Advisories » MGASA-2018-0262

Updated libvirt packages fix security vulnerability

Publication date: 31 May 2018
Modification date: 31 May 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-3639

Description

Systems with microprocessors utilizing speculative execution and
speculative execution of memory reads before the addresses of all
prior memory writes are known may allow unauthorized disclosure of
information to an attacker with local user access via a side-channel
analysis, aka Speculative Store Bypass (SSB), Variant 4
(CVE-2018-3639).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=23072
• https://access.redhat.com/security/cve/cve-2018-3639
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3639

SRPMS

6/core

• libvirt-3.10.0-1.3.mga6