Stay Connected:

ELSA-2013-1536

ELSA-2013-1536 - libguestfs security, bug fix, and enhancement update

Type:SECURITY
Impact:MODERATE
Release Date:2013-11-26

Description


[1:1.20.11-2]
- Fix CVE-2013-4419: insecure temporary directory handling for
guestfish's network socket
resolves: rhbz#1019737

[1:1.20.11-1]
- Rebase to libguestfs 1.20.11.
resolves: rhbz#958183
- Remove buildnet: builds now detect network automatically.
- The rhel-6.x branches containing the patches used in RHEL are
now stored on a public git repository
(https://github.com/libguestfs/libguestfs/branches).
- Compare spec file to Fedora 18 and fix where necessary.
- Backport new APIs part-get-gpt-type and part-set-gpt-type
resolves: rhbz#965495
- Fix DoS (abort) due to a double free flaw when inspecting certain guest
files / images (CVE-2013-2124)
resolves: rhbz#968337
- libguestfs-devel should depend on an explicit version of
libguestfs-tools-c, in order that the latest package is pulled in.
- Rebuild against Augeas >= 1.0.0-5
resolves: rhbz#971207
- Backport Windows inspection changes
resolves: rhbz#971090
- Add back state test commands to guestfish
resolves: rhbz#971664
- Work around problem with ntfsresize command in RHEL 6
resolves: rhbz#971326
- Fix txz-out API
resolves: rhbz#972413
- Move virt-sysprep to the libguestfs-tools-c package since it's no longer
a shell script
resolves: rhbz#975572
- Fix hostname inspection because of faulty Augeas path expression
resolves: rhbz#975377
- Calculate appliance root correctly when iface drives are added
resolves: rhbz#975760
- Add notes about resizing Windows disk images to virt-resize documentation
resolves: rhbz#975753
- Remove dependency on lsscsi, not available in 6Client
resolves: rhbz#973425
- Fix yum cache copy so it works if there are multiple repos
resolves: rhbz#980502
- Fix hivex-commit API to fail with relative paths
resolves: rhbz#980372
- Better documentation for filesystem-available API
resolves: rhbz#980358
- Fix double free when kernel link fails during launch
resolves: rhbz#983690
- Fix virt-sysprep --firstboot option
resolves: rhbz#988863
- Fix cap-get-file so it returns empty string instead of error on no cap
resolves: rhbz#989352
- Better documentation for acl-set-file
resolves: rhbz#985269
- Fix bogus waitpid error when using guestfish --remote
resolves: rhbz#996825
- Disable 9p support
resolves: rhbz#997884
- Document that guestfish --remote doesn't work with certain other arguments
resolves: rhbz#996039
- Enable kvmclock in the appliance to reduce clock instability
resolves: rhbz#998108
- Fix 'sh' command before mount causes daemon to segfault
resolves: rhbz#1000122
- Various fixes to tar-out 'excludes' (RHBZ#1001875)
- Document use of glob + rsync-out (RHBZ#1001876)
- Document mke2fs blockscount (RHBZ#1002032)


