{"affected":[{"ecosystem_specific":{"binaries":[{"libvirt-devel":"1.2.5-15.3","libvirt-devel-32bit":"1.2.5-15.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 11 SP4","name":"libvirt","purl":"pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.5-15.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libvirt":"1.2.5-15.3","libvirt-client":"1.2.5-15.3","libvirt-client-32bit":"1.2.5-15.3","libvirt-doc":"1.2.5-15.3","libvirt-lock-sanlock":"1.2.5-15.3","perl-Sys-Virt":"1.2.5-4.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4","name":"libvirt","purl":"pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.5-15.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libvirt":"1.2.5-15.3","libvirt-client":"1.2.5-15.3","libvirt-client-32bit":"1.2.5-15.3","libvirt-doc":"1.2.5-15.3","libvirt-lock-sanlock":"1.2.5-15.3","perl-Sys-Virt":"1.2.5-4.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4","name":"perl-Sys-Virt","purl":"pkg:rpm/suse/perl-Sys-Virt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.5-4.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libvirt":"1.2.5-15.3","libvirt-client":"1.2.5-15.3","libvirt-client-32bit":"1.2.5-15.3","libvirt-doc":"1.2.5-15.3","libvirt-lock-sanlock":"1.2.5-15.3","perl-Sys-Virt":"1.2.5-4.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 11 SP4","name":"libvirt","purl":"pkg:rpm/suse/libvirt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.5-15.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libvirt":"1.2.5-15.3","libvirt-client":"1.2.5-15.3","libvirt-client-32bit":"1.2.5-15.3","libvirt-doc":"1.2.5-15.3","libvirt-lock-sanlock":"1.2.5-15.3","perl-Sys-Virt":"1.2.5-4.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 11 SP4","name":"perl-Sys-Virt","purl":"pkg:rpm/suse/perl-Sys-Virt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.5-4.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis update for libvirt fixes the following issues:\n\nSecurity issues fixed:\n- CVE-2016-5008: empty VNC password disables authentication (bsc#987527)\n\nBugs fixed:\n- bsc#970906: Fixed a race condition in xenstore event handling.\n- bsc#952889: Change hap setting to align with Xen behavior.\n- Fixed 'make check' failures.\n  ","id":"SUSE-SU-2016:1944-1","modified":"2016-08-03T13:01:31Z","published":"2016-08-03T13:01:31Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2016/suse-su-20161944-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/952889"},{"type":"REPORT","url":"https://bugzilla.suse.com/970906"},{"type":"REPORT","url":"https://bugzilla.suse.com/987527"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5008"}],"related":["CVE-2016-5008"],"summary":"Security update for libvirt","upstream":["CVE-2016-5008"]}