899484 – (CVE-2014-3657) VUL-1: CVE-2014-3657: libvirt: domain_conf: domain deadlock DoS

Bug 899484 (CVE-2014-3657) - VUL-1: CVE-2014-3657: libvirt: domain_conf: domain deadlock DoS

Summary: VUL-1: CVE-2014-3657: libvirt: domain_conf: domain deadlock DoS

Status:	RESOLVED FIXED

Alias:	CVE-2014-3657

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P5 - None Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/108756/
Whiteboard:	maint:released:sle11-sp3:60370
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2014-10-02 07:07 UTC by Victor Pereira
Modified:	2015-02-24 10:37 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Victor Pereira 2014-10-02 07:07:21 UTC

CVE-2014-3657


A denial of service flaw was found in the way libvirt's virConnectListAllDomains() function computed the number of used domains. A remote attacker able to establish a read-only connection to libvirtd could use this flaw to make any domain operations within libvirt unresponsive.


Introduced by:
http://libvirt.org/git/?p=libvirt.git;a=commit;h=2c680804

References:

http://libvirt.org/git/?p=libvirt.git;a=commit;h=fc22b2e74890873848b43fffae43025d22053669 (patch)
https://bugzilla.redhat.com/show_bug.cgi?id=1145667
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3657

Comment 2 James Fehlig 2014-10-02 16:34:05 UTC

Affects libvirt versions all the way back to 0.9.13, hence affected products are openSUSE12.3, openSUSE13.1, SLE11 SP3, and SLE12.  Factory is not affected since the fix is included in libvirt 1.2.9.

For openSUSE12.3, started maintenancereq #253679
For openSUSE13.1, started maintenancereq #253680
For SLE11 SP3 and SLE12, have the fix queued for a future maintenance update.

AFAIK, I'm done here.  Passing bug to security...

Comment 8 Marcus Meissner 2015-02-09 14:12:47 UTC

released

Comment 9 Swamp Workflow Management 2015-02-09 15:08:48 UTC

SUSE-SU-2015:0241-1: An update that solves three vulnerabilities and has 9 fixes is now available.

Category: security (moderate)
Bug References: 891936,899334,899484,900587,902976,903756,904176,904426,904432,909828,910862,911737
CVE References: CVE-2014-3657,CVE-2014-7823,CVE-2014-8136
Sources used:
SUSE Linux Enterprise Workstation Extension 12 (src):    libvirt-1.2.5-21.1
SUSE Linux Enterprise Software Development Kit 12 (src):    libvirt-1.2.5-21.1
SUSE Linux Enterprise Server 12 (src):    libvirt-1.2.5-21.1
SUSE Linux Enterprise Desktop 12 (src):    libvirt-1.2.5-21.1

Comment 10 Swamp Workflow Management 2015-02-23 23:07:46 UTC

SUSE-SU-2015:0357-1: An update that solves 6 vulnerabilities and has 9 fixes is now available.

Category: security (moderate)
Bug References: 843074,852397,878350,879665,897654,897783,899144,899484,900084,904176,905097,907805,908381,910145,911742
CVE References: CVE-2014-3633,CVE-2014-3640,CVE-2014-3657,CVE-2014-7823,CVE-2014-7840,CVE-2014-8106
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP3 (src):    libvirt-1.0.5.9-0.19.3, libvirt-1.0.5.9-0.19.6
SUSE Linux Enterprise Server 11 SP3 (src):    kvm-1.4.2-0.21.4, kvm-1.4.2-0.21.5, libvirt-1.0.5.9-0.19.3, libvirt-1.0.5.9-0.19.5, libvirt-1.0.5.9-0.19.6
SUSE Linux Enterprise Desktop 11 SP3 (src):    kvm-1.4.2-0.21.4, libvirt-1.0.5.9-0.19.3