Security update for libvirt SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1753-1 Final 1 1 2019-07-20T06:25:34Z current 2019-07-20T06:25:34Z 2019-07-20T06:25:34Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libvirt This update for libvirt fixes the following issues: Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301). - CVE-2019-10166: Fixed an issue with virDomainManagedSaveDefineXML which could have been used to alter the domain's config used for managedsave or execute arbitrary emulator binaries (bsc#1138302). - CVE-2019-10167: Fixed an issue with virConnectGetDomainCapabilities API which could have been used to execute arbitrary emulators (bsc#1138303). - CVE-2019-10168: Fixed an issue with virConnect*HypervisorCPU API which could have been used to execute arbitrary emulators (bsc#1138305). This update was imported from the SUSE:SLE-15-SP1:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1753 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00019.html E-Mail link for openSUSE-SU-2019:1753-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1138301 SUSE Bug 1138301 https://bugzilla.suse.com/1138302 SUSE Bug 1138302 https://bugzilla.suse.com/1138303 SUSE Bug 1138303 https://bugzilla.suse.com/1138305 SUSE Bug 1138305 https://www.suse.com/security/cve/CVE-2019-10161/ SUSE CVE CVE-2019-10161 page https://www.suse.com/security/cve/CVE-2019-10166/ SUSE CVE CVE-2019-10166 page https://www.suse.com/security/cve/CVE-2019-10167/ SUSE CVE CVE-2019-10167 page https://www.suse.com/security/cve/CVE-2019-10168/ SUSE CVE CVE-2019-10168 page openSUSE Leap 15.1 libvirt-5.1.0-lp151.7.3.1 libvirt-admin-5.1.0-lp151.7.3.1 libvirt-bash-completion-5.1.0-lp151.7.3.1 libvirt-client-5.1.0-lp151.7.3.1 libvirt-daemon-5.1.0-lp151.7.3.1 libvirt-daemon-config-network-5.1.0-lp151.7.3.1 libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 libvirt-daemon-hooks-5.1.0-lp151.7.3.1 libvirt-daemon-lxc-5.1.0-lp151.7.3.1 libvirt-daemon-qemu-5.1.0-lp151.7.3.1 libvirt-daemon-xen-5.1.0-lp151.7.3.1 libvirt-devel-5.1.0-lp151.7.3.1 libvirt-devel-32bit-5.1.0-lp151.7.3.1 libvirt-doc-5.1.0-lp151.7.3.1 libvirt-libs-5.1.0-lp151.7.3.1 libvirt-lock-sanlock-5.1.0-lp151.7.3.1 libvirt-nss-5.1.0-lp151.7.3.1 wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 libvirt-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-admin-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-bash-completion-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-client-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-config-network-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-hooks-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-lxc-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-qemu-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-daemon-xen-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-devel-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-devel-32bit-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-doc-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-libs-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-lock-sanlock-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 libvirt-nss-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 as a component of openSUSE Leap 15.1 It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of arbitrary files, cause denial of service or cause libvirtd to execute arbitrary programs. CVE-2019-10161 openSUSE Leap 15.1:libvirt-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-admin-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-bash-completion-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-client-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-hooks-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-xen-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-32bit-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-doc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-libs-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-lock-sanlock-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-nss-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00019.html https://www.suse.com/security/cve/CVE-2019-10161.html CVE-2019-10161 https://bugzilla.suse.com/1138301 SUSE Bug 1138301 It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the virDomainManagedSaveDefineXML() API, which would permit them to modify managed save state files. If a managed save had already been created by a privileged user, a local attacker could modify this file such that libvirtd would execute an arbitrary program when the domain was resumed. CVE-2019-10166 openSUSE Leap 15.1:libvirt-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-admin-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-bash-completion-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-client-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-hooks-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-xen-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-32bit-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-doc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-libs-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-lock-sanlock-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-nss-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00019.html https://www.suse.com/security/cve/CVE-2019-10166.html CVE-2019-10166 https://bugzilla.suse.com/1138302 SUSE Bug 1138302 The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities. Read-only clients could specify an arbitrary path for this argument, causing libvirtd to execute a crafted executable with its own privileges. CVE-2019-10167 openSUSE Leap 15.1:libvirt-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-admin-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-bash-completion-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-client-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-hooks-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-xen-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-32bit-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-doc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-libs-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-lock-sanlock-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-nss-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00019.html https://www.suse.com/security/cve/CVE-2019-10167.html CVE-2019-10167 https://bugzilla.suse.com/1138303 SUSE Bug 1138303 The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities. Read-only clients could specify an arbitrary path for this argument, causing libvirtd to execute a crafted executable with its own privileges. CVE-2019-10168 openSUSE Leap 15.1:libvirt-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-admin-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-bash-completion-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-client-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-interface-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-libxl-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-network-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-secret-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-hooks-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-lxc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-qemu-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-daemon-xen-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-32bit-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-devel-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-doc-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-libs-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-lock-sanlock-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:libvirt-nss-5.1.0-lp151.7.3.1 openSUSE Leap 15.1:wireshark-plugin-libvirt-5.1.0-lp151.7.3.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00019.html https://www.suse.com/security/cve/CVE-2019-10168.html CVE-2019-10168 https://bugzilla.suse.com/1138305 SUSE Bug 1138305 https://bugzilla.suse.com/1138582 SUSE Bug 1138582