CVE-2014-8136 deadlock on failed migration

Debian Bug report logs - #773856
CVE-2014-8136 deadlock on failed migration

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Guido Günther <agx@sigxcpu.org>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: CVE-2014-8136 deadlock on failed migration

Date: Wed, 24 Dec 2014 09:35:35 +0100

Source: libvirt
Version: 1.2.9-6
Severity: important
Tags: security

Current stable is not affected.


-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-updates'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-rc6 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Message #12 received at 773856-close@bugs.debian.org (full text, mbox, reply):

From: Guido Günther <agx@sigxcpu.org>

To: 773856-close@bugs.debian.org

Subject: Bug#773856: fixed in libvirt 1.2.9-7

Date: Wed, 24 Dec 2014 10:21:13 +0000

Source: libvirt
Source-Version: 1.2.9-7

We believe that the bug you reported is fixed in the latest version of
libvirt, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 773856@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Guido Günther <agx@sigxcpu.org> (supplier of updated libvirt package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 24 Dec 2014 10:33:31 +0100
Source: libvirt
Binary: libvirt-bin libvirt-clients libvirt-daemon libvirt-daemon-system libvirt0 libvirt0-dbg libvirt-doc libvirt-dev libvirt-sanlock
Architecture: source amd64 all
Version: 1.2.9-7
Distribution: unstable
Urgency: medium
Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers@lists.alioth.debian.org>
Changed-By: Guido Günther <agx@sigxcpu.org>
Description:
 libvirt-bin - programs for the libvirt library
 libvirt-clients - programs for the libvirt library
 libvirt-daemon - programs for the libvirt library
 libvirt-daemon-system - Libvirt daemon configuration files
 libvirt-dev - development files for the libvirt library
 libvirt-doc - documentation for the libvirt library
 libvirt-sanlock - library for interfacing with different virtualization systems
 libvirt0   - library for interfacing with different virtualization systems
 libvirt0-dbg - library for interfacing with different virtualization systems
Closes: 769600 770202 773503 773706 773855 773856 773858
Changes:
 libvirt (1.2.9-7) unstable; urgency=medium
 .
   * [d7df883] CVE-2014-8131: Fix possible deadlock and segfault in
     qemuConnectGetAllDomainStats()
     (Closes: #773858)
   * [d0085e0] qemu: bulk stats: Fix logic in monitor handling
   * [b5e081c] CVE-2014-8135: storage: fix crash caused by no check return
     before set close
     (Closes: #773855)
   * [a5452de] CVE-2014-8136: qemu: migration: Unlock vm on failed ACL check in
     protocol v2 APIs
     (Closes: #773856)
   * [5aaafc9] qemu: Fix crash in tunnelled migration (Closes: #773503)
   * [87b3713] lxc: Fix crash when using interface type 'direct'
     Thanks to Bastian Blank for the patch (Closes: #769600)
   * [17807c0] Document surprises on CPU microcode updates (Closes: #773706)
   * [66a3ca6] Install lock drivers (Closes: #773706)
   * [f6ffda7] vbox: fix a bug in _machineStateInactive (Closes: #770202)
Checksums-Sha1:
 e3d6e757b0dec65b94272bb67ec8306f4912da4b 3573 libvirt_1.2.9-7.dsc
 a60daf14780b93e7ab0363565c489ab710e3eff5 54736 libvirt_1.2.9-7.debian.tar.xz
 02277076690180060b613004ff28ea0cc6f50bf3 35866 libvirt-bin_1.2.9-7_amd64.deb
 0d0dd7d6b2e9ef5441fcf448c2835486b1f07fb2 524140 libvirt-clients_1.2.9-7_amd64.deb
