[ALSA-2022:7968] Low: virt-v2v security, bug fix, and enhancement update
Type:
security
Severity:
low
Release date:
2022-11-18
Description:
The virt-v2v package provides a tool for converting virtual machines to use the KVM (Kernel-based Virtual Machine) hypervisor or AlmaLinux Enterprise Virtualization. The tool modifies both the virtual machine image and its associated libvirt metadata. Also, virt-v2v can configure a guest to use VirtIO drivers if possible. Security Fix(es): * libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch virt-v2v-man-pages-uk-2.0.7-6.el9.noarch.rpm 765822b74ebf5a5e299e89344f54a8fee110a23b271382bd5736af4db785da60
noarch virt-v2v-man-pages-ja-2.0.7-6.el9.noarch.rpm ba8c2eb4dafa62b803aeb49fea414268cc654858de82a33226914ece9aa02b47
noarch virt-v2v-bash-completion-2.0.7-6.el9.noarch.rpm bfdb27ce7a370c9420b91a3871086a8dafc4fe66cbe7057802789ddd1b8b4a4c
x86_64 virt-v2v-2.0.7-6.el9.x86_64.rpm c02ec3509f749ffd8d75711e2c043dfdf5f21171f6e4c94ac967e42ab9a34a67
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.