-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEUMSg3c8x5FLOsZtRZWnYVadEvpMFAmY6HU0ACgkQZWnYVadE
vpPQnA//US/FJnNXjIsOh3CM9OBhMdxl3nLIpdzZNhsxdzJjEIvgkJ74qZGLryBy
sfqSaoj0TnTFBYkQPpuuZSdNIvJHJzt6B38aGeBY57xqlj0nZnv+EmXLRuBQ2C3A
VApq+HhWahS8BHquGc9kIHBh5MVHVltuEzD4Fzl2Nqx+2U9TCpbsUCyCy1IbK/gG
XeyGTgqcp4mEiWhhGsqJHDTjmoQq/WtlhfsJdGaVcqypMNyUqONNMk8S0NH09SkX
LzGsH4w0N1X478ZkZriDx7b1LGzUdc1dXs+3toGZkTN+4NaJDoy7dQHk5XRD5xhT
O4WNFBPWqroEmSetwe2I6YW+J2PHiQeR06+kUK3GDxvIyyMAXGLYjsdfHXYZlwHt
nMtKrovkcsE2xzTqilYLKyJmv2IwXXfAgtR6rd+jF8018cWg1K11EzIKVokCX9x5
HfyHa3+5iJBFgKC/9+yR35YwdSyjgDJZMzk+NNUnKshhS0MjGnykjg2rv0Wo36np
UHqoMzQX1jfwdAKgntwSlvGfYN8XR8p4ivalWEUg4zXLPO5qdg8M0O13VvKUKNM6
tOMIuRqUd3EY+PsOELHngsPIaqPO5vJxpBFd80TCu57MXje7kMuM9jPDfxC9N21M
Ooputx5N2dEyRV/xuanSQ2hv/XtdZmBRn4vph5JICneK+/a00oM=
=NJ5g
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-6763-1
May 07, 2024
libvirt vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.04 LTS
Summary:
libvirt could allow unintended access to the virtproxyd service.
Software Description:
- libvirt: Libvirt virtualization toolkit
Details:
Martin Širokov discovered that libvirt incorrectly handled certain memory
operations. A local attacker could possibly use this issue to access
virtproxyd without authorization.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
libvirt-daemon 10.0.0-2ubuntu8.2
libvirt-daemon-system 10.0.0-2ubuntu8.2
libvirt0 10.0.0-2ubuntu8.2
After a standard system update you need to reboot your computer to make all
the necessary changes.
References:
https://ubuntu.com/security/notices/USN-6763-1
CVE-2024-4418
Package Information:
https://launchpad.net/ubuntu/+source/libvirt/10.0.0-2ubuntu8.2
No comments:
Post a Comment