Security Advisory Moderate: libguestfs security and bug fix update

Advisory: RHSA-2017:0564-1
Type: Security Advisory
Severity: Moderate
Issued on: 2017-03-21
Last updated on: 2017-03-21
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2015-8869

Details

An update for libguestfs is now available for Red Hat Enterprise Linux 6.

Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

The libguestfs packages contain a library, which is used for accessing and
modifying virtual machine (VM) disk images.

Security Fix(es):

* An integer conversion flaw was found in the way OCaml's String handled its
length. Certain operations on an excessively long String could trigger a buffer
overflow or result in an information leak. (CVE-2015-8869)

Note: The libguestfs packages in this advisory were rebuilt with a fixed version
of OCaml to address this issue.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise
Linux 6.9 Release Notes and Red Hat Enterprise Linux 6.9 Technical Notes linked
from the References section.


Solution

For details on how to apply this update, which includes the changes described in
this advisory, refer to:

https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
libguestfs-1.20.11-20.el6.src.rpm     MD5: f0ab0f53ae69436893f5a21cfe21f3a1
SHA-256: d04948bdb8143fc3b66b53cf5549541253384a465bee8c96b7f57dda10ab4022
 
x86_64:
libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 526ed60f53c5c88a83d5895615e661f0
SHA-256: 040b1b45485bb9d600bf9982da8804bbe8fa18c3b9a1444884af273e3001a694
libguestfs-debuginfo-1.20.11-20.el6.x86_64.rpm     MD5: 1d00388cb8fd6008c991f8cd7663ada9
SHA-256: 82d135507d3310d0ce62939159adcdb605072545499a9b445f17ea923e665604
libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1438f8ff474fae9cd40837c02ac327d7
SHA-256: 71db24d2da594568a80f590732ae0623f17d5aa80a850b3d0e08409838ba8168
libguestfs-java-1.20.11-20.el6.x86_64.rpm     MD5: 0ee559f60f7667099586546560021a8e
SHA-256: 790ffe6a26e80c822db7d7af9af1fbd60cce9aca6d88f89f27df9864eaf37fbc
libguestfs-java-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1a027261ff3fbf98c709d9cd45241556
SHA-256: a43d3814df12bdedd179c4d4b22c4716a54c502ef5d16c1a2e16a9f762277e86
libguestfs-javadoc-1.20.11-20.el6.x86_64.rpm     MD5: 363c8bf75b599130b98dc37c31f8b93d
SHA-256: 733c21d607d1cc961739f9dba2955b74c9a23c07b77c10727da454d2e99ac77e
libguestfs-tools-1.20.11-20.el6.x86_64.rpm     MD5: 9420b86d3bb824fa4bf64411ab5207db
SHA-256: 330713158fc611c0a3d23eada4844d443f2f385acc083fa3ed138360a265ebab
libguestfs-tools-c-1.20.11-20.el6.x86_64.rpm     MD5: df60648d084587e5168bbe3277fee51a
SHA-256: 6a883e9c7b9866ceba4db2bbb7bb59b2ee882ae47f902982134a079deb2333cf
ocaml-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: b97f6e5552ee559c5a268d1a4c8f08b3
SHA-256: 3151886a2c4fb8809ebe168491d9da6bba69681060362179093fc62458f35069
ocaml-libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 9cf7afd5859ca9c70dbaeb23382fed20
SHA-256: fd078919647a66ef582fe1274a862a204b0a475c19528ef6ccea663683447476
perl-Sys-Guestfs-1.20.11-20.el6.x86_64.rpm     MD5: aa974c2230f1cc0f29e4189efe885d95
SHA-256: 9fbcaf27ffe242ea7ea972ea2f54d015ec3adffe5b917511e581b395bb182e86
python-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 80af30ca3843d642fb16e3ee552e4673
SHA-256: 13fe96315ad4b91946443daa905de388e1fe1540df9fcd0fbd1ac9aed7c7565c
ruby-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 271d5809dfc2c7e26a91718273e042f9
SHA-256: f8debbc0d552be91c933c0fed2d37c2a9b2f593a4cfb24771da42555b3b4701a
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
libguestfs-1.20.11-20.el6.src.rpm     MD5: f0ab0f53ae69436893f5a21cfe21f3a1
SHA-256: d04948bdb8143fc3b66b53cf5549541253384a465bee8c96b7f57dda10ab4022
 
x86_64:
libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 526ed60f53c5c88a83d5895615e661f0
SHA-256: 040b1b45485bb9d600bf9982da8804bbe8fa18c3b9a1444884af273e3001a694
libguestfs-debuginfo-1.20.11-20.el6.x86_64.rpm     MD5: 1d00388cb8fd6008c991f8cd7663ada9
SHA-256: 82d135507d3310d0ce62939159adcdb605072545499a9b445f17ea923e665604
libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1438f8ff474fae9cd40837c02ac327d7
SHA-256: 71db24d2da594568a80f590732ae0623f17d5aa80a850b3d0e08409838ba8168
libguestfs-java-1.20.11-20.el6.x86_64.rpm     MD5: 0ee559f60f7667099586546560021a8e
SHA-256: 790ffe6a26e80c822db7d7af9af1fbd60cce9aca6d88f89f27df9864eaf37fbc
libguestfs-java-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1a027261ff3fbf98c709d9cd45241556
SHA-256: a43d3814df12bdedd179c4d4b22c4716a54c502ef5d16c1a2e16a9f762277e86
libguestfs-javadoc-1.20.11-20.el6.x86_64.rpm     MD5: 363c8bf75b599130b98dc37c31f8b93d
SHA-256: 733c21d607d1cc961739f9dba2955b74c9a23c07b77c10727da454d2e99ac77e
libguestfs-tools-1.20.11-20.el6.x86_64.rpm     MD5: 9420b86d3bb824fa4bf64411ab5207db
SHA-256: 330713158fc611c0a3d23eada4844d443f2f385acc083fa3ed138360a265ebab
libguestfs-tools-c-1.20.11-20.el6.x86_64.rpm     MD5: df60648d084587e5168bbe3277fee51a
SHA-256: 6a883e9c7b9866ceba4db2bbb7bb59b2ee882ae47f902982134a079deb2333cf
ocaml-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: b97f6e5552ee559c5a268d1a4c8f08b3
SHA-256: 3151886a2c4fb8809ebe168491d9da6bba69681060362179093fc62458f35069
ocaml-libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 9cf7afd5859ca9c70dbaeb23382fed20
SHA-256: fd078919647a66ef582fe1274a862a204b0a475c19528ef6ccea663683447476
perl-Sys-Guestfs-1.20.11-20.el6.x86_64.rpm     MD5: aa974c2230f1cc0f29e4189efe885d95
SHA-256: 9fbcaf27ffe242ea7ea972ea2f54d015ec3adffe5b917511e581b395bb182e86
python-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 80af30ca3843d642fb16e3ee552e4673
SHA-256: 13fe96315ad4b91946443daa905de388e1fe1540df9fcd0fbd1ac9aed7c7565c
ruby-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 271d5809dfc2c7e26a91718273e042f9
SHA-256: f8debbc0d552be91c933c0fed2d37c2a9b2f593a4cfb24771da42555b3b4701a
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
libguestfs-1.20.11-20.el6.src.rpm     MD5: f0ab0f53ae69436893f5a21cfe21f3a1
SHA-256: d04948bdb8143fc3b66b53cf5549541253384a465bee8c96b7f57dda10ab4022
 
x86_64:
libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 526ed60f53c5c88a83d5895615e661f0
SHA-256: 040b1b45485bb9d600bf9982da8804bbe8fa18c3b9a1444884af273e3001a694
libguestfs-debuginfo-1.20.11-20.el6.x86_64.rpm     MD5: 1d00388cb8fd6008c991f8cd7663ada9
SHA-256: 82d135507d3310d0ce62939159adcdb605072545499a9b445f17ea923e665604
libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1438f8ff474fae9cd40837c02ac327d7
SHA-256: 71db24d2da594568a80f590732ae0623f17d5aa80a850b3d0e08409838ba8168
libguestfs-java-1.20.11-20.el6.x86_64.rpm     MD5: 0ee559f60f7667099586546560021a8e
SHA-256: 790ffe6a26e80c822db7d7af9af1fbd60cce9aca6d88f89f27df9864eaf37fbc
libguestfs-java-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1a027261ff3fbf98c709d9cd45241556
SHA-256: a43d3814df12bdedd179c4d4b22c4716a54c502ef5d16c1a2e16a9f762277e86
libguestfs-javadoc-1.20.11-20.el6.x86_64.rpm     MD5: 363c8bf75b599130b98dc37c31f8b93d
SHA-256: 733c21d607d1cc961739f9dba2955b74c9a23c07b77c10727da454d2e99ac77e
libguestfs-tools-1.20.11-20.el6.x86_64.rpm     MD5: 9420b86d3bb824fa4bf64411ab5207db
SHA-256: 330713158fc611c0a3d23eada4844d443f2f385acc083fa3ed138360a265ebab
libguestfs-tools-c-1.20.11-20.el6.x86_64.rpm     MD5: df60648d084587e5168bbe3277fee51a
SHA-256: 6a883e9c7b9866ceba4db2bbb7bb59b2ee882ae47f902982134a079deb2333cf
ocaml-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: b97f6e5552ee559c5a268d1a4c8f08b3
SHA-256: 3151886a2c4fb8809ebe168491d9da6bba69681060362179093fc62458f35069
ocaml-libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 9cf7afd5859ca9c70dbaeb23382fed20
SHA-256: fd078919647a66ef582fe1274a862a204b0a475c19528ef6ccea663683447476
perl-Sys-Guestfs-1.20.11-20.el6.x86_64.rpm     MD5: aa974c2230f1cc0f29e4189efe885d95
SHA-256: 9fbcaf27ffe242ea7ea972ea2f54d015ec3adffe5b917511e581b395bb182e86
python-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 80af30ca3843d642fb16e3ee552e4673
SHA-256: 13fe96315ad4b91946443daa905de388e1fe1540df9fcd0fbd1ac9aed7c7565c
ruby-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 271d5809dfc2c7e26a91718273e042f9
SHA-256: f8debbc0d552be91c933c0fed2d37c2a9b2f593a4cfb24771da42555b3b4701a
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
libguestfs-1.20.11-20.el6.src.rpm     MD5: f0ab0f53ae69436893f5a21cfe21f3a1
SHA-256: d04948bdb8143fc3b66b53cf5549541253384a465bee8c96b7f57dda10ab4022
 
x86_64:
libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 526ed60f53c5c88a83d5895615e661f0
SHA-256: 040b1b45485bb9d600bf9982da8804bbe8fa18c3b9a1444884af273e3001a694
libguestfs-debuginfo-1.20.11-20.el6.x86_64.rpm     MD5: 1d00388cb8fd6008c991f8cd7663ada9
SHA-256: 82d135507d3310d0ce62939159adcdb605072545499a9b445f17ea923e665604
libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1438f8ff474fae9cd40837c02ac327d7
SHA-256: 71db24d2da594568a80f590732ae0623f17d5aa80a850b3d0e08409838ba8168
libguestfs-java-1.20.11-20.el6.x86_64.rpm     MD5: 0ee559f60f7667099586546560021a8e
SHA-256: 790ffe6a26e80c822db7d7af9af1fbd60cce9aca6d88f89f27df9864eaf37fbc
libguestfs-java-devel-1.20.11-20.el6.x86_64.rpm     MD5: 1a027261ff3fbf98c709d9cd45241556
SHA-256: a43d3814df12bdedd179c4d4b22c4716a54c502ef5d16c1a2e16a9f762277e86
libguestfs-javadoc-1.20.11-20.el6.x86_64.rpm     MD5: 363c8bf75b599130b98dc37c31f8b93d
SHA-256: 733c21d607d1cc961739f9dba2955b74c9a23c07b77c10727da454d2e99ac77e
libguestfs-tools-1.20.11-20.el6.x86_64.rpm     MD5: 9420b86d3bb824fa4bf64411ab5207db
SHA-256: 330713158fc611c0a3d23eada4844d443f2f385acc083fa3ed138360a265ebab
libguestfs-tools-c-1.20.11-20.el6.x86_64.rpm     MD5: df60648d084587e5168bbe3277fee51a
SHA-256: 6a883e9c7b9866ceba4db2bbb7bb59b2ee882ae47f902982134a079deb2333cf
ocaml-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: b97f6e5552ee559c5a268d1a4c8f08b3
SHA-256: 3151886a2c4fb8809ebe168491d9da6bba69681060362179093fc62458f35069
ocaml-libguestfs-devel-1.20.11-20.el6.x86_64.rpm     MD5: 9cf7afd5859ca9c70dbaeb23382fed20
SHA-256: fd078919647a66ef582fe1274a862a204b0a475c19528ef6ccea663683447476
perl-Sys-Guestfs-1.20.11-20.el6.x86_64.rpm     MD5: aa974c2230f1cc0f29e4189efe885d95
SHA-256: 9fbcaf27ffe242ea7ea972ea2f54d015ec3adffe5b917511e581b395bb182e86
python-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 80af30ca3843d642fb16e3ee552e4673
SHA-256: 13fe96315ad4b91946443daa905de388e1fe1540df9fcd0fbd1ac9aed7c7565c
ruby-libguestfs-1.20.11-20.el6.x86_64.rpm     MD5: 271d5809dfc2c7e26a91718273e042f9
SHA-256: f8debbc0d552be91c933c0fed2d37c2a9b2f593a4cfb24771da42555b3b4701a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1319086 - libguestfs-java: mismatch class version vs java dependency
1332090 - CVE-2015-8869 ocaml: sizes arguments are sign-extended from 32 to 64 bits
1388407 - virt-sysprep will fail detecting OS if "/usr" is a distinct partition mounted in "/" via fstab


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/