libvirt 0.8.3-5+squeeze1 source package in Debian
Changelog
libvirt (0.8.3-5+squeeze1) stable-security; urgency=low * [0ee351f] [CVE-2011-1146] Add missing checks for read only connections. Some API forgot to check the read-only status of the connection for entry point which modify the state of the system or may lead to a remote execution using user data. The entry points concerned are: - virConnectDomainXMLToNative - virNodeDeviceDettach - virNodeDeviceReAttach - virNodeDeviceReset - virDomainRevertToSnapshot - virDomainSnapshotDelete src/libvirt.c: fix the above set of entry points to error on read-only (Closes: #617773) -- Guido Günther <email address hidden> Mon, 14 Mar 2011 21:33:33 +0100
Upload details
- Uploaded by:
- Debian Libvirt Maintainers
- Uploaded to:
- Squeeze
- Original maintainer:
- Debian Libvirt Maintainers
- Architectures:
- any
- Section:
- devel
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
libvirt_0.8.3-5+squeeze1.dsc | 1.9 KiB | 27c3781098f5c6f45582a08321e94c7e5ba273a671b46aadaf58cfb319c4ba53 |
libvirt_0.8.3.orig.tar.gz | 11.9 MiB | 35e1836c3947ac3edd7b4a1948cf13f5f13dd3e5bb31933d627d771b1e997a1f |
libvirt_0.8.3-5+squeeze1.debian.tar.gz | 29.5 KiB | f9fca6e0bf3f3434acb59562a1405953b93f1686f53893d9584dd182d31c4be2 |
No changes file available.