CVE-2020-14339

03.12.2020, 17:15

A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of their standard permissions, potentially causing serious damage to the host operating system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 41%

Affected Products (NVD)

Vendor	Product	Version
redhat	libvirt	6.2.0 ≤ 𝑥 < 6.7.0
redhat	enterprise_linux	8.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

libvirt

bookworm	9.0.0-4+deb12u1 fixed
bullseye	7.0.0-3+deb11u3 fixed
buster	not-affected
sid	10.9.0-1 fixed
stretch	not-affected
trixie	10.9.0-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

libvirt

bionic	not-affected
focal	not-affected
trusty	not-affected
xenial	not-affected

openSUSE / SLES Releases

openSUSE Product

Release

libvirt

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-admin

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed

libvirt-bash-completion

suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	7.1.0-150300.6.29.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	7.1.0-150300.6.29.1 fixed

libvirt-client

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-client-qemu

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-common

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-config-network

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-config-nwfilter

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-interface

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-libxl

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-lxc

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed

libvirt-daemon-driver-network

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-nodedev

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-nwfilter

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-qemu

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-secret

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-core

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-disk

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-iscsi

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-iscsi-direct

suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-logical

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-mpath

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-rbd

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-driver-storage-scsi

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-hooks

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-lock

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-log

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-lxc

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed

libvirt-daemon-plugin-lockd

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-plugin-sanlock

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-proxy

suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-qemu

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-daemon-xen

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-devel

suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-doc

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

libvirt-libs

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed

libvirt-lock-sanlock

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed

libvirt-nss

suse enterprise sap 12 SP5	5.1.0-13.9.1 fixed
suse enterprise sap 15 SP1	5.1.0-8.19.1 fixed
suse enterprise sap 15 SP2	6.0.0-13.3.1 fixed
suse enterprise sap 15 SP3	7.1.0-4.1 fixed
suse enterprise sap 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise sap 15 SP7	11.0.0-150700.2.3 fixed
suse enterprise server 12 SP5	5.1.0-13.9.1 fixed
suse enterprise server 15 SP1	5.1.0-8.19.1 fixed
suse enterprise server 15 SP2	6.0.0-13.3.1 fixed
suse enterprise server 15 SP3	7.1.0-4.1 fixed
suse enterprise server 15 SP4	8.0.0-150400.5.8 fixed
suse enterprise server 15 SP7	11.0.0-150700.2.3 fixed

Common Weakness Enumeration

CWE-772 - Missing Release of Resource after Effective Lifetime
The software does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1860069

https://security.gentoo.org/glsa/202101-22

https://security.gentoo.org/glsa/202210-06

https://bugzilla.redhat.com/show_bug.cgi?id=1860069

https://security.gentoo.org/glsa/202101-22

https://security.gentoo.org/glsa/202210-06