(RHSA-2023:0859) Important: Red Hat Virtualization Host 4.4.z SP 1 security update batch#4 (oVirt-4.5.3-4)

2023-02-2110:36:07

access.redhat.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

56.9%

JSON

The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host’s resources and performing administrative tasks.

The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host’s resources and performing administrative tasks.

Security Fix(es):

kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139)
libksba: integer overflow to code execution (CVE-2022-47629)
sudo: arbitrary file write with privileges of the RunAs user (CVE-2023-22809)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8noarchredhat-virtualization-host-image-update-placeholder< 4.5.3-4.el8evredhat-virtualization-host-image-update-placeholder-4.5.3-4.el8ev.noarch.rpm
RedHatanyx86_64redhat-virtualization-host-image-update< 4.5.3-202302150956_8.6redhat-virtualization-host-image-update-4.5.3-202302150956_8.6.x86_64.rpm
RedHat8x86_64redhat-release-virtualization-host-content< 4.5.3-4.el8evredhat-release-virtualization-host-content-4.5.3-4.el8ev.x86_64.rpm
RedHat8x86_64redhat-release-virtualization-host< 4.5.3-4.el8evredhat-release-virtualization-host-4.5.3-4.el8ev.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	noarch	redhat-virtualization-host-image-update-placeholder	< 4.5.3-4.el8ev	redhat-virtualization-host-image-update-placeholder-4.5.3-4.el8ev.noarch.rpm
RedHat	any	x86_64	redhat-virtualization-host-image-update	< 4.5.3-202302150956_8.6	redhat-virtualization-host-image-update-4.5.3-202302150956_8.6.x86_64.rpm
RedHat	8	x86_64	redhat-release-virtualization-host-content	< 4.5.3-4.el8ev	redhat-release-virtualization-host-content-4.5.3-4.el8ev.x86_64.rpm
RedHat	8	x86_64	redhat-release-virtualization-host	< 4.5.3-4.el8ev	redhat-release-virtualization-host-4.5.3-4.el8ev.x86_64.rpm