RHSA-2022:7472-01 -- Redhat SLOF, hivex, libguestfs, libiscsi, libnbd, libtpms, libvirt, nbdkit, netcf, perl-Sys-Virt, qemu-kvm, seabios, sgabios, supermin, swtpm, virt-v2v, lua-guestfs, nbdfuse, perl-Sys-Guestfs, perl-hivex, python3-hivex, python3-libguestfs, python3-libnbd, python3-libvirt, qemu-guest-agent, qemu-img, ruby-hivex, ruby-libguestfs, virt-dib, seavgabios-binID: oval:org.secpod.oval:def:507336 | Date: (C)2023-02-06 (M)2024-04-17 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. The following packages have been upgraded to a later upstream version: qemu-kvm . Security Fix: * QEMU: fdc: heap buffer overflow in DMA read data transfers * libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service * libguestfs: Buffer overflow in get_keys leads to DoS * swtpm: Unchecked header size indicator against expected size For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
SLOF |
hivex |
libguestfs |
libiscsi |
libnbd |
libtpms |
libvirt |
nbdkit |
netcf |
perl-Sys-Virt |
qemu-kvm |
seabios |
sgabios |
supermin |
swtpm |
virt-v2v |
lua-guestfs |
nbdfuse |
perl-Sys-Guestfs |
perl-hivex |
python3-hivex |
python3-libguestfs |
python3-libnbd |
python3-libvirt |
qemu-guest-agent |
qemu-img |
ruby-hivex |
ruby-libguestfs |
virt-dib |
seavgabios-bin |