Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2018:0032 - Security Advisory
Issued:
2018-01-04
Updated:
2018-01-04

RHSA-2018:0032 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: libvirt security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libvirt is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, and Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

Security Fix(es):

  • An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715)

Note: This is the libvirt side of the CVE-2017-5715 mitigation.

Red Hat would like to thank Google Project Zero for reporting this issue.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, libvirtd will be restarted automatically.

Affected Products

  • Red Hat Enterprise Linux Server - AUS 7.2 x86_64
  • Red Hat Enterprise Linux Server - TUS 7.2 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.2 x86_64

Fixes

  • BZ - 1519780 - CVE-2017-5715 hw: cpu: speculative execution branch target injection

CVEs

(none)

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://access.redhat.com/security/vulnerabilities/speculativeexecution
  • https://access.redhat.com/security/cve/CVE-2017-5715
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.2

SRPM
libvirt-1.2.17-13.el7_2.7.src.rpm SHA-256: 85cf08cac5b169b473750924b9ad02c5297ac4f9f65bcd5e058dec1073404b87
x86_64
libvirt-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e08e52884a6d1e6d30cbd1db7ee496a363480bd296292e34a435dbd8a58d26a4
libvirt-client-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5c0b244fbb5b49ec7e2b337da5b07b5437936ea349ee6951d62988c1eb967aa
libvirt-client-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 503f6a65cfc511da8bbf99769da6f3756c280570c4067bf411bb0522228a8c47
libvirt-daemon-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f99aa6cf5ffd91e9182b8616937dd2c8f3b368b87517256f9af496992a263c45
libvirt-daemon-config-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 60e1f206ae68942d4a1353d621dcc7cfd7a6fadf6879c7f6264df48414490b2f
libvirt-daemon-config-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 96892f89d3c5249e699685ecade50541cb7be0839f5c444f1c1bcf4615a08241
libvirt-daemon-driver-interface-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: d51c3a90bdb7ad2ee4de8acda95b340b9a588f067b24c97e4e9f6183ab73e6e1
libvirt-daemon-driver-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 4b046d67ccff5bda2a3c67ae9f621f84d607a2e9f7d957814331d932d3c425ba
libvirt-daemon-driver-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f31cf65356222747ba361fc85c215813828fffcb2088840a1016f35cdf20f129
libvirt-daemon-driver-nodedev-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 66bd09b62ddf3ee1fdc2abdd37582174212ccb8236b4c326ae19cef847b68f80
libvirt-daemon-driver-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 8534e3cf8233d2aba38fe9d5735fbdd79c52e64c2b31a241d49c02044bd7e28f
libvirt-daemon-driver-qemu-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 387105b15de173c2bc3bae77990a2355986da3c71e2e8bc94ccf25e15c83f614
libvirt-daemon-driver-secret-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 41086d7b593a1f28ca2f5f639e2b40b4915d862608cd2bdb49fbe4ac77745adf
libvirt-daemon-driver-storage-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 652a34c823b2a4187524a58d13166c67e90c99f9bc1ffcdcb2032de3e7bc9f21
libvirt-daemon-kvm-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 64de50ebfb3f4dbd848d34ecf1c363d23c9cb4dcb147d77291d0ce5af2aee5e6
libvirt-daemon-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 54b45d815661acbde14ea0a784274bea812faf7209fd437c7ee01f3963526ba8
libvirt-debuginfo-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5234ef02c9ccaa8f45b0ab4f6517ee937a77b8ba30669a97be5fe975bc9adc5
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-devel-1.2.17-13.el7_2.7.i686.rpm SHA-256: a9883bc6b4474b68259b0e7630236a6c874a34efe87ad191b0232dc45d7457a1
libvirt-devel-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 32ccd3bd6c7c05a3fb3f3aea6f4e56c2a1964cb43de8604f67ec1f57d7d5f2dc
libvirt-docs-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 7c8582505a38ea8bae65c373463ed469577b301b379d97298dd4210db1abde99
libvirt-lock-sanlock-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f4e5a255c0a23982bd6783eefb742b611cfb7bc9a20e1c03109dac54dedddb0b
libvirt-login-shell-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e270edf31ad15c76d1d879612c1b2305fd1a22d1f3c49949e5170952d89a8c02

Red Hat Enterprise Linux Server - TUS 7.2

SRPM
libvirt-1.2.17-13.el7_2.7.src.rpm SHA-256: 85cf08cac5b169b473750924b9ad02c5297ac4f9f65bcd5e058dec1073404b87
x86_64
libvirt-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e08e52884a6d1e6d30cbd1db7ee496a363480bd296292e34a435dbd8a58d26a4
libvirt-client-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5c0b244fbb5b49ec7e2b337da5b07b5437936ea349ee6951d62988c1eb967aa
libvirt-client-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 503f6a65cfc511da8bbf99769da6f3756c280570c4067bf411bb0522228a8c47
libvirt-daemon-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f99aa6cf5ffd91e9182b8616937dd2c8f3b368b87517256f9af496992a263c45
libvirt-daemon-config-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 60e1f206ae68942d4a1353d621dcc7cfd7a6fadf6879c7f6264df48414490b2f
libvirt-daemon-config-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 96892f89d3c5249e699685ecade50541cb7be0839f5c444f1c1bcf4615a08241
libvirt-daemon-driver-interface-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: d51c3a90bdb7ad2ee4de8acda95b340b9a588f067b24c97e4e9f6183ab73e6e1
libvirt-daemon-driver-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 4b046d67ccff5bda2a3c67ae9f621f84d607a2e9f7d957814331d932d3c425ba
libvirt-daemon-driver-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f31cf65356222747ba361fc85c215813828fffcb2088840a1016f35cdf20f129
libvirt-daemon-driver-nodedev-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 66bd09b62ddf3ee1fdc2abdd37582174212ccb8236b4c326ae19cef847b68f80
libvirt-daemon-driver-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 8534e3cf8233d2aba38fe9d5735fbdd79c52e64c2b31a241d49c02044bd7e28f
libvirt-daemon-driver-qemu-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 387105b15de173c2bc3bae77990a2355986da3c71e2e8bc94ccf25e15c83f614
libvirt-daemon-driver-secret-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 41086d7b593a1f28ca2f5f639e2b40b4915d862608cd2bdb49fbe4ac77745adf
libvirt-daemon-driver-storage-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 652a34c823b2a4187524a58d13166c67e90c99f9bc1ffcdcb2032de3e7bc9f21
libvirt-daemon-kvm-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 64de50ebfb3f4dbd848d34ecf1c363d23c9cb4dcb147d77291d0ce5af2aee5e6
libvirt-daemon-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 54b45d815661acbde14ea0a784274bea812faf7209fd437c7ee01f3963526ba8
libvirt-debuginfo-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5234ef02c9ccaa8f45b0ab4f6517ee937a77b8ba30669a97be5fe975bc9adc5
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-devel-1.2.17-13.el7_2.7.i686.rpm SHA-256: a9883bc6b4474b68259b0e7630236a6c874a34efe87ad191b0232dc45d7457a1
libvirt-devel-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 32ccd3bd6c7c05a3fb3f3aea6f4e56c2a1964cb43de8604f67ec1f57d7d5f2dc
libvirt-docs-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 7c8582505a38ea8bae65c373463ed469577b301b379d97298dd4210db1abde99
libvirt-lock-sanlock-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f4e5a255c0a23982bd6783eefb742b611cfb7bc9a20e1c03109dac54dedddb0b
libvirt-login-shell-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e270edf31ad15c76d1d879612c1b2305fd1a22d1f3c49949e5170952d89a8c02

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.2

SRPM
libvirt-1.2.17-13.el7_2.7.src.rpm SHA-256: 85cf08cac5b169b473750924b9ad02c5297ac4f9f65bcd5e058dec1073404b87
x86_64
libvirt-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e08e52884a6d1e6d30cbd1db7ee496a363480bd296292e34a435dbd8a58d26a4
libvirt-client-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5c0b244fbb5b49ec7e2b337da5b07b5437936ea349ee6951d62988c1eb967aa
libvirt-client-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 503f6a65cfc511da8bbf99769da6f3756c280570c4067bf411bb0522228a8c47
libvirt-daemon-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f99aa6cf5ffd91e9182b8616937dd2c8f3b368b87517256f9af496992a263c45
libvirt-daemon-config-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 60e1f206ae68942d4a1353d621dcc7cfd7a6fadf6879c7f6264df48414490b2f
libvirt-daemon-config-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 96892f89d3c5249e699685ecade50541cb7be0839f5c444f1c1bcf4615a08241
libvirt-daemon-driver-interface-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: d51c3a90bdb7ad2ee4de8acda95b340b9a588f067b24c97e4e9f6183ab73e6e1
libvirt-daemon-driver-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 4b046d67ccff5bda2a3c67ae9f621f84d607a2e9f7d957814331d932d3c425ba
libvirt-daemon-driver-network-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f31cf65356222747ba361fc85c215813828fffcb2088840a1016f35cdf20f129
libvirt-daemon-driver-nodedev-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 66bd09b62ddf3ee1fdc2abdd37582174212ccb8236b4c326ae19cef847b68f80
libvirt-daemon-driver-nwfilter-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 8534e3cf8233d2aba38fe9d5735fbdd79c52e64c2b31a241d49c02044bd7e28f
libvirt-daemon-driver-qemu-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 387105b15de173c2bc3bae77990a2355986da3c71e2e8bc94ccf25e15c83f614
libvirt-daemon-driver-secret-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 41086d7b593a1f28ca2f5f639e2b40b4915d862608cd2bdb49fbe4ac77745adf
libvirt-daemon-driver-storage-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 652a34c823b2a4187524a58d13166c67e90c99f9bc1ffcdcb2032de3e7bc9f21
libvirt-daemon-kvm-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 64de50ebfb3f4dbd848d34ecf1c363d23c9cb4dcb147d77291d0ce5af2aee5e6
libvirt-daemon-lxc-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 54b45d815661acbde14ea0a784274bea812faf7209fd437c7ee01f3963526ba8
libvirt-debuginfo-1.2.17-13.el7_2.7.i686.rpm SHA-256: d5234ef02c9ccaa8f45b0ab4f6517ee937a77b8ba30669a97be5fe975bc9adc5
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-debuginfo-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 38c4db5ff0e559ad5edca3326afff0ca268f44a5358d98a88eb512af4c76fb14
libvirt-devel-1.2.17-13.el7_2.7.i686.rpm SHA-256: a9883bc6b4474b68259b0e7630236a6c874a34efe87ad191b0232dc45d7457a1
libvirt-devel-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 32ccd3bd6c7c05a3fb3f3aea6f4e56c2a1964cb43de8604f67ec1f57d7d5f2dc
libvirt-docs-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: 7c8582505a38ea8bae65c373463ed469577b301b379d97298dd4210db1abde99
libvirt-lock-sanlock-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: f4e5a255c0a23982bd6783eefb742b611cfb7bc9a20e1c03109dac54dedddb0b
libvirt-login-shell-1.2.17-13.el7_2.7.x86_64.rpm SHA-256: e270edf31ad15c76d1d879612c1b2305fd1a22d1f3c49949e5170952d89a8c02

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter