ubuntu/+source/libvirt:ubuntu/disco-proposed

Last commit made on 2019-11-22
Get this branch:
git clone -b ubuntu/disco-proposed https://git.launchpad.net/ubuntu/+source/libvirt
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/disco-proposed
Repository:
lp:ubuntu/+source/libvirt

Recent commits

a82115f... by Rafael David Tinoco on 2019-11-19

Import patches-unapplied version 5.0.0-1ubuntu2.6 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: a807c75ccdbb86a12f5fc2bda854011bed313b6b

a807c75... by Rafael David Tinoco on 2019-11-19

changelog

c85fcfe... by Rafael David Tinoco on 2019-11-19

libnss-libvirt: Install libnss_libvirt_guest (LP: #1853074)

32c77e7... by Christian Ehrhardt  on 2019-08-21

Import patches-unapplied version 5.0.0-1ubuntu2.5 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: 9137eb8b6699bacbad54c9aaec599457bf2b2e27

9137eb8... by Christian Ehrhardt  on 2019-08-21

also add test fix for LP: 1840872

Signed-off-by: Christian Ehrhardt <email address hidden>

07d49d7... by Christian Ehrhardt  on 2019-08-21

changelog: avoid hotplug issues with duplicate device addresses (LP: #1840872)

Signed-off-by: Christian Ehrhardt <email address hidden>

8a807e4... by Christian Ehrhardt  on 2019-08-21

d/p/ubuntu/lp-1840872-*: avoid hotplug issues with duplicate device addresses (LP: #1840872)

Signed-off-by: Christian Ehrhardt <email address hidden>

9f8e56a... by Marc Deslauriers on 2019-07-02

Import patches-unapplied version 5.0.0-1ubuntu2.4 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 0652a7ccd4a1ffee2034c58b69b3bb7781f29240

New changelog entries:
  * SECURITY UPDATE: virDomainSaveImageGetXMLDesc does not check for
    read-only connection
    - debian/patches/CVE-2019-10161.patch: add check to
      src/libvirt-domain.c, src/qemu/qemu_driver.c,
      src/remote/remote_protocol.x.
    - CVE-2019-10161
  * SECURITY UPDATE: virDomainManagedSaveDefineXML does not check for
    read-only connection
    - debian/patches/CVE-2019-10166.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10166
  * SECURITY UPDATE: virConnectGetDomainCapabilities does not check for
    read-only connection
    - debian/patches/CVE-2019-10167.patch: add check to
      src/libvirt-domain.c.
    - CVE-2019-10167
  * SECURITY UPDATE: virConnect*HypervisorCPU do not check for read-only
    connection
    - debian/patches/CVE-2019-10168.patch: add checks to
      src/libvirt-host.c.
    - CVE-2019-10168

0652a7c... by Marc Deslauriers on 2019-06-17

Import patches-unapplied version 5.0.0-1ubuntu2.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 01f613155e3e1bde7f1a885ff768daba76f2f169

New changelog entries:
  * SECURITY UPDATE: DoS via incorrect permissions check
    - debian/patches/CVE-2019-3886-1.patch: disallow virDomainGetHostname
      for read-only connections in src/libvirt-domain.c.
    - debian/patches/CVE-2019-3886-2.patch: enforce ACL write permission
      for getting guest time & hostname in src/remote/remote_protocol.x.
    - CVE-2019-3886
  * SECURITY UPDATE: privilege escalation via incorrect socket permissions
    - debian/patches/CVE-2019-10132-1.patch: reject clients unless their
      UID matches the current UID in src/admin/admin_server_dispatch.c.
    - debian/patches/CVE-2019-10132-2.patch: restrict sockets to mode 0600
      in src/locking/virtlockd-admin.socket.in,
      src/locking/virtlockd.socket.in.
    - debian/patches/CVE-2019-10132-3.patch: restrict sockets to mode 0600
      in src/logging/virtlogd-admin.socket.in,
      src/logging/virtlogd.socket.in.
    - CVE-2019-10132

01f6131... by Christian Ehrhardt  on 2019-05-16

Import patches-unapplied version 5.0.0-1ubuntu2.2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: cacb90181a2dd46f3a9543e3772b2624cc548779

New changelog entries:
  * d/p/ubuntu/lp-1825195-*.patch: fix issues with old guests that defined
    the never functional osxsave and ospke features (LP: #1825195).