(RHSA-2022:4667) Moderate: OpenShift Virtualization 4.10.1 RPMs security and bug fix update

2022-05-1815:34:20

access.redhat.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.4%

JSON

OpenShift Virtualization is Red Hat’s virtualization solution designed for Red Hat OpenShift Container Platform.

This advisory contains OpenShift Virtualization 4.10.1 RPMs.

Security Fix(es):

prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

4.10.1 rpms (BZ#2065755)

OSVersionArchitecturePackageVersionFilename
RedHat8x86_64kubevirt-virtctl-redistributable< 4.10.1-489.el8kubevirt-virtctl-redistributable-4.10.1-489.el8.x86_64.rpm
RedHat8x86_64kubevirt-virtctl< 4.10.1-489.el8kubevirt-virtctl-4.10.1-489.el8.x86_64.rpm
RedHat7x86_64kubevirt-virtctl< 4.10.1-489.el7kubevirt-virtctl-4.10.1-489.el7.x86_64.rpm
RedHat7x86_64kubevirt-virtctl-redistributable< 4.10.1-489.el7kubevirt-virtctl-redistributable-4.10.1-489.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	x86_64	kubevirt-virtctl-redistributable	< 4.10.1-489.el8	kubevirt-virtctl-redistributable-4.10.1-489.el8.x86_64.rpm
RedHat	8	x86_64	kubevirt-virtctl	< 4.10.1-489.el8	kubevirt-virtctl-4.10.1-489.el8.x86_64.rpm
RedHat	7	x86_64	kubevirt-virtctl	< 4.10.1-489.el7	kubevirt-virtctl-4.10.1-489.el7.x86_64.rpm
RedHat	7	x86_64	kubevirt-virtctl-redistributable	< 4.10.1-489.el7	kubevirt-virtctl-redistributable-4.10.1-489.el7.x86_64.rpm