ALSA-2021:1762

[ALSA-2021:1762] Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Type:

security

Severity:

moderate

Release date:

2021-12-23

Description:

Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.

Security Fix(es):

* libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c (CVE-2020-25637)

* QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c (CVE-2020-27821)

* QEMU: ide: atapi: OOB access while processing read commands (CVE-2020-29443)

* QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure (CVE-2020-11947)

* QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c (CVE-2020-16092)

* QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c (CVE-2020-25707)

* QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c (CVE-2020-25723)

* QEMU: e1000e: infinite loop scenario in case of null packet descriptor (CVE-2020-28916)

* QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets (CVE-2020-29129, CVE-2020-29130)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	netcf-libs-0.2.8-12.module_el8.6.0+2880+7d9e3703.aarch64.rpm	0bcaf5d8e5f17815e1295651458c4f429ff9fccadbfe7b2f3c23b784efee47c1
aarch64	libiscsi-utils-1.18.0-8.module_el8.6.0+2880+7d9e3703.aarch64.rpm	475718b68490ef173aef57f3aa680f5862a6799ade88eacbaf51738aed5af001
aarch64	netcf-0.2.8-12.module_el8.6.0+2880+7d9e3703.aarch64.rpm	622166df6272f067ff22fb348eae9e5c6b899d029f6fb40d2b259456d70110d8
aarch64	libvirt-dbus-1.3.0-2.module_el8.6.0+2880+7d9e3703.aarch64.rpm	7bd28a649f56f3823e2cf3f6ac920ba389e4eaba1adad666059332b3564421ef
aarch64	netcf-devel-0.2.8-12.module_el8.6.0+2880+7d9e3703.aarch64.rpm	b94dbcf9abf28d020816edcf78b874b8a4fb7cce37a822457f4d9fe4efdc33bf
aarch64	libiscsi-1.18.0-8.module_el8.6.0+2880+7d9e3703.aarch64.rpm	e6aabc36bca82477806e4d9cca5d92d6951021e58146a289170083bd53156e4b
aarch64	libiscsi-devel-1.18.0-8.module_el8.6.0+2880+7d9e3703.aarch64.rpm	f7772d478351f5bfc0421cc6fa02eb1d4f552a9723fad5327390b33a6d511477
i686	nbdfuse-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	11269039fd4c610f1242766a2f22bbddc3fb2d48812bf69be8807ee1f5fde355
i686	libiscsi-utils-1.18.0-8.module_el8.3.0+2048+e7a0a3ea.i686.rpm	1b48736426106336aecd3b251329dca6eb67d703a3a906c30576599a9680019b
i686	libnbd-devel-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	23560d59a287e25765ab899402271a2d16867ccd05ee250da0f4881a1ae1c6f8
i686	netcf-devel-0.2.8-12.module_el8.3.0+2048+e7a0a3ea.i686.rpm	2382e8ade6974ff73d169757ba744f1688d25130570f61eb6ecbeddec08a7dab
i686	python3-libvirt-6.0.0-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	3429c79ca9fe926608002c0d03a8b37accb6b31ae0b65be2f575f57dde1e0381
i686	perl-hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	400f2b24792d1089f25b7ca348e920e446e5e937c5b045f62b0ff1d822e6b376
i686	hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	44081d49cd93640fd464e8339060c61cb345544dc3132f31a2c8e1a7b9028050
i686	libiscsi-devel-1.18.0-8.module_el8.3.0+2048+e7a0a3ea.i686.rpm	6354d76fcb3f9b45659f5abe06ec2f3a59420619b66d3967949d93b3a76a49f7