 e9f9783e93b7f6afc74e40eb20fba6be3b3a8aca 1854682 libvirt-daemon_1.2.9-7_amd64.deb
 ba3cd41796a87a113c1407325ed942b1a93f0657 147958 libvirt-daemon-system_1.2.9-7_amd64.deb
 088a1e3fdcf89ee49350ddb3a4fca4ab2300c516 2971200 libvirt0_1.2.9-7_amd64.deb
 c05dd328d539ffa17a104f58e1cf144111088d9b 5432692 libvirt0-dbg_1.2.9-7_amd64.deb
 7479a106147ecf12dd0894354eb0930671ff8edf 1209104 libvirt-doc_1.2.9-7_all.deb
 59d7a5b01d0709d038acab582eab54bf8a5b39c4 143878 libvirt-dev_1.2.9-7_amd64.deb
 48513f1a3c2c758219fc10baf3f816b7e4682d82 68734 libvirt-sanlock_1.2.9-7_amd64.deb
Checksums-Sha256:
 7a2f9dbe1aad9d3db3db5555c54205e9a94edf8d6c8d42bf198eb3d6b4f95f0a 3573 libvirt_1.2.9-7.dsc
 c8605d775924c4856c0f65fa9dc12ebb06770b86eaa9f2f356fffb7ed047744c 54736 libvirt_1.2.9-7.debian.tar.xz
 38f092f08b8d7d5a6592e7de50b96e5e9cb709b389a247158da3f8b18d1a7a1f 35866 libvirt-bin_1.2.9-7_amd64.deb
 94ae5be230a5336d64afc45a7e5c8b4e2842e0fd4a3ae381fb9716874f452737 524140 libvirt-clients_1.2.9-7_amd64.deb
 b45406d2ba3383a21ed7d451c88b7a2a8e82c884c913888135aef02a87381417 1854682 libvirt-daemon_1.2.9-7_amd64.deb
 7eeb3610be01e816a465ff49c1f6ec6e2913d084342d0edbb35d4e8fb7cde338 147958 libvirt-daemon-system_1.2.9-7_amd64.deb
 e7f158a4c318ecea85fc01a70f18d8151267691229d96f39ab42c160604960a2 2971200 libvirt0_1.2.9-7_amd64.deb
 b06f893938fd8fa4e18e7da166a2598ee1f19d26c4371f72fb230c1c79da34af 5432692 libvirt0-dbg_1.2.9-7_amd64.deb
 5547ad277f187b8f2be7494cbe1c199f36b1ed29069811c4aed5da5a2a655d0f 1209104 libvirt-doc_1.2.9-7_all.deb
 301bb5d882375b9b62ca062a08d51135a8a5cc06396aa8fc8e60cf4ca51e5c31 143878 libvirt-dev_1.2.9-7_amd64.deb
 b39855d153d56cbddab9cd1d80dc1961e0b6d8ee5bca2122ffaa299908c294bb 68734 libvirt-sanlock_1.2.9-7_amd64.deb
Files:
 b5e9e576ba3a0ee73cbff18fa176668b 3573 libs optional libvirt_1.2.9-7.dsc
 637fb987357bac46484882afe97acb27 54736 libs optional libvirt_1.2.9-7.debian.tar.xz
 88acdd926e511e8d85b44dee07764199 35866 oldlibs extra libvirt-bin_1.2.9-7_amd64.deb
 05dcb83ba0746b5a89941025e240db8a 524140 admin optional libvirt-clients_1.2.9-7_amd64.deb
 9aed8fb49e684f3292d54b2f7340315d 1854682 admin optional libvirt-daemon_1.2.9-7_amd64.deb
 d5626e440a2b19f066249df03c363ca0 147958 admin optional libvirt-daemon-system_1.2.9-7_amd64.deb
 6c9c576d1e2837552ad82f1d51cfa550 2971200 libs optional libvirt0_1.2.9-7_amd64.deb
 a66dd464aa4e630a204455ed512305de 5432692 debug extra libvirt0-dbg_1.2.9-7_amd64.deb
 067ad243b93e132b9fbad574d54ef5ec 1209104 doc optional libvirt-doc_1.2.9-7_all.deb
 70efb427af2b5242f8d420b0dbd0ab15 143878 libdevel optional libvirt-dev_1.2.9-7_amd64.deb
 2f9544d5da2d9e40ee544f0867c260c1 68734 libs extra libvirt-sanlock_1.2.9-7_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIVAwUBVJqRKQe4t7DqmBILAQiIGA//W6vbfF/lpHmJ4Q1m0lYNhlcsAnVaotuY
nEdnjHP1HeL4umItCVtEcC8s/qdzlEktcJxQqo3F3EbqRD3g2myVmwvzRX8z1J3J
RDtx2h4IKfxnOdkz+hFPQo+vYRoT7kVstPhiIfl6hKygllleyEj6ka3gdaFPpvln
6kNfZvT66h4/FgTyZRrDZG0KtwDNh9S4aRAeowRHpROqmj16uOoNn1ui1RiT0HLS
gzEqROA763bpF5ryYRTGCkUlaHS0zZb3izqyZnLCi/yiQ5vozFDaPM1V0leGuib+
6AbE6ixoq/OZkA8uEVXaCe4fO7XNl/UQdzVaDVpWHseZs18jbg6JUy8LdQL4dPIy
LtRsNRJfRh7vHEzkIsk5dAsRqTa+BDxr5aIBQ0kosYXc4PQQIp4PRkuRkNZxaQxk
MU4QYVu6CDKwuhXOKO88iZlPSHrjajOiGB+u1C8ojQiwemNPgdUDCqG74p5KDpOI
tx5AkB5jOnROtLwB7ulI0tonyeAn84RdxFJtcOQC340Uau2RsScLK98S+tOiTlBx
AqohILF97GybbHyZQNL2MKDyVCQduEw8R8yvpziI2tTBXNXcnLc3H41WU4VPVucS
lUiE0XtIkRZNYnsW85UtezjrcpTuWWLme2/AWW3BZ6Lb9r8O7siOhVjqhj4NBD/x
w67RaqSrzo0=
=S79y
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.