Описание
ELSA-2021-0711: virt:ol and virt-devel:rhel security update (IMPORTANT)
qemu-kvm [4.2.0-34.el8_3.4]
- kvm-virtiofsd-extract-lo_do_open-from-lo_open.patch [bz#1919109]
- kvm-virtiofsd-optionally-return-inode-pointer-from-lo_do.patch [bz#1919109]
- kvm-virtiofsd-prevent-opening-of-special-files-CVE-2020-.patch [bz#1919109]
- Resolves: bz#1919109 (CVE-2020-35517 virt:rhel/qemu-kvm: QEMU: virtiofsd: potential privileged host device access from guest [rhel-8.3.0.z])
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module virt:ol is enabled
hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-bash-completion
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-benchmarking
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gfs2
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-inspect-icons
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-javadoc
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-ja
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-uk
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rescue
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rsync
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools-c
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-winsupport
8.2-1.module+el8.3.0+7860+a7792d29
libguestfs-xfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libiscsi
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-devel
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-utils
1.18.0-8.module+el8.3.0+7860+a7792d29
libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
libvirt
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-admin
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-bash-completion
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-client
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-config-network
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-config-nwfilter
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-interface
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-network
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-nodedev
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-nwfilter
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-qemu
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-secret
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-core
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-disk
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-gluster
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-iscsi
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-iscsi-direct
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-logical
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-mpath
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-rbd
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-scsi
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-kvm
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-dbus
1.3.0-2.module+el8.3.0+7860+a7792d29
libvirt-devel
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-docs
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-libs
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-lock-sanlock
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-nss
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
lua-guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
nbdfuse
1.2.2-1.module+el8.3.0+7860+a7792d29
nbdkit
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-bash-completion
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-filters
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-curl-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-devel
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-example-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-gzip-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-linuxdisk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-python-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-server
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-ssh-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-xz-filter
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
netcf
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-devel
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-libs
0.2.8-12.module+el8.3.0+7860+a7792d29
ocaml-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
ocaml-libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
perl-Sys-Guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
perl-Sys-Virt
6.0.0-1.module+el8.3.0+7860+a7792d29
perl-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
python3-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
python3-libvirt
6.0.0-1.module+el8.3.0+7860+a7792d29
qemu-guest-agent
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-img
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-curl
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-iscsi
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-rbd
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-ssh
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-common
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-core
4.2.0-34.module+el8.3.0+9669+81410e06.4
ruby-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ruby-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
supermin
5.1.19-10.module+el8.3.0+7860+a7792d29
supermin-devel
5.1.19-10.module+el8.3.0+7860+a7792d29
virt-dib
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
Module virt-devel:ol is enabled
qemu-kvm-tests
4.2.0-34.module+el8.3.0+9669+81410e06.4
Oracle Linux x86_64
Module virt:ol is enabled
hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-bash-completion
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-benchmarking
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gfs2
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-inspect-icons
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-javadoc
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-ja
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-uk
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rescue
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rsync
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools-c
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-winsupport
8.2-1.module+el8.3.0+7860+a7792d29
libguestfs-xfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libiscsi
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-devel
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-utils
1.18.0-8.module+el8.3.0+7860+a7792d29
libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
libvirt
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-admin
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-bash-completion
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-client
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-config-network
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-config-nwfilter
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-interface
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-network
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-nodedev
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-nwfilter
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-qemu
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-secret
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-core
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-disk
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-gluster
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-iscsi
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-iscsi-direct
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-logical
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-mpath
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-rbd
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-driver-storage-scsi
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-daemon-kvm
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-dbus
1.3.0-2.module+el8.3.0+7860+a7792d29
libvirt-devel
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-docs
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-libs
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-lock-sanlock
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
libvirt-nss
6.0.0-28.0.1.module+el8.3.0+7860+a7792d29
lua-guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
nbdfuse
1.2.2-1.module+el8.3.0+7860+a7792d29
nbdkit
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-bash-completion
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-filters
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-curl-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-devel
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-example-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-gzip-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-linuxdisk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-python-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-server
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-ssh-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-vddk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-xz-filter
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
netcf
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-devel
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-libs
0.2.8-12.module+el8.3.0+7860+a7792d29
ocaml-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
ocaml-libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
perl-Sys-Guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
perl-Sys-Virt
6.0.0-1.module+el8.3.0+7860+a7792d29
perl-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
python3-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
python3-libvirt
6.0.0-1.module+el8.3.0+7860+a7792d29
qemu-guest-agent
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-img
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-curl
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-gluster
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-iscsi
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-rbd
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-block-ssh
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-common
4.2.0-34.module+el8.3.0+9669+81410e06.4
qemu-kvm-core
4.2.0-34.module+el8.3.0+9669+81410e06.4
ruby-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ruby-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
seabios
1.13.0-2.module+el8.3.0+7860+a7792d29
seabios-bin
1.13.0-2.module+el8.3.0+7860+a7792d29
seavgabios-bin
1.13.0-2.module+el8.3.0+7860+a7792d29
sgabios
0.20170427git-3.module+el8.3.0+7860+a7792d29
sgabios-bin
0.20170427git-3.module+el8.3.0+7860+a7792d29
supermin
5.1.19-10.module+el8.3.0+7860+a7792d29
supermin-devel
5.1.19-10.module+el8.3.0+7860+a7792d29
virt-dib
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
virt-v2v
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
Module virt-devel:ol is enabled
qemu-kvm-tests
4.2.0-34.module+el8.3.0+9669+81410e06.4
Связанные CVE
Связанные уязвимости
A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.
A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.
A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared directory and use it to r/w access host devices.
A flaw was found in qemu. A host privilege escalation issue was found ...
