Описание
ELSA-2021-1064: virt:ol and virt-devel:rhel security update (MODERATE)
libvirt [6.0.0-28.1.0.1]
- Add runtime deps for pkg librbd1 >= 1:10.2.5 (Keshav Sharma)
qemu-kvm [4.2.0-34.el8_3.5]
- kvm-Drop-bogus-IPv6-messages.patch [bz#1939493]
- Resolves: bz#1939493 (CVE-2020-10756 virt:rhel/qemu-kvm: QEMU: slirp: networking out-of-bounds read information disclosure vulnerability [rhel-8.3.0.z] [rhel-8.3.0.z])
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module virt:ol is enabled
hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-bash-completion
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-benchmarking
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gfs2
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-inspect-icons
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-javadoc
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-ja
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-uk
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rescue
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rsync
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools-c
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-winsupport
8.2-1.module+el8.3.0+7860+a7792d29
libguestfs-xfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libiscsi
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-devel
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-utils
1.18.0-8.module+el8.3.0+7860+a7792d29
libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
libvirt
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-admin
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-bash-completion
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-client
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-config-network
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-config-nwfilter
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-interface
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-network
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-nodedev
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-nwfilter
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-qemu
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-secret
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-core
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-disk
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-gluster
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-iscsi
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-iscsi-direct
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-logical
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-mpath
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-rbd
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-scsi
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-kvm
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-dbus
1.3.0-2.module+el8.3.0+7860+a7792d29
libvirt-devel
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-docs
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-libs
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-lock-sanlock
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-nss
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
lua-guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
nbdfuse
1.2.2-1.module+el8.3.0+7860+a7792d29
nbdkit
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-bash-completion
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-filters
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-curl-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-devel
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-example-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-gzip-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-linuxdisk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-python-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-server
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-ssh-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-xz-filter
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
netcf
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-devel
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-libs
0.2.8-12.module+el8.3.0+7860+a7792d29
ocaml-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
ocaml-libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
perl-Sys-Guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
perl-Sys-Virt
6.0.0-1.module+el8.3.0+7860+a7792d29
perl-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
python3-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
python3-libvirt
6.0.0-1.module+el8.3.0+7860+a7792d29
qemu-guest-agent
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-img
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-curl
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-iscsi
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-rbd
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-ssh
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-common
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-core
4.2.0-34.module+el8.3.0+20008+729ca284.5
ruby-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ruby-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
supermin
5.1.19-10.module+el8.3.0+7860+a7792d29
supermin-devel
5.1.19-10.module+el8.3.0+7860+a7792d29
virt-dib
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
Module virt-devel:ol is enabled
qemu-kvm-tests
4.2.0-34.module+el8.3.0+20008+729ca284.5
Oracle Linux x86_64
Module virt:ol is enabled
hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-bash-completion
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-benchmarking
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gfs2
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-gobject-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-inspect-icons
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-java-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-javadoc
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-ja
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-man-pages-uk
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rescue
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-rsync
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-tools-c
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libguestfs-winsupport
8.2-1.module+el8.3.0+7860+a7792d29
libguestfs-xfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
libiscsi
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-devel
1.18.0-8.module+el8.3.0+7860+a7792d29
libiscsi-utils
1.18.0-8.module+el8.3.0+7860+a7792d29
libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
libvirt
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-admin
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-bash-completion
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-client
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-config-network
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-config-nwfilter
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-interface
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-network
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-nodedev
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-nwfilter
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-qemu
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-secret
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-core
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-disk
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-gluster
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-iscsi
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-iscsi-direct
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-logical
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-mpath
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-rbd
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-driver-storage-scsi
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-daemon-kvm
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-dbus
1.3.0-2.module+el8.3.0+7860+a7792d29
libvirt-devel
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-docs
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-libs
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-lock-sanlock
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
libvirt-nss
6.0.0-28.1.0.1.module+el8.3.0+20008+729ca284
lua-guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
nbdfuse
1.2.2-1.module+el8.3.0+7860+a7792d29
nbdkit
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-bash-completion
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-filters
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-basic-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-curl-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-devel
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-example-plugins
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-gzip-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-linuxdisk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-python-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-server
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-ssh-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-vddk-plugin
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
nbdkit-xz-filter
1.16.2-4.0.1.module+el8.3.0+7860+a7792d29
netcf
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-devel
0.2.8-12.module+el8.3.0+7860+a7792d29
netcf-libs
0.2.8-12.module+el8.3.0+7860+a7792d29
ocaml-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-hivex-devel
1.3.18-20.module+el8.3.0+7860+a7792d29
ocaml-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libguestfs-devel
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
ocaml-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
ocaml-libnbd-devel
1.2.2-1.module+el8.3.0+7860+a7792d29
perl-Sys-Guestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
perl-Sys-Virt
6.0.0-1.module+el8.3.0+7860+a7792d29
perl-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
python3-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
python3-libnbd
1.2.2-1.module+el8.3.0+7860+a7792d29
python3-libvirt
6.0.0-1.module+el8.3.0+7860+a7792d29
qemu-guest-agent
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-img
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-curl
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-gluster
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-iscsi
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-rbd
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-block-ssh
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-common
4.2.0-34.module+el8.3.0+20008+729ca284.5
qemu-kvm-core
4.2.0-34.module+el8.3.0+20008+729ca284.5
ruby-hivex
1.3.18-20.module+el8.3.0+7860+a7792d29
ruby-libguestfs
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
seabios
1.13.0-2.module+el8.3.0+7860+a7792d29
seabios-bin
1.13.0-2.module+el8.3.0+7860+a7792d29
seavgabios-bin
1.13.0-2.module+el8.3.0+7860+a7792d29
sgabios
0.20170427git-3.module+el8.3.0+7860+a7792d29
sgabios-bin
0.20170427git-3.module+el8.3.0+7860+a7792d29
supermin
5.1.19-10.module+el8.3.0+7860+a7792d29
supermin-devel
5.1.19-10.module+el8.3.0+7860+a7792d29
virt-dib
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
virt-v2v
1.40.2-25.0.1.module+el8.3.0+7860+a7792d29
Module virt-devel:ol is enabled
qemu-kvm-tests
4.2.0-34.module+el8.3.0+20008+729ca284.5
Связанные CVE
Связанные уязвимости
It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 (https://access.redhat.com/errata/RHSA-2020:4676) erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in virt:rhel/qemu-kvm via erratum RHSