The following defect(s) have been fixed in this cumulative patch for the Wind River libvirt:
WIND00221110 Security Advisory - libvirt - CVE-2010-2237
WIND00221112 Security Advisory - libvirt - CVE-2010-2239
------------------------------------------------------------------------------------------------------------------------------------------
Change List:
/layers/wrll-linux-2.6.34/dist/libvirt/Makefile
/layers/wrll-linux-2.6.34/dist/libvirt/patches/patches.list
/layers/wrll-linux-2.6.34/dist/libvirt/patches/libvirt-0.8.2-extract-backing-store-format-CVE-2010-2237.patch
/layers/wrll-linux-2.6.34/dist/libvirt/patches/libvirt-0.8.1-rewrite-qemu-img-backing-store-format-handling-CVE-2010-2239.patch
1. Unzip this patch under [install_dir]/updates.
2. From the [install_dir]/updates directory, run the command "../maintenance/wrInstaller/x86-linux2/wrInstaller".
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the
libvirt package. This can be done by executing the command "make
-C build libvirt.distclean" followed by "make -C build
libvirt.rebuild"
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up.
DATE: 02 Nov 2010
REVISION: Add file WRL_4_0-layers-wrll_linux_2.6.34-tgt-libvirt-20101031-spin1.zip and includes fix to defect WIND00221110
