Lucene search

K
redhat
RedHatRHSA-2021:3061
HistoryAug 10, 2021 - 11:58 a.m.

(RHSA-2021:3061) Moderate: virt:rhel and virt-devel:rhel security and bug fix update

2021-08-1011:58:46
access.redhat.com
23

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

0.002 Low

EPSS

Percentile

56.4%

Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.

Security Fix(es):

  • QEMU: msix: OOB access during mmio operations may lead to DoS (CVE-2020-13754)

  • hivex: Buffer overflow when provided invalid node key length (CVE-2021-3504)

  • QEMU: net: an assert failure via eth_get_gso_type (CVE-2020-27617)

  • QEMU: net: infinite loop in loopback mode may lead to stack overflow (CVE-2021-3416)

  • qemu: out-of-bound heap buffer access via an interrupt ID field (CVE-2021-20221)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • cannot restart default network and firewalld: iptables: No chain/target/match by that name. (BZ#1958301)

  • RHEL8.4 Nightly[0322] - KVM guest fails to find zipl boot menu index (qemu-kvm) (BZ#1975679)

OSVersionArchitecturePackageVersionFilename
RedHatanyx86_64libvirt-daemon-driver-storage-rbd-debuginfo< 6.0.0-35.1.module+el8.4.0+11273+64eb94eflibvirt-daemon-driver-storage-rbd-debuginfo-6.0.0-35.1.module+el8.4.0+11273+64eb94ef.x86_64.rpm
RedHatanyx86_64nbdkit-vddk-plugin-debuginfo< 1.16.2-4.module+el8.3.0+6922+fd575af8nbdkit-vddk-plugin-debuginfo-1.16.2-4.module+el8.3.0+6922+fd575af8.x86_64.rpm
RedHatanyaarch64libguestfs-xfs< 1.40.2-27.module+el8.4.0+9282+0bdec052libguestfs-xfs-1.40.2-27.module+el8.4.0+9282+0bdec052.aarch64.rpm
RedHatanys390xlibvirt-daemon-driver-storage-mpath-debuginfo< 6.0.0-35.1.module+el8.4.0+11273+64eb94eflibvirt-daemon-driver-storage-mpath-debuginfo-6.0.0-35.1.module+el8.4.0+11273+64eb94ef.s390x.rpm
RedHatanyx86_64nbdkit-server< 1.16.2-4.module+el8.3.0+6922+fd575af8nbdkit-server-1.16.2-4.module+el8.3.0+6922+fd575af8.x86_64.rpm
RedHatanys390xlibvirt-daemon-driver-storage-gluster< 6.0.0-35.1.module+el8.4.0+11273+64eb94eflibvirt-daemon-driver-storage-gluster-6.0.0-35.1.module+el8.4.0+11273+64eb94ef.s390x.rpm
RedHatanyx86_64python3-libguestfs-debuginfo< 1.40.2-27.module+el8.4.0+9282+0bdec052python3-libguestfs-debuginfo-1.40.2-27.module+el8.4.0+9282+0bdec052.x86_64.rpm
RedHatanyaarch64qemu-kvm-common-debuginfo< 4.2.0-48.module+el8.4.0+11909+3300d70f.3qemu-kvm-common-debuginfo-4.2.0-48.module+el8.4.0+11909+3300d70f.3.aarch64.rpm
RedHatanyx86_64qemu-kvm-debugsource< 4.2.0-48.module+el8.4.0+11909+3300d70f.3qemu-kvm-debugsource-4.2.0-48.module+el8.4.0+11909+3300d70f.3.x86_64.rpm
RedHatanyppc64lelibiscsi-utils-debuginfo< 1.18.0-8.module+el8.1.0+4066+0f1aadablibiscsi-utils-debuginfo-1.18.0-8.module+el8.1.0+4066+0f1aadab.ppc64le.rpm
Rows per page:
1-10 of 8351
How to protect your server from attacks?

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

0.002 Low

EPSS

Percentile

56.4%

Related for RHSA-2021:3061