CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
99.5%
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host’s resources and performing administrative tasks.
Security Fix(es):
sudo: Heap buffer overflow in argument parsing (CVE-2021-3156)
dnsmasq: loose address/port check in reply_query() makes forging replies easier for an off-path attacker (CVE-2020-25684)
dnsmasq: loose query name check in reply_query() makes forging replies easier for an off-path attacker (CVE-2020-25685)
dnsmasq: multiple queries forwarded for the same name makes forging replies easier for an off-path attacker (CVE-2020-25686)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
With this update, the libsmbclient is now in the RHV-H repository, and sssd-ad now installs on RHV-H. (BZ#1868967)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | x86_64 | sssd-libwbclient | <Â 2.3.0-9.el8 | sssd-libwbclient-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-nfs-idmap | <Â 2.3.0-9.el8 | sssd-nfs-idmap-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | python3-libipa_hbac | <Â 2.3.0-9.el8 | python3-libipa_hbac-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-tools | <Â 2.3.0-9.el8 | sssd-tools-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-winbind-idmap | <Â 2.3.0-9.el8 | sssd-winbind-idmap-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | redhat-release-virtualization-host | <Â 4.4.4-1.el8ev | redhat-release-virtualization-host-4.4.4-1.el8ev.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-common-debuginfo | <Â 2.3.0-9.el8 | sssd-common-debuginfo-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | samba-debugsource | <Â 4.12.3-12.el8.3 | samba-debugsource-4.12.3-12.el8.3.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-kcm-debuginfo | <Â 2.3.0-9.el8 | sssd-kcm-debuginfo-2.3.0-9.el8.x86_64.rpm |
RedHat | 8 | x86_64 | sssd-krb5-debuginfo | <Â 2.3.0-9.el8 | sssd-krb5-debuginfo-2.3.0-9.el8.x86_64.rpm |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
99.5%