Endpoint Vulnerability

RHSA-2020:5040: libvirt security and bug fix update (Moderate)


The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fix(es): * libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c (CVE-2020-25637) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * libvirt destroying macvtap device of running VM after a failed incoming migration of another VM with same macvtap 'target device' (BZ#1868549)

Affected Products