Libvirt Security Notice: LSN-2019-0009 ====================================== Summary: QEMU agent denial of service Reported on: 20190502 Published on: 20190502 Fixed on: 20191212 Reported by: Tomáš Golembiovský Patched by: Jonathon Jongsma See also: CVE-2019-20485 Description ----------- The libvirt code that communicates via the guest agent held the monitor job. Impact ------ A malicious guest administrator can cause the libvirtd daemon to block any other operations with the guest. Workaround ---------- Remove the guest agent configuration from any virtual machine that is untrustworthy and reboot it Affected product ---------------- Name: libvirt Repository: https://gitlab.com/libvirt/libvirt Branch: master Broken in: v0.9.10 Broken in: v0.9.11 Broken in: v0.9.12 Broken in: v0.9.13 Broken in: v0.10.0 Broken in: v0.10.1 Broken in: v0.10.2 Broken in: v1.0.0 Broken in: v1.0.1 Broken in: v1.0.2 Broken in: v1.0.3 Broken in: v1.0.4 Broken in: v1.0.5 Broken in: v1.0.6 Broken in: v1.1.0 Broken in: v1.1.1 Broken in: v1.1.2 Broken in: v1.1.3 Broken in: v1.1.4 Broken in: v1.2.0 Broken in: v1.2.1 Broken in: v1.2.2 Broken in: v1.2.3 Broken in: v1.2.4 Broken in: v1.2.5 Broken in: v1.2.6 Broken in: v1.2.7 Broken in: v1.2.8 Broken in: v1.2.9 Broken in: v1.2.10 Broken in: v1.2.11 Broken in: v1.2.12 Broken in: v1.2.13 Broken in: v1.2.14 Broken in: v1.2.15 Broken in: v1.2.16 Broken in: v1.2.17 Broken in: v1.2.18 Broken in: v1.2.19 Broken in: v1.2.20 Broken in: v1.2.21 Broken in: v1.3.0 Broken in: v1.3.1 Broken in: v1.3.2 Broken in: v1.3.3 Broken in: v1.3.4 Broken in: v1.3.5 Broken in: v2.0.0 Broken in: v2.1.0 Broken in: v2.2.0 Broken in: v2.3.0 Broken in: v2.4.0 Broken in: v2.5.0 Broken in: v3.0.0 Broken in: v3.1.0 Broken in: v3.2.0 Broken in: v3.3.0 Broken in: v3.4.0 Broken in: v3.5.0 Broken in: v3.6.0 Broken in: v3.7.0 Broken in: v3.8.0 Broken in: v3.9.0 Broken in: v3.10.0 Broken in: v4.0.0 Broken in: v4.1.0 Broken in: v4.2.0 Broken in: v4.3.0 Broken in: v4.4.0 Broken in: v4.5.0 Broken in: v4.6.0 Broken in: v4.7.0 Broken in: v4.8.0 Broken in: v4.9.0 Broken in: v4.10.0 Broken in: v5.0.0 Broken in: v5.1.0 Broken in: v5.2.0 Broken in: v5.3.0 Broken in: v5.4.0 Broken in: v5.5.0 Broken in: v5.6.0 Broken in: v5.7.0 Broken in: v5.8.0 Broken in: v5.9.0 Broken in: v5.10.0 Broken in: v6.0.0 Fixed in: v6.1.0 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Fixed by: e005c95f56fee9ed780be7f8db103d690bd34cbd Fixed by: a663a860819287e041c3de672aad1d8543098ecc Fixed by: 0a9893121187c0c3f9807e9164366e1f6977619c Fixed by: 1cb8bc52c1035573a0c1a87f724a6c7dfee82f12 Fixed by: 95f5ac9ae52455e9da47afc95fa31c9456ac27ae Fixed by: d9605abed68af4b65c4e04386346a2fd372d7ab9 Fixed by: 4cc90c2e62df653e909ad31fd810224bf8bcf913 Fixed by: d61f95cf6a6fbd564e104c168d325581acd9cd8d Branch: v0.9.11-maint Broken in: v0.9.11.1 Broken in: v0.9.11.2 Broken in: v0.9.11.3 Broken in: v0.9.11.4 Broken in: v0.9.11.5 Broken in: v0.9.11.6 Broken in: v0.9.11.7 Broken in: v0.9.11.8 Broken in: v0.9.11.9 Broken in: v0.9.11.10 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v0.9.12-maint Broken in: v0.9.12.1 Broken in: v0.9.12.2 Broken in: v0.9.12.3 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v0.10.2-maint Broken in: v0.10.2.1 Broken in: v0.10.2.2 Broken in: v0.10.2.3 Broken in: v0.10.2.4 Broken in: v0.10.2.5 Broken in: v0.10.2.6 Broken in: v0.10.2.7 Broken in: v0.10.2.8 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.3-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.4-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.5-maint Broken in: v1.0.5.1 Broken in: v1.0.5.2 Broken in: v1.0.5.3 Broken in: v1.0.5.4 Broken in: v1.0.5.5 Broken in: v1.0.5.6 Broken in: v1.0.5.7 Broken in: v1.0.5.8 Broken in: v1.0.5.9 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.0.6-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.1.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.1.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.1.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.1.3-maint Broken in: v1.1.3.1 Broken in: v1.1.3.2 Broken in: v1.1.3.3 Broken in: v1.1.3.4 Broken in: v1.1.3.5 Broken in: v1.1.3.6 Broken in: v1.1.3.7 Broken in: v1.1.3.8 Broken in: v1.1.3.9 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.1.4-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.3-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.4-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.5-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.6-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.7-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.8-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.9-maint Broken in: v1.2.9.1 Broken in: v1.2.9.2 Broken in: v1.2.9.3 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.10-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.11-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.12-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.13-maint Broken in: v1.2.13.1 Broken in: v1.2.13.2 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.14-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.15-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.16-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.17-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.18-maint Broken in: v1.2.18.1 Broken in: v1.2.18.2 Broken in: v1.2.18.3 Broken in: v1.2.18.4 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.19-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.20-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.2.21-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.3-maint Broken in: v1.3.3.1 Broken in: v1.3.3.2 Broken in: v1.3.3.3 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.4-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v1.3.5-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v2.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v2.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v2.2-maint Broken in: v2.2.1 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v3.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v3.2-maint Broken in: v3.2.1 Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v3.7-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.3-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.4-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.5-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.6-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.7-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.8-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.9-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v4.10-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v5.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v5.1-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v5.1.0-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v5.2-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9 Branch: v5.3-maint Broken by: c160ce3316852a797d7b06b4ee101233866e69a9