i686	python3-hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	645bf234d87d42f39f8660188d206a5629eb79187e32cf9992f676b19a2268b8
i686	python3-libnbd-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	766c411da263bf152270879d9a78016d5922211ff3122359850ec8bd8dd36d26
i686	ocaml-hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	76d510992a5287aa39b4e0ac2c32d159bf538939c5f1259e556f3b60a8b10a6e
i686	libvirt-dbus-1.3.0-2.module_el8.3.0+2048+e7a0a3ea.i686.rpm	7f249d320a4a9aaf035b912e8ae92422ad8ce950c8b4d81d6b76f57c4fce4e17
i686	hivex-devel-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	819f803864ebb68822b6a88fa8b6b1ad542f500433133dfcf65adacd9572207a
i686	ocaml-libnbd-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	81e8aa76e8fe02843a25a15d3bf0a298c2e3440293cfbf374d9057efd41d3418
i686	libnbd-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	9bc6d3b6e0d134a5a7de632819e813a13e097ae1a64e13db825de02e32432d4b
i686	ruby-hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	9df5cd455229977e457b222c9f8c934c8f68029568b9cf7448ff7b6982cffeec
i686	netcf-0.2.8-12.module_el8.3.0+2048+e7a0a3ea.i686.rpm	a1fedfd353c9753eb41616cfa441b34fbcc8da5d0926a40212761a5476a8a77f
i686	perl-Sys-Virt-6.0.0-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	a3797b45589b7e3893f31c09019d4c49843ea12639ea4b2ac55dcdb628129597
i686	ocaml-libnbd-devel-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	a6e2690904c352b2870ad742ef7a20f2c279c636d94d9dd188cc0188b6ca5ad4
i686	sgabios-0.20170427git-3.module_el8.3.0+2048+e7a0a3ea.i686.rpm	ae762fce191d248de990f617397e2461da48486d4fedc6dc264feaa9cc05c721
i686	ocaml-hivex-devel-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.i686.rpm	bb63d67abe6a449c55fd4e86fa5185a717fbd749f17c81116883c09bb717cec6
i686	libguestfs-winsupport-8.2-1.module_el8.3.0+2048+e7a0a3ea.i686.rpm	d7e5c694ba59b033699d3663b3bec40628d38224e3af11629bb6bab4a9af75e7
i686	netcf-libs-0.2.8-12.module_el8.3.0+2048+e7a0a3ea.i686.rpm	eb138f7be869d051491087b5952d125d192a791e8e30ba220ede3ea10cb170c5
i686	libiscsi-1.18.0-8.module_el8.3.0+2048+e7a0a3ea.i686.rpm	f3d7ca410a042583a92c168682347a9ef0fc92bfa1c1ab07736019dafe68533b
noarch	sgabios-bin-0.20170427git-3.module_el8.5.0+2608+72063365.noarch.rpm	0576d108953f671585dbd9cd70599016930b33d00b11837c62c0d0f3562585da
noarch	seavgabios-bin-1.13.0-2.module_el8.5.0+2608+72063365.noarch.rpm	269c45680656a7ae9256ddcf0822a906f5c2364e3f8e95e75d32f07deb922e33
noarch	sgabios-bin-0.20170427git-3.module_el8.6.0+2880+7d9e3703.noarch.rpm	62a8a51a41f340146cc418ee91d9f48909327024150c0976e94a9cd537b2227f
noarch	seabios-bin-1.13.0-2.module_el8.5.0+2608+72063365.noarch.rpm	71d3169dea0a4a3ebfe67863e09e5c0fb35e0218b1936921c39c7b2c3ed67ff0
noarch	nbdkit-bash-completion-1.16.2-4.module_el8.5.0+2608+72063365.noarch.rpm	9da0c6109af169fa47847ce7c02952d3cd3698b00f0a84c180424f422a2aadc5
ppc64le	netcf-libs-0.2.8-12.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	0e59bef3c22a3ac78aade7aca024d450b5a9844bb2efa77ec9472a6eb04546d3
