bit >= 1.0.2-1.14.1
  • libvirt-debuginfo >= 1.0.2-1.14.1
  • libvirt-debugsource >= 1.0.2-1.14.1
  • libvirt-devel >= 1.0.2-1.14.1
  • libvirt-devel-32bit >= 1.0.2-1.14.1
  • libvirt-doc >= 1.0.2-1.14.1
  • libvirt-lock-sanlock >= 1.0.2-1.14.1
  • libvirt-lock-sanlock-debuginfo >= 1.0.2-1.14.1
  • libvirt-python >= 1.0.2-1.14.1
  • libvirt-python-debuginfo >= 1.0.2-1.14.1
Patchnames:
openSUSE-2014-151
openSUSE 13.1
  • libvirt >= 1.1.2-2.18.3
  • libvirt-client >= 1.1.2-2.18.3
  • libvirt-client-32bit >= 1.1.2-2.18.3
  • libvirt-client-debuginfo >= 1.1.2-2.18.3
  • libvirt-client-debuginfo-32bit >= 1.1.2-2.18.3
  • libvirt-daemon >= 1.1.2-2.18.3
  • libvirt-daemon-config-network >= 1.1.2-2.18.3
  • libvirt-daemon-config-nwfilter >= 1.1.2-2.18.3
  • libvirt-daemon-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-interface >= 1.1.2-2.18.3
  • libvirt-daemon-driver-interface-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-libxl >= 1.1.2-2.18.3
  • libvirt-daemon-driver-libxl-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-lxc >= 1.1.2-2.18.3
  • libvirt-daemon-driver-lxc-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-network >= 1.1.2-2.18.3
  • libvirt-daemon-driver-network-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-nodedev >= 1.1.2-2.18.3
  • libvirt-daemon-driver-nodedev-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-nwfilter >= 1.1.2-2.18.3
  • libvirt-daemon-driver-nwfilter-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-qemu >= 1.1.2-2.18.3
  • libvirt-daemon-driver-qemu-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-secret >= 1.1.2-2.18.3
  • libvirt-daemon-driver-secret-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-storage >= 1.1.2-2.18.3
  • libvirt-daemon-driver-storage-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-uml >= 1.1.2-2.18.3
  • libvirt-daemon-driver-uml-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-vbox >= 1.1.2-2.18.3
  • libvirt-daemon-driver-vbox-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-driver-xen >= 1.1.2-2.18.3
  • libvirt-daemon-driver-xen-debuginfo >= 1.1.2-2.18.3
  • libvirt-daemon-lxc >= 1.1.2-2.18.3
  • libvirt-daemon-qemu >= 1.1.2-2.18.3
  • libvirt-daemon-uml >= 1.1.2-2.18.3
  • libvirt-daemon-vbox >= 1.1.2-2.18.3
  • libvirt-daemon-xen >= 1.1.2-2.18.3
  • libvirt-debugsource >= 1.1.2-2.18.3
  • libvirt-devel >= 1.1.2-2.18.3
  • libvirt-devel-32bit >= 1.1.2-2.18.3
  • libvirt-doc >= 1.1.2-2.18.3
  • libvirt-lock-sanlock >= 1.1.2-2.18.3
  • libvirt-lock-sanlock-debuginfo >= 1.1.2-2.18.3
  • libvirt-login-shell >= 1.1.2-2.18.3
  • libvirt-login-shell-debuginfo >= 1.1.2-2.18.3
  • libvirt-python >= 1.1.2-2.18.3
  • libvirt-python-debuginfo >= 1.1.2-2.18.3
Patchnames:
openSUSE-2014-154
openSUSE 13.2
  • libvirt >= 1.2.9-1.3
  • libvirt-client >= 1.2.9-1.3
  • libvirt-daemon >= 1.2.9-1.3
  • libvirt-daemon-config-network >= 1.2.9-1.3
  • libvirt-daemon-config-nwfilter >= 1.2.9-1.3
  • libvirt-daemon-driver-interface >= 1.2.9-1.3
  • libvirt-daemon-driver-libxl >= 1.2.9-1.3
  • libvirt-daemon-driver-lxc >= 1.2.9-1.3
  • libvirt-daemon-driver-network >= 1.2.9-1.3
  • libvirt-daemon-driver-nodedev >= 1.2.9-1.3
  • libvirt-daemon-driver-nwfilter >= 1.2.9-1.3
  • libvirt-daemon-driver-qemu >= 1.2.9-1.3
  • libvirt-daemon-driver-secret >= 1.2.9-1.3
  • libvirt-daemon-driver-storage >= 1.2.9-1.3
  • libvirt-daemon-driver-uml >= 1.2.9-1.3
  • libvirt-daemon-driver-vbox >= 1.2.9-1.3
  • libvirt-daemon-driver-xen >= 1.2.9-1.3
  • libvirt-daemon-qemu >= 1.2.9-1.3
  • libvirt-daemon-xen >= 1.2.9-1.3
Patchnames:
openSUSE 13.2 GA libvirt
openSUSE Leap 42.1
  • libvirt >= 1.2.18.1-3.2
  • libvirt-client >= 1.2.18.1-3.2
  • libvirt-daemon >= 1.2.18.1-3.2
  • libvirt-daemon-config-network >= 1.2.18.1-3.2
  • libvirt-daemon-config-nwfilter >= 1.2.18.1-3.2
  • libvirt-daemon-driver-interface >= 1.2.18.1-3.2
  • libvirt-daemon-driver-libxl >= 1.2.18.1-3.2
  • libvirt-daemon-driver-lxc >= 1.2.18.1-3.2
  • libvirt-daemon-driver-network >= 1.2.18.1-3.2
  • libvirt-daemon-driver-nodedev >= 1.2.18.1-3.2
  • libvirt-daemon-driver-nwfilter >= 1.2.18.1-3.2
  • libvirt-daemon-driver-qemu >= 1.2.18.1-3.2
  • libvirt-daemon-driver-secret >= 1.2.18.1-3.2
  • libvirt-daemon-driver-storage >= 1.2.18.1-3.2
  • libvirt-daemon-driver-uml >= 1.2.18.1-3.2
  • libvirt-daemon-driver-vbox >= 1.2.18.1-3.2
  • libvirt-daemon-lxc >= 1.2.18.1-3.2
  • libvirt-daemon-qemu >= 1.2.18.1-3.2
  • libvirt-daemon-xen >= 1.2.18.1-3.2
Patchnames:
openSUSE Leap 42.1 GA libvirt
openSUSE Leap 42.2
  • libvirt >= 2.0.0-9.1
  • libvirt-client >= 2.0.0-9.1
  • libvirt-daemon >= 2.0.0-9.1
  • libvirt-daemon-config-network >= 2.0.0-9.1
  • libvirt-daemon-config-nwfilter >= 2.0.0-9.1
  • libvirt-daemon-driver-interface >= 2.0.0-9.1
  • libvirt-daemon-driver-libxl >= 2.0.0-9.1
  • libvirt-daemon-driver-lxc >= 2.0.0-9.1
  • libvirt-daemon-driver-network >= 2.0.0-9.1
  • libvirt-daemon-driver-nodedev >= 2.0.0-9.1
  • libvirt-daemon-driver-nwfilter >= 2.0.0-9.1
  • libvirt-daemon-driver-qemu >= 2.0.0-9.1
  • libvirt-daemon-driver-secret >= 2.0.0-9.1
  • libvirt-daemon-driver-storage >= 2.0.0-9.1
  • libvirt-daemon-driver-uml >= 2.0.0-9.1
  • libvirt-daemon-driver-vbox >= 2.0.0-9.1
  • libvirt-daemon-lxc >= 2.0.0-9.1
  • libvirt-daemon-qemu >= 2.0.0-9.1
  • libvirt-daemon-xen >= 2.0.0-9.1
Patchnames:
openSUSE Leap 42.2 GA libvirt