bug#36634: Virtual Machine Manager (virt-manager)

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#36634: Virtual Machine Manager (virt-manager)

From:	Tobias Geerinckx-Rice
Subject:	bug#36634: Virtual Machine Manager (virt-manager)
Date:	Mon, 23 Sep 2019 06:30:14 +0200

Chrisen,

Chris Marusich 写道：

In the meantime, should we revert to version 5.4.0 in Guix? I'mnotsure if there are any security vulnerabilities between 5.4.0 andthemost recent release, but this bug is currently preventing mefromcreating any VMs at all in Guix using virt-manager, which ispretty bad.


Yes! (which is why I originally updated this package):

 v5.5.0 (2019-07-02)
   Security

api: Prevent access to several APIs over read-onlyconnectionsCertain APIs give root-equivalent access to the host,and assuch should be limited to privilegedusers. CVE-2019-10161,

           CVE-2019-10166, CVE-2019-10167, CVE-2019-10168.

  https://libvirt.org/news.html

It might be easy to backport. I didn't try, and I no longer uselibvirt myself.

What's weird (maybe; I haven't kept up with the thread) is that Iused libvirt 5.5.0 (and yes, it was 5.5.0) for a while withoutproblems. I don't remember whether I created any *new* VMs,though.


Kind regards,

T G-R

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

bug#36634: Virtual Machine Manager (virt-manager), Christopher Baines, 2019/09/08
- bug#36634: Virtual Machine Manager (virt-manager), Chris Marusich, 2019/09/23
  - bug#36634: Virtual Machine Manager (virt-manager), Tobias Geerinckx-Rice <=

Prev by Date: bug#36634: Virtual Machine Manager (virt-manager)
Next by Date: bug#37479: International locale error
Previous by thread: bug#36634: Virtual Machine Manager (virt-manager)
Next by thread: bug#37345: Icecat doesn't display numbers on Guix System
Index(es):
- Date
- Thread