{"affected":[{"ecosystem_specific":{"binaries":[{"libvirt":"7.1.0-6.5.1","libvirt-admin":"7.1.0-6.5.1","libvirt-bash-completion":"7.1.0-6.5.1","libvirt-client":"7.1.0-6.5.1","libvirt-daemon":"7.1.0-6.5.1","libvirt-daemon-config-network":"7.1.0-6.5.1","libvirt-daemon-config-nwfilter":"7.1.0-6.5.1","libvirt-daemon-driver-interface":"7.1.0-6.5.1","libvirt-daemon-driver-libxl":"7.1.0-6.5.1","libvirt-daemon-driver-lxc":"7.1.0-6.5.1","libvirt-daemon-driver-network":"7.1.0-6.5.1","libvirt-daemon-driver-nodedev":"7.1.0-6.5.1","libvirt-daemon-driver-nwfilter":"7.1.0-6.5.1","libvirt-daemon-driver-qemu":"7.1.0-6.5.1","libvirt-daemon-driver-secret":"7.1.0-6.5.1","libvirt-daemon-driver-storage":"7.1.0-6.5.1","libvirt-daemon-driver-storage-core":"7.1.0-6.5.1","libvirt-daemon-driver-storage-disk":"7.1.0-6.5.1","libvirt-daemon-driver-storage-gluster":"7.1.0-6.5.1","libvirt-daemon-driver-storage-iscsi":"7.1.0-6.5.1","libvirt-daemon-driver-storage-iscsi-direct":"7.1.0-6.5.1","libvirt-daemon-driver-storage-logical":"7.1.0-6.5.1","libvirt-daemon-driver-storage-mpath":"7.1.0-6.5.1","libvirt-daemon-driver-storage-rbd":"7.1.0-6.5.1","libvirt-daemon-driver-storage-scsi":"7.1.0-6.5.1","libvirt-daemon-hooks":"7.1.0-6.5.1","libvirt-daemon-lxc":"7.1.0-6.5.1","libvirt-daemon-qemu":"7.1.0-6.5.1","libvirt-daemon-xen":"7.1.0-6.5.1","libvirt-devel":"7.1.0-6.5.1","libvirt-devel-32bit":"7.1.0-6.5.1","libvirt-doc":"7.1.0-6.5.1","libvirt-libs":"7.1.0-6.5.1","libvirt-lock-sanlock":"7.1.0-6.5.1","libvirt-nss":"7.1.0-6.5.1","wireshark-plugin-libvirt":"7.1.0-6.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"libvirt","purl":"pkg:rpm/opensuse/libvirt&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.1.0-6.5.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libvirt fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2021-3631: fix SELinux label generation logic (bsc#1187871)\n- CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath (bsc#1188843)\n\nNon-security issues fixed:\n\n- virtlockd: Don't report error if lockspace exists (bsc#1184253)\n- Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. (bsc#1188232)\n","id":"openSUSE-SU-2021:2812-1","modified":"2021-08-23T10:18:04Z","published":"2021-08-23T10:18:04Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K4QAQWSVV2PRNPOI4R3VBPRTRXS5NLQ5/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184253"},{"type":"REPORT","url":"https://bugzilla.suse.com/1187871"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188232"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188843"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3631"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3667"}],"related":["CVE-2021-3631","CVE-2021-3667"],"summary":"Security update for libvirt","upstream":["CVE-2021-3631","CVE-2021-3667"]}