Related CVEs


CVE-2013-4419

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 6 (x86_64) libguestfs-1.20.11-2.el6.src.rpm4a9cac990165bec2086e9b5f30726d31af06ea3f5cd7e9f2a359addb9ebf265cELSA-2017-0564ol6_u5_x86_64_base
libguestfs-1.20.11-2.el6.src.rpm4a9cac990165bec2086e9b5f30726d31af06ea3f5cd7e9f2a359addb9ebf265cELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-1.20.11-2.el6.x86_64.rpm1017f0aa4a0b79b2db0bfac5aa48c3774ad96c91b8548be6ab2053f2776849beELSA-2017-0564ol6_u5_x86_64_base
libguestfs-1.20.11-2.el6.x86_64.rpm1017f0aa4a0b79b2db0bfac5aa48c3774ad96c91b8548be6ab2053f2776849beELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-devel-1.20.11-2.el6.x86_64.rpm238ca0015ce54619e01b9327b85876ee401cfa5d81437c12d5afecb757f0097fELSA-2017-0564ol6_u5_x86_64_base
libguestfs-devel-1.20.11-2.el6.x86_64.rpm238ca0015ce54619e01b9327b85876ee401cfa5d81437c12d5afecb757f0097fELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-java-1.20.11-2.el6.x86_64.rpmed3da1282728e03f42d4310aad2a1d681690b1952fef578b6b7407d475a6b274ELSA-2017-0564ol6_u5_x86_64_base
libguestfs-java-1.20.11-2.el6.x86_64.rpmed3da1282728e03f42d4310aad2a1d681690b1952fef578b6b7407d475a6b274ELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-java-devel-1.20.11-2.el6.x86_64.rpmc2a52e64bc13dd0682717fd21ca740126095e0f8aa88f50498ee7ac20361332eELSA-2017-0564ol6_u5_x86_64_base
libguestfs-java-devel-1.20.11-2.el6.x86_64.rpmc2a52e64bc13dd0682717fd21ca740126095e0f8aa88f50498ee7ac20361332eELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-javadoc-1.20.11-2.el6.x86_64.rpm475d685c115cee4f5bb2033b2317579e78c267dbf9ecfe6cdb8d993475622e63ELSA-2017-0564ol6_u5_x86_64_base
libguestfs-javadoc-1.20.11-2.el6.x86_64.rpm475d685c115cee4f5bb2033b2317579e78c267dbf9ecfe6cdb8d993475622e63ELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-tools-1.20.11-2.el6.x86_64.rpm04d33095766fba33b56f1bddaeb056a101faee81fcd610bfe28580f29a258f5bELSA-2017-0564ol6_u5_x86_64_base
libguestfs-tools-1.20.11-2.el6.x86_64.rpm04d33095766fba33b56f1bddaeb056a101faee81fcd610bfe28580f29a258f5bELSA-2017-0564ol6_x86_64_latest_archive
libguestfs-tools-c-1.20.11-2.el6.x86_64.rpm7f39e382dc87e3cf9e813e9089a60e15f91928ef9933f28cde8857bb2056499aELSA-2017-0564ol6_u5_x86_64_base
libguestfs-tools-c-1.20.11-2.el6.x86_64.rpm7f39e382dc87e3cf9e813e9089a60e15f91928ef9933f28cde8857bb2056499aELSA-2017-0564ol6_x86_64_latest_archive
ocaml-libguestfs-1.20.11-2.el6.x86_64.rpm78b0fabe422adf31afa3f0bafc3072de260085521b998528ef9d0ec781fc8950ELSA-2017-0564ol6_u5_x86_64_base
ocaml-libguestfs-1.20.11-2.el6.x86_64.rpm78b0fabe422adf31afa3f0bafc3072de260085521b998528ef9d0ec781fc8950ELSA-2017-0564ol6_x86_64_latest_archive
ocaml-libguestfs-devel-1.20.11-2.el6.x86_64.rpm3f04a05d0c5b00fe1317da5815346b042614a3943e7624677158219759bc0449ELSA-2017-0564ol6_u5_x86_64_base
ocaml-libguestfs-devel-1.20.11-2.el6.x86_64.rpm3f04a05d0c5b00fe1317da5815346b042614a3943e7624677158219759bc0449ELSA-2017-0564ol6_x86_64_latest_archive
perl-Sys-Guestfs-1.20.11-2.el6.x86_64.rpm1a2f17db84f544833d53a633e9ca44a8fdb7e0f11359b2fdd0a14258c8b59371ELSA-2017-0564ol6_u5_x86_64_base
perl-Sys-Guestfs-1.20.11-2.el6.x86_64.rpm1a2f17db84f544833d53a633e9ca44a8fdb7e0f11359b2fdd0a14258c8b59371ELSA-2017-0564ol6_x86_64_latest_archive
python-libguestfs-1.20.11-2.el6.x86_64.rpmc3562f59a44921155bda7bd70360e0a486a971f0c4b218fa1d3db053fef13c74ELSA-2017-0564ol6_u5_x86_64_base
python-libguestfs-1.20.11-2.el6.x86_64.rpmc3562f59a44921155bda7bd70360e0a486a971f0c4b218fa1d3db053fef13c74ELSA-2017-0564ol6_x86_64_latest_archive
ruby-libguestfs-1.20.11-2.el6.x86_64.rpm9d6b94993ec19d41c4570f8a65bc67eea8e796fd0352665eef6b6954e06fc419ELSA-2017-0564ol6_u5_x86_64_base
ruby-libguestfs-1.20.11-2.el6.x86_64.rpm9d6b94993ec19d41c4570f8a65bc67eea8e796fd0352665eef6b6954e06fc419ELSA-2017-0564ol6_x86_64_latest_archive



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights