(RHSA-2016:0426) Important: redhat-support-plugin-rhev security, bug fix and enhancement update

The Red Hat Support plug-in for Red Hat Enterprise Virtualization
offers seamless integrated access to Red Hat subscription services
from the Red Hat Enterprise Virtualization administration portal. The
plug-in provides automated functionality that enables quicker help,
answers, and proactive services. It offers easy and instant access to
Red Hat exclusive knowledge, resources, engagement, and diagnostic
features.

It was found that redhat-support-plugin-rhev passed a user-specified
path and file name directly to the command line in the log viewer
component. This could allow users with the SuperUser role on any
Entity to execute arbitrary commands on any host in the RHEV
environment. (CVE-2015-7544)

All Red Hat Enterprise Virtualization Manager users are advised to
upgrade to these updated packages.