Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2021:0743
HistoryMar 08, 2021 - 9:26 a.m.

(RHSA-2021:0743) Important: virt:8.2 and virt-devel:8.2 security update

2021-03-0809:26:12
access.redhat.com
53

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

20.3%

JSON

The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.

Security Fix(es):

  • QEMU: virtiofsd: potential privileged host device access from guest (CVE-2020-35517)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanyx86_64virt-dib-debuginfo< 1.40.2-24.module+el8.2.1+7154+47ffd890virt-dib-debuginfo-1.40.2-24.module+el8.2.1+7154+47ffd890.x86_64.rpm
RedHatanyppc64lelibvirt-admin-debuginfo< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-admin-debuginfo-6.0.0-25.5.module+el8.2.1+8680+ea98947b.ppc64le.rpm
RedHatanyx86_64libvirt-daemon-driver-storage-iscsi-direct< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-storage-iscsi-direct-6.0.0-25.5.module+el8.2.1+8680+ea98947b.x86_64.rpm
RedHatanys390xlibvirt-devel< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-devel-6.0.0-25.5.module+el8.2.1+8680+ea98947b.s390x.rpm
RedHatanys390xlibguestfs-tools-c< 1.40.2-24.module+el8.2.1+7154+47ffd890libguestfs-tools-c-1.40.2-24.module+el8.2.1+7154+47ffd890.s390x.rpm
RedHatanyaarch64qemu-kvm-debugsource< 4.2.0-29.module+el8.2.1+9917+2543143c.7qemu-kvm-debugsource-4.2.0-29.module+el8.2.1+9917+2543143c.7.aarch64.rpm
RedHatanynoarchlibguestfs-javadoc< 1.40.2-24.module+el8.2.1+7154+47ffd890libguestfs-javadoc-1.40.2-24.module+el8.2.1+7154+47ffd890.noarch.rpm
RedHatanyppc64lelibvirt-daemon-driver-storage-iscsi-direct< 6.0.0-25.5.module+el8.2.1+8680+ea98947blibvirt-daemon-driver-storage-iscsi-direct-6.0.0-25.5.module+el8.2.1+8680+ea98947b.ppc64le.rpm
RedHatanys390xlibguestfs-winsupport< 8.2-1.module+el8.2.0+5590+82cd80dflibguestfs-winsupport-8.2-1.module+el8.2.0+5590+82cd80df.s390x.rpm
RedHatanyx86_64qemu-kvm-block-gluster< 4.2.0-29.module+el8.2.1+9917+2543143c.7qemu-kvm-block-gluster-4.2.0-29.module+el8.2.1+9917+2543143c.7.x86_64.rpm
Rows per page:
1-10 of 8951

Related

nessus 9
rocky 1
osv 4
veracode 1
ubuntucve 1
redhatcve 1
cve 1
redhat 1
prion 1
almalinux 1
alpinelinux 1
oraclelinux 1
debiancve 1
ubuntu 1
openvas 1
gentoo 1
nessus
nessus
RHEL 8 : virt:8.2 and virt-devel:8.2 (RHSA-2021:0743)
2021-03-08 00:00:00
AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2021:0711)
2022-02-09 00:00:00
Rocky Linux 8 : virt:rhel and virt-devel:rhel (RLSA-2021:0711)
2023-11-07 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security update
2021-03-03 12:22:25
osv
osv
Important: virt:rhel and virt-devel:rhel security update
2021-03-03 12:22:25
CVE-2020-35517
2021-01-28 20:15:12
Important: virt:rhel and virt-devel:rhel security update
2021-03-03 12:22:25
veracode
veracode
Privilege Escalation
2021-02-15 08:00:28
ubuntucve
ubuntucve
CVE-2020-35517
2021-01-28 00:00:00
redhatcve
redhatcve
CVE-2020-35517
2021-01-22 08:04:50
cve
cve
CVE-2020-35517
2021-01-28 20:15:00
redhat
redhat
(RHSA-2021:0711) Important: virt:rhel and virt-devel:rhel security update
2021-03-03 12:22:25
prion
prion
Privilege escalation
2021-01-28 20:15:00
almalinux
almalinux
Important: virt:rhel and virt-devel:rhel security update
2021-03-03 12:22:25
alpinelinux
alpinelinux
CVE-2020-35517
2021-01-28 20:15:00
oraclelinux
oraclelinux
virt:ol and virt-devel:rhel security update
2021-03-05 00:00:00
debiancve
debiancve
CVE-2020-35517
2021-01-28 20:15:00
ubuntu
ubuntu
QEMU vulnerabilities
2021-07-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5010-1)
2021-07-16 00:00:00
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2022-08-14 00:00:00

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

20.3%

JSON
Related for RHSA-2021:0743
nessus9rocky1osv4veracode1ubuntucve1redhatcve1cve1redhat1prion1almalinux1alpinelinux1oraclelinux1debiancve1ubuntu1openvas1gentoo1