libvirt - Debian Package Tracker

general

source: libvirt (main)
version: 11.10.0-1
maintainer: Debian Libvirt Maintainers (archive) (DMD)
uploaders: Guido Günther [DMD] – Andrea Bolognani [DMD]
arch: all any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 7.0.0-3+deb11u3
o-o-p-u: 7.0.0-3+deb11u3
oldstable: 9.0.0-4+deb12u2
old-bpo: 11.3.0-2~bpo12+1
stable: 11.3.0-3+deb13u1
testing: 11.9.0-2
unstable: 11.10.0-1

versioned links

7.0.0-3+deb11u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
9.0.0-4+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
11.3.0-2~bpo12+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
11.3.0-3+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
11.9.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
11.10.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libnss-libvirt
libvirt-clients (14 bugs: 0, 10, 4, 0)
libvirt-clients-qemu
libvirt-common
libvirt-daemon (58 bugs: 0, 48, 10, 0)
libvirt-daemon-common
libvirt-daemon-config-network
libvirt-daemon-config-nwfilter (1 bugs: 0, 1, 0, 0)
libvirt-daemon-driver-interface
libvirt-daemon-driver-lxc (1 bugs: 0, 1, 0, 0)
libvirt-daemon-driver-network
libvirt-daemon-driver-nodedev
libvirt-daemon-driver-nwfilter
libvirt-daemon-driver-qemu (3 bugs: 0, 2, 1, 0)
libvirt-daemon-driver-secret
libvirt-daemon-driver-storage
libvirt-daemon-driver-storage-disk
libvirt-daemon-driver-storage-gluster
libvirt-daemon-driver-storage-iscsi
libvirt-daemon-driver-storage-iscsi-direct (1 bugs: 0, 1, 0, 0)
libvirt-daemon-driver-storage-logical
libvirt-daemon-driver-storage-mpath
libvirt-daemon-driver-storage-rbd
libvirt-daemon-driver-storage-scsi
libvirt-daemon-driver-storage-zfs
libvirt-daemon-driver-vbox
libvirt-daemon-driver-xen
libvirt-daemon-lock
libvirt-daemon-log
libvirt-daemon-plugin-lockd
libvirt-daemon-plugin-sanlock
libvirt-daemon-system (33 bugs: 0, 28, 5, 0)
libvirt-daemon-system-systemd (1 bugs: 0, 1, 0, 0)
libvirt-daemon-system-sysv
libvirt-dev
libvirt-doc
libvirt-l10n
libvirt-login-shell
libvirt-sanlock
libvirt-ssh-proxy
libvirt-wireshark
libvirt0 (14 bugs: 0, 14, 0, 0)

action needed

2 security issues in forky high

There are 2 open security issues in forky.

2 important issues:

CVE-2025-12748: A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too much memory on the host. The excessive memory consumption could lead to a libvirt process crash on the host, resulting in a denial-of-service condition.
CVE-2025-13193: A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to inspect the guest OS contents. This results in an information disclosure vulnerability.

Created: 2025-11-12 Last update: 2025-12-03 08:30

8 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 5f62c20b2ac004fbab3759b8d6024cd82a96ba37
Author: Luca Boccassi <luca.boccassi@gmail.com>
Date:   Sun Oct 19 14:47:15 2025 +0100

    Install and use sysusers.d config files
    
    sysusers.d config files allows a package to use declarative configuration
    instead of manually written maintainer scripts.
    Install files for the packages using adduser, and switch over.
    Patch the upstream sysusers.d file instead of adding a new one as preferred
    by the maintainer.
    This also allows image-based systems to be created with /usr/ only, and
    also allows for factory resetting a system and recreating /etc/ on boot.
    
    https://www.freedesktop.org/software/systemd/man/latest/sysusers.d.html
    
    Also stop deleting users/groups on remove/purge, as that is considered
    bad practice, as any potential leftover file/directory can then become
    owned by the next user/group that gets added, with unpredictable
    consequences.

commit 7f94abd1d6077886d98a630c397810d29032e7c5
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 23:25:52 2025 +0100

    Document changes and release 11.10.0-1

commit 5732866bed0993970a8dc5fd59675186cb9aad4b
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:50:46 2025 +0100

    common: Add several CPU models

commit d210c51eaf0c6e25a768a8ed173ece79fc4a9563
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:43:25 2025 +0100

    rules: Stop passing userfaultfd_sysctl option to meson
    
    It no longer exists upstream.
    
    Gbp-Dch: Ignore

commit fd115e689ea9b2593d50fb9539a7df443b2c1ec1
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:37:48 2025 +0100

    symbols: Bump symbol versions
    
    No new public symbols.
    
    Gbp-Dch: Ignore

commit 2c85bd64ae9c114af346a394f797480b14b48721
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:37:33 2025 +0100

    changelog: Create entry for 11.10.0-1
    
    Gbp-Dch: Ignore

commit 9303f6165dca9374bb331f0e68d66c9474c30cd5
Merge: 27ad8ad8 13462ab2
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:35:25 2025 +0100

    Update upstream source from tag 'upstream/11.10.0'
    
    Update to upstream version '11.10.0'
    with Debian dir 5aa135420e49550c42609f401c4491a1858e6127

commit 13462ab26b77af6be2a969a2a9cd8780be0069dc
Author: Andrea Bolognani <eof@kiyuko.org>
Date:   Mon Dec 1 22:34:56 2025 +0100

    New upstream version 11.10.0

Created: 2025-12-02 Last update: 2025-12-09 00:02

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2025-12-08 Last update: 2025-12-09 00:01

6 bugs tagged patch in the BTS normal

The BTS contains patches fixing 6 bugs, consider including or untagging them.

