Moderate: libvirt security, bug fix, and enhancement update

Topic

An update for libvirt is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

The following packages have been upgraded to a later upstream version: libvirt (9.5.0). (BZ#2175785)

Security Fix(es):

• libvirt: improper locking in virStoragePoolObjListSearch may lead to denial of service (CVE-2023-3750)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, libvirtd will be restarted automatically.

Affected Products

• Red Hat Enterprise Linux for x86_64 9 x86_64
• Red Hat Enterprise Linux for IBM z Systems 9 s390x
• Red Hat Enterprise Linux for Power, little endian 9 ppc64le
• Red Hat Enterprise Linux for ARM 64 9 aarch64
• Red Hat CodeReady Linux Builder for x86_64 9 x86_64
• Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le
• Red Hat CodeReady Linux Builder for ARM 64 9 aarch64
• Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x

Fixes

• BZ - 1961326 - [aarch64] [libvirt] support pvpanic-pci instantiation for aarch64
• BZ - 2000410 - using virt-qemu-run to start guest with luks image failed with error "No current identity to elevate"
• BZ - 2004850 - Not clear xattr of image file on target host when storage migration failed after image have created on target host if vm uses slic table but slic table doesn't exist on target host and target host is in permissive mode
• BZ - 2014030 - Guest can not start with nvme disk and hostdev interface together
• BZ - 2032406 - Support blob for virtio-vga/virtio-gpu device -- libvirt
• BZ - 2035985 - The description of --timeout should be updated in sub-daemon's manpage except virtqemud
• BZ - 2037734 - Reflect different limits in CGroupV1/V2 for cpu.weight
• BZ - 2078693 - libvirt can not identify shared memory after restarting virtqemud
• BZ - 2119007 - [RFE] support setting the poll* attributes in iothread XML
• BZ - 2137346 - RFE: support 'TCO' watchdog built-in to Q35 machine
• BZ - 2138150 - With different nodeset, strict host numa memory binding and guest specified numa memory binding make guest vm fail to start
• BZ - 2143158 - nodedev-dumpxml fails to read mdev attributes for transient device
• BZ - 2151064 - Setting multiple nodes for preferred guest specified numa tuning mode doesn't show any error
• BZ - 2154750 - [numatune][cputune] qemu-kvm: Setting CPU affinity failed: Invalid argument
• BZ - 2156300 - Unknown error when detaching a pty console
• BZ - 2160356 - Libvirt should not allow to add device selinux label without label string when relabel="yes"
• BZ - 2160435 - A hot-plugged scsi CDROM can't be ejected
• BZ - 2161965 - libvirt: Add support for firmware images in qcow2 format
• BZ - 2166235 - vm start successfully even there is a pre-created tap device with the same name (type="direct")
• BZ - 2171384 - Should report error when trying to hotplug virtiofs devices with the same target dir
• BZ - 2171860 - [libvirt] migration: larger->E3: vm failed with "failed to set MSR 0x202 to 0x380000000000"
• BZ - 2171973 - Unexpected error show in virtqemud log when detaching a virtiofs device
• BZ - 2173142 - [snapshot] cannot delete snapshot when one of the disk's snapshot mode is 'manual'
• BZ - 2174397 - [snapshot] failed to validate snapshot xml with "<snapshotDeleteInProgress/>"
• BZ - 2174700 - [snapshot] when deleting external snapshot with new disk attached, error popped by snapshot actually deleted
• BZ - 2175449 - Networking receive/transmit_bytes metrics values are swapped for pre-created macvtap device
• BZ - 2175582 - virtqemud coredump sometimes when try to start kvm guest with interface type=null/vds
• BZ - 2175785 - Rebase libvirt in RHEL 9.3.0
• BZ - 2176215 - [libvirt] allow configuring host-phys-bits-limit
• BZ - 2176917 - 3 minor issues related to virt-qemu-sev-validate command [rhel-9.3.0]
• BZ - 2176921 - Guest start successfully with passt backend interface even the passt process failed to start [rhel-9.3.0]
• BZ - 2176923 - Support restarting passt process to preserve connectivity in case of inadvertant termination [rhel-9.3.0]
• BZ - 2176924 - Logs are spammed with ' Domain id=7 is tainted: custom-ga-command' message [rhel-9.3.0]
• BZ - 2178866 - virt-admin coredumped when executing 'virt-admin srv-threadpool-info virtqemud'
• BZ - 2178885 - virt-host-validate shows the system iommu support is 'Unknown' on aarch64 system
• BZ - 2179030 - libvirt is unable to start passt process when SELinux is enforcing [rhel-9.3.0]
• BZ - 2180679 - Restore guest fails after unplugging dimm memory device with virtio-mem memory device attached
• BZ - 2181234 - Set administrator@vsphere.local as default username when connect VMware source by virsh
• BZ - 2181235 - The error isn't clear when there is no vcenter or ESXi host username but input password via -ip option in v2v command line
• BZ - 2182961 - virtqemud coredump when hotunplug a hostdev interface
• BZ - 2184966 - Failed to migrate uefi vm with firmware XML config
• BZ - 2185184 - Specifying restrictive numa tuning mode per each guest numa node doesn't work
• BZ - 2187133 - Two iTCO watchdogs should not be supported
• BZ - 2187278 - Plug watchdog devices with different action from the existing watchdog devices should be failed
• BZ - 2193315 - Fail to hot-plug a qcow2 image with fdgroup
• BZ - 2196178 - libvirt: Changes to firmware selection
• BZ - 2203709 - Fail to set HMAT cache none associativity or none policy
• BZ - 2208946 - Wrong numa tuning mode applies on numa memory when "interleave" or "preferred" mode mixed with "restrictive" mode
• BZ - 2209191 - VM with passt fails to start if logFile is set to /var/log
• BZ - 2209853 - Starting vm with an interface from hostdev network reports unexpected error
• BZ - 2210058 - libvirt rpm scripts reset systemd units
• BZ - 2210287 - The "dev" setting is ignored when it is used without address for passt interface
• BZ - 2216212 - [RHEL9] Libvirt still requires a (DIMM) slot for virtio-mem devices
• BZ - 2222210 - CVE-2023-3750 libvirt: improper locking in virStoragePoolObjListSearch may lead to denial of service
• BZ - 2224016 - virtqemud: internal error: Missing or invalid CPU address size in /proc/cpuinfo
• BZ - 2236057 - Failed to preset virtsecretd/virtsecretd*.socket service when installing libvirt pkgs
• BZ - 2236500 - libvirt-daemon marked for autoremoval after upgrade

CVEs

• CVE-2023-3750

References

• https://access.redhat.com/security/updates/classification/#moderate
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index