ppc64le	libiscsi-devel-1.18.0-8.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	5369f193a1eef427fb67ba7b52715b200bbb2f09efb5007ccfd5946b617125f9
ppc64le	libiscsi-utils-1.18.0-8.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	6583726885a273936db76042ee6d2e2b73a171fe8a38eb27f957542d8563e3bb
ppc64le	netcf-0.2.8-12.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	6f298e15ea7002756a7546fe825816eb33c89558b6a49d69c53f15dcb15309ee
ppc64le	libiscsi-1.18.0-8.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	7b869cadb1a04aebedb1931f3c7e40177caf8c4c7b86bc29083fb073301644a8
ppc64le	netcf-devel-0.2.8-12.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	a296718939722fbb0905e35282bf8f34e176e586c7bd384700975d96682702f9
ppc64le	libvirt-dbus-1.3.0-2.module_el8.6.0+2880+7d9e3703.ppc64le.rpm	c2da1445e108e5e07ce53fb8a01159ff78d76c53523cfded3e39f79d1a0cf751
x86_64	ocaml-libnbd-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.x86_64.rpm	04265e542952aae8322f3b07ff2c6000c428fcbb7ad1f79748d2ce775393c723
x86_64	nbdkit-python-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	0a0e458154dfb065547742ad353101692f0e5eff4afc6aca266c10b09dedfafa
x86_64	nbdkit-example-plugins-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	0a267ee257239f482ae5e65079ebf8cff21ef8ac920b82e363ef1899894eb2fa
x86_64	nbdfuse-1.2.2-1.module_el8.5.0+2608+72063365.x86_64.rpm	16871397068b5c08d3d1609282f290b3d4affdcf7c14b8db1a29cb4b165f86f9
x86_64	supermin-devel-5.1.19-10.module_el8.5.0+2608+72063365.x86_64.rpm	172f8710b4f2bc130079221e71c33f8b147f9603da77ddf2b66f9d55f2423562
x86_64	libnbd-1.2.2-1.module_el8.5.0+2608+72063365.x86_64.rpm	1a0504ff0bfdb98fc20fc2e203cb34775ac55bcd81ee05507f75f52c89932973
x86_64	nbdkit-basic-filters-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	22ca57b786dd1ab3ff446da38f9e547cae648c911b3389ad435e92ffa59b517e
x86_64	ocaml-hivex-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.x86_64.rpm	26043e6890509f23a8fdc057139784a75bdbaeaf3749312c0b7c55f5e4de4cf0
x86_64	python3-libnbd-1.2.2-1.module_el8.5.0+2608+72063365.x86_64.rpm	33d710178a093340cbf5c648e0079e421a1a5baf25dcfc2c9677e8cab14bf258
x86_64	netcf-0.2.8-12.module_el8.5.0+2608+72063365.x86_64.rpm	33f2590aec68b170f54844eab4c2a54928de91ae28ed866658efed3c2c78573f
x86_64	nbdkit-basic-plugins-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	369ff6efdca69d851321cbf0c6235a89b42cfadc5a9a87f81515eeaf1c94eaf2
x86_64	nbdkit-gzip-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	437227d736dce90b7aa2d7fca3fa95c3de5531d3f8ad61183346c14aa9c152cd
x86_64	nbdkit-vddk-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	44a856126af26e5e1374ef97c26f2f493f801bf886ceb7c24eede7010748bc73
x86_64	libguestfs-winsupport-8.2-1.module_el8.5.0+2608+72063365.x86_64.rpm	44c049bfdacc2be7aadcdd1d88273932a10fcbf6d442876fc0a4336bba89711f
x86_64	libnbd-devel-1.2.2-1.module_el8.5.0+2608+72063365.x86_64.rpm	4f63425a0aa20ee7db616087d7318a68533daf40296fb07eaa7f5078f936e156
