Lucene search

K
redhatRedHatRHSA-2021:0648
HistoryFeb 23, 2021 - 6:17 p.m.

(RHSA-2021:0648) Low: virt:8.2 and virt-devel:8.2 security update

2021-02-2318:17:50
access.redhat.com
61

3.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0005 Low

EPSS

Percentile

15.8%

The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.

Security Fix(es):

  • QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure (CVE-2020-11947)

  • QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c (CVE-2020-25723)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanyi686libiscsi-devel< 1.18.0-8.module+el8.2.0+4793+b09dd2fblibiscsi-devel-1.18.0-8.module+el8.2.0+4793+b09dd2fb.i686.rpm
RedHatanyi686libvirt-daemon-driver-storage-core< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-storage-core-6.0.0-25.5.module+el8.2.1+8680+ea98947b.i686.rpm
RedHatanyppc64lelibnbd-debugsource< 1.2.2-1.module+el8.2.0+5644+32ac38d4libnbd-debugsource-1.2.2-1.module+el8.2.0+5644+32ac38d4.ppc64le.rpm
RedHatanys390xlibvirt-daemon-driver-interface-debuginfo< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-interface-debuginfo-6.0.0-25.5.module+el8.2.1+8680+ea98947b.s390x.rpm
RedHatanyppc64leperl-sys-guestfs< 1.40.2-24.module+el8.2.1+7154+47ffd890perl-Sys-Guestfs-1.40.2-24.module+el8.2.1+7154+47ffd890.ppc64le.rpm
RedHatanyi686libvirt-daemon-driver-storage-disk-debuginfo< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-storage-disk-debuginfo-6.0.0-25.5.module+el8.2.1+8680+ea98947b.i686.rpm
RedHatanyaarch64hivex< 1.3.18-20.module+el8.2.0+5588+63a201c3hivex-1.3.18-20.module+el8.2.0+5588+63a201c3.aarch64.rpm
RedHatanys390xocaml-hivex-debuginfo< 1.3.18-20.module+el8.2.0+5588+63a201c3ocaml-hivex-debuginfo-1.3.18-20.module+el8.2.0+5588+63a201c3.s390x.rpm
RedHatanyppc64levirglrenderer-test-server< 0.8.2-1.module+el8.2.0+5777+d9c2af8cvirglrenderer-test-server-0.8.2-1.module+el8.2.0+5777+d9c2af8c.ppc64le.rpm
RedHatanyx86_64libvirt-daemon-driver-interface-debuginfo< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-interface-debuginfo-6.0.0-25.5.module+el8.2.1+8680+ea98947b.x86_64.rpm
Rows per page:
1-10 of 8951

3.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0005 Low

EPSS

Percentile

15.8%