libvirt bug fix update

Advisory:	RHBA-2008:0189-5
Type:	Bug Fix Advisory
Severity:	N/A
Issued on:	2008-03-18
Last updated on:	2008-03-18
Affected Products:	RHEL Desktop Multi OS (v. 5 client) RHEL Virtualization (v. 5 server)
OVAL:	N/A

Details

Updated libvirt packages that fix various bugs are now available.

Libvirt is a C toolkit to interact with the virtualization capabilities of
recent versions of Linux, and other operating systems.

These updated packages fix the following bugs:

* the xend_parse_sexp_desc() function used a fixed sized 4k buffer, which
could have been overgrown if the domain description was very complex. For
example, running the "virt-install" command with a large set of network
definitions, may have caused the XML description to exceed the 4k buffer.
When the buffer is re-allocated, libvirt tries to free the old buffer
address, resulting in a segmentation fault. As well, another buffer-growth
problem in libvirt has been resolved.

* a potential crash when applications use libvirt has been resolved.

Users of libvirt are advised to upgrade to these updated packages, which
resolve these issues.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

RHEL Desktop Multi OS (v. 5 client)

SRPMS:
libvirt-0.2.3-9.el5_1.1.src.rpm	`869cba66d5696d85f4beb15b16db99a3`

IA-32:
libvirt-0.2.3-9.el5_1.1.i386.rpm	`a1974239baceb92e2b28efc7bf2c66c2`
libvirt-devel-0.2.3-9.el5_1.1.i386.rpm	`746a130f6ee03813c53874c189a2dc26`
libvirt-python-0.2.3-9.el5_1.1.i386.rpm	`cc8f45924aa47f9bf80fce69c4b1f625`

x86_64:
libvirt-0.2.3-9.el5_1.1.i386.rpm	`a1974239baceb92e2b28efc7bf2c66c2`
libvirt-0.2.3-9.el5_1.1.x86_64.rpm	`9e0b56501a1f32ca31f338c51c665f83`
libvirt-devel-0.2.3-9.el5_1.1.i386.rpm	`746a130f6ee03813c53874c189a2dc26`
libvirt-devel-0.2.3-9.el5_1.1.x86_64.rpm	`ee840fbc2b4e769219ef35361c7bec29`
libvirt-python-0.2.3-9.el5_1.1.x86_64.rpm	`37a1a406933b2c546a5716ae6bffa97c`

RHEL Virtualization (v. 5 server)

SRPMS:
libvirt-0.2.3-9.el5_1.1.src.rpm	`869cba66d5696d85f4beb15b16db99a3`

IA-32:
libvirt-0.2.3-9.el5_1.1.i386.rpm	`a1974239baceb92e2b28efc7bf2c66c2`
libvirt-devel-0.2.3-9.el5_1.1.i386.rpm	`746a130f6ee03813c53874c189a2dc26`
libvirt-python-0.2.3-9.el5_1.1.i386.rpm	`cc8f45924aa47f9bf80fce69c4b1f625`

IA-64:
libvirt-0.2.3-9.el5_1.1.ia64.rpm	`5615e54e9bfded5fe4085de727b975c2`
libvirt-devel-0.2.3-9.el5_1.1.ia64.rpm	`2955f916876af26800669a3f389ef914`
libvirt-python-0.2.3-9.el5_1.1.ia64.rpm	`5b82e927b6b49531406624cb112c5c5a`

x86_64:
libvirt-0.2.3-9.el5_1.1.i386.rpm	`a1974239baceb92e2b28efc7bf2c66c2`
libvirt-0.2.3-9.el5_1.1.x86_64.rpm	`9e0b56501a1f32ca31f338c51c665f83`
libvirt-devel-0.2.3-9.el5_1.1.i386.rpm	`746a130f6ee03813c53874c189a2dc26`
libvirt-devel-0.2.3-9.el5_1.1.x86_64.rpm	`ee840fbc2b4e769219ef35361c7bec29`
libvirt-python-0.2.3-9.el5_1.1.x86_64.rpm	`37a1a406933b2c546a5716ae6bffa97c`

(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

430876 - libvirt: fix segmentation fault when buffer needs to be reallocated

References

https://www.redhat.com/archives/libvir-list/2007-August/msg00220.html

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/