[ALSA-2021:1762] Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
Type:
security
Severity:
moderate
Release date:
2021-05-18
Description:
Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix(es): * libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c (CVE-2020-25637) * QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c (CVE-2020-27821) * QEMU: ide: atapi: OOB access while processing read commands (CVE-2020-29443) * QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure (CVE-2020-11947) * QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c (CVE-2020-16092) * QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c (CVE-2020-25707) * QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c (CVE-2020-25723) * QEMU: e1000e: infinite loop scenario in case of null packet descriptor (CVE-2020-28916) * QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets (CVE-2020-29129, CVE-2020-29130) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Updated packages:
  • libguestfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-bash-completion-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-benchmarking-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-devel-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-gfs2-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-gobject-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-gobject-devel-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-inspect-icons-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-java-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-java-devel-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-javadoc-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-man-pages-ja-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-man-pages-uk-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-rescue-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-rsync-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-tools-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.noarch.rpm
  • libguestfs-tools-c-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libguestfs-winsupport-8.2-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libguestfs-xfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • libiscsi-1.18.0-8.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libiscsi-devel-1.18.0-8.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libiscsi-utils-1.18.0-8.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libnbd-1.2.2-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libnbd-devel-1.2.2-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • libvirt-dbus-1.3.0-2.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • lua-guestfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • nbdfuse-1.2.2-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-bash-completion-1.16.2-4.module_el8.4.0+2523+3300d70f.noarch.rpm
  • nbdkit-basic-filters-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-basic-plugins-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-curl-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-devel-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-example-plugins-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-gzip-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-linuxdisk-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-python-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-server-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-ssh-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-vddk-plugin-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • nbdkit-xz-filter-1.16.2-4.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • netcf-0.2.8-12.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • netcf-devel-0.2.8-12.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • netcf-libs-0.2.8-12.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • perl-Sys-Guestfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • perl-Sys-Virt-6.0.0-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • python3-libguestfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • python3-libnbd-1.2.2-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • python3-libvirt-6.0.0-1.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • ruby-libguestfs-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • seabios-1.13.0-2.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • seabios-bin-1.13.0-2.module_el8.4.0+2523+3300d70f.noarch.rpm
  • seavgabios-bin-1.13.0-2.module_el8.4.0+2523+3300d70f.noarch.rpm
  • sgabios-0.20170427git-3.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • sgabios-bin-0.20170427git-3.module_el8.4.0+2523+3300d70f.noarch.rpm
  • supermin-5.1.19-10.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • supermin-devel-5.1.19-10.module_el8.4.0+2523+3300d70f.x86_64.rpm
  • virt-dib-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
  • virt-v2v-1.40.2-27.module_el8.4.0+2523+3300d70f.alma.x86_64.rpm
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.