Created: 2025-01-06 Last update: 2025-12-09 00:00

Depends on packages which need a new maintainer normal

The packages that libvirt depends on which need a new maintainer are:

systemtap (#1114760)
- Suggests: systemtap
- Build-Depends: systemtap-sdt-dev

Created: 2025-09-09 Last update: 2025-12-08 22:00

3 open merge requests in Salsa normal

There are 3 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-22 Last update: 2025-12-07 18:01

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2025-11-09 Last update: 2025-11-09 09:30

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-12748: (needs triaging) A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too much memory on the host. The excessive memory consumption could lead to a libvirt process crash on the host, resulting in a denial-of-service condition.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-11-12 Last update: 2025-12-03 08:30

testing migrations

excuses:
- Migrates after: xen
- Migration status for libvirt (11.9.0-2 to 11.10.0-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- ∙ ∙ Autopkgtest for libguestfs/1:1.54.1-3.1: amd64: Failed (not a regression) ♻ (reference ♻), arm64: Regression ♻ (reference ♻), i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Autopkgtest for libvirt/11.10.0-1: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Depends: libvirt xen
- Additional info (not blocking):
- ∙ ∙ Updating libvirt will fix bugs in testing: #1120119
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/libv/libvirt.html
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- ∙ ∙ 6 days old (needed 5 days)
- Not considered

news

[rss feed]

[2025-12-03] Accepted libvirt 11.10.0-1 (source) into unstable (Andrea Bolognani)
[2025-11-12] libvirt 11.9.0-2 MIGRATED to testing (Debian testing watch)
[2025-11-08] Accepted libvirt 11.9.0-2 (source) into unstable (Andrea Bolognani)
[2025-11-07] libvirt 11.9.0-1 MIGRATED to testing (Debian testing watch)
[2025-11-04] Accepted libvirt 11.9.0-1 (source) into unstable (Andrea Bolognani)
[2025-11-02] Accepted libvirt 11.3.0-3+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andrea Bolognani)
[2025-10-28] libvirt 11.8.0-2 MIGRATED to testing (Debian testing watch)
[2025-10-18] Accepted libvirt 11.8.0-2 (source) into unstable (Andrea Bolognani)
[2025-10-10] libvirt 11.8.0-1 MIGRATED to testing (Debian testing watch)
[2025-10-07] Accepted libvirt 11.8.0-1 (source) into unstable (Andrea Bolognani)
[2025-09-06] libvirt 11.7.0-1 MIGRATED to testing (Debian testing watch)
[2025-09-02] Accepted libvirt 11.7.0-1 (source) into unstable (Andrea Bolognani)
[2025-08-02] Accepted libvirt 11.6.0-1 (source) into experimental (Andrea Bolognani)
[2025-07-09] libvirt 11.3.0-3 MIGRATED to testing (Debian testing watch)
[2025-07-04] Accepted libvirt 11.5.0-1 (source) into experimental (Andrea Bolognani)
[2025-07-03] Accepted libvirt 11.3.0-3 (source) into unstable (Andrea Bolognani)
[2025-07-03] Accepted libvirt 11.3.0-2~bpo12+1 (source amd64 all) into stable-backports (Debian FTP Masters) (signed by: Vasudev Sathish Kamath)
[2025-06-09] Accepted libvirt 11.4.0-1 (source) into experimental (Andrea Bolognani)
[2025-06-08] libvirt 11.3.0-2 MIGRATED to testing (Debian testing watch)
[2025-06-02] Accepted libvirt 11.3.0-2 (source) into unstable (Andrea Bolognani)
[2025-05-15] libvirt 11.3.0-1 MIGRATED to testing (Debian testing watch)
[2025-05-04] Accepted libvirt 11.3.0-1 (source) into unstable (Andrea Bolognani)
[2025-04-22] Accepted libvirt 11.2.0-3 (source) into experimental (Andrea Bolognani)
[2025-04-11] libvirt 11.2.0-2 MIGRATED to testing (Debian testing watch)
[2025-04-08] Accepted libvirt 11.2.0-2 (source) into unstable (Andrea Bolognani)
[2025-04-07] libvirt 11.2.0-1 MIGRATED to testing (Debian testing watch)
[2025-04-04] Accepted libvirt 11.2.0-1 (source) into unstable (Andrea Bolognani)
[2025-03-26] Accepted libvirt 11.1.0-2 (source) into experimental (Andrea Bolognani)
[2025-03-12] libvirt 11.1.0-1 MIGRATED to testing (Debian testing watch)
[2025-03-06] Accepted libvirt 11.1.0-1 (source) into unstable (Andrea Bolognani)

bugs [bug history graph]

all: 190 196
RC: 0
I&N: 147 153
M&W: 43
F&P: 0
patch: 6

links

homepage
lintian (0, 1)
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
l10n (100, 36)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 11.6.0-1ubuntu6
139 bugs (4 patches)
patches for 11.6.0-1ubuntu6