[libvirt] ANNOUNCE: libvirt 1.1.3.4 maintenance release

Cole Robinson crobinso at redhat.com
Tue Feb 18 23:56:53 UTC 2014


libvirt 1.1.3.4 maintenance release is now available. This is
libvirt 1.1.3 with additional bugfixes that have accumulated
upstream since the initial release.

This release can be downloaded at:

http://libvirt.org/sources/stable_updates/libvirt-1.1.3.4.tar.gz

Changes in this version:

* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC hotunplug
  code
* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC chardev
  hostdev hotplug
* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC block
  hostdev hotplug
* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC USB hotplug
* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC disk hotplug
* CVE-2013-6456: Avoid unsafe use of /proc/$PID/root in LXC
  shutdown/reboot code
* Add helper for running code in separate namespaces
* Add virFileMakeParentPath helper function
* Move check for cgroup devices ACL upfront in LXC hotplug
* Disks are always block devices, never character devices
* Fix reset of cgroup when detaching USB device from LXC guests
* Record hotplugged USB device in LXC live guest config
* Fix path used for USB device attach with LXC
* Don't block use of USB with containers
* storage: avoid short reads while chasing backing chain
* event: move event filtering to daemon (regression fix)
* Push nwfilter update locking up to top level
* Add a read/write lock implementation
* tests: Add more tests for virConnectBaselineCPU
* cpu: Try to use source CPU model in virConnectBaselineCPU
* cpu: Fix VIR_CONNECT_BASELINE_CPU_EXPAND_FEATURES
* tests: Better support for VIR_CONNECT_BASELINE_CPU_EXPAND_FEATURES
* qemu: Change the default unix monitor timeout

For info about past maintenance releases, see:

http://wiki.libvirt.org/page/Maintenance_Releases

Thanks,
Cole




More information about the libvir-list mailing list