x86_64	sgabios-0.20170427git-3.module_el8.5.0+2608+72063365.x86_64.rpm	506fdaeb2197e00662bac64ebcf0af4c4e69924c4037f8366d87faecd2b1a2d2
x86_64	ocaml-hivex-devel-1.3.18-20.module_el8.3.0+2048+e7a0a3ea.x86_64.rpm	56e0dc460155001ec742a36439bd29231e012bfe2d10e0bc77504545136eab42
x86_64	supermin-5.1.19-10.module_el8.5.0+2608+72063365.x86_64.rpm	635045de6d59b38d6129928f6380200e4792dbc9db34136065a7777b75480cda
x86_64	ocaml-libnbd-devel-1.2.2-1.module_el8.3.0+2048+e7a0a3ea.x86_64.rpm	759caa5f4e13d6768c828599fe7c062cdb7ac80d25f73a77838a18d1e075adac
x86_64	libiscsi-1.18.0-8.module_el8.5.0+2608+72063365.x86_64.rpm	7dc48ee7edff9d327471f145e37d0317f41d4987c555399f5d9fc406dde7b269
x86_64	nbdkit-ssh-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	7dcc830d642ca9893c31ec9c3d2658f5afcd30456f6fe910a20ced100af7b7f7
x86_64	libiscsi-devel-1.18.0-8.module_el8.5.0+2608+72063365.x86_64.rpm	7ffa4832a69511a115738331f7947c272942bf78f1e7ef4341209eaed0670976
x86_64	nbdkit-linuxdisk-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	84e888d073167b345f7a7ead3601b9527d799ae9a3378224ac85729cab96835f
x86_64	libiscsi-utils-1.18.0-8.module_el8.5.0+2608+72063365.x86_64.rpm	915899381f0be974278b335ff979803bee2443232428c4f5a558c0e9b1cd9024
x86_64	nbdkit-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	9541edb5f2d057b325c5a9a313534bf3b4b174b20cfe1372ed424a95bd17412f
x86_64	nbdkit-server-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	968bd81591a615e76def3061e71019869c261bf16a089be47366c06348bc6b87
x86_64	perl-Sys-Virt-6.0.0-1.module_el8.5.0+2608+72063365.x86_64.rpm	a11e3bc5ece9e03805f409d591ab7b781515e41f03fc49061f4a16ddc41b1c05
x86_64	netcf-devel-0.2.8-12.module_el8.5.0+2608+72063365.x86_64.rpm	a1e44dded4e6efb88bdb091442b7fcc17a6c061549cb85b5b0cb2a338cb7ed3f
x86_64	ocaml-libguestfs-devel-1.40.2-27.module_el8.4.0+2358+630e803b.alma.x86_64.rpm	a7cc8f85a723c8146ee09297cf85ac1c8019588a8c7b2bbb828b80f405b9152d
x86_64	nbdkit-curl-plugin-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	a83b517ddeafff8ee4e80b7e66b25c532da9e472b6b31b5f245083ac47dd55f8
x86_64	python3-libvirt-6.0.0-1.module_el8.5.0+2608+72063365.x86_64.rpm	b06fd633d2fa383641da181332e16d3768ac239778e6085a0ffcea3bab4cd59f
x86_64	netcf-libs-0.2.8-12.module_el8.5.0+2608+72063365.x86_64.rpm	bcd0d34436655e2164fb550ce7c318318af39edd7269a86056dad2655788e98a
x86_64	nbdkit-xz-filter-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	c711ef77278225bafc341e8f15338d66a1e5cd7c64b757124620452fbcad7e17
x86_64	nbdkit-devel-1.16.2-4.module_el8.5.0+2608+72063365.x86_64.rpm	ccb19db27168a9a53748e6a9dd45f751b909bd2e8abaaaf56a4950f4ec17a952
x86_64	libvirt-dbus-1.3.0-2.module_el8.5.0+2608+72063365.x86_64.rpm	d183782abe44c75dd1647b7ebb73576efbbcaa3e5a070fdbf14e052b074446ce
x86_64	ocaml-libguestfs-1.40.2-27.module_el8.4.0+2358+630e803b.alma.x86_64.rpm	e373abe7ca3469fa1bdb6ad54755a428954efa999ef7ac5d86b90f7b59428653
x86_64	seabios-1.13.0-2.module_el8.5.0+2608+72063365.x86_64.rpm	f5375f65a3891ea517fc9233c41d5bbc9a150aa18953e0ba6a9f44423e69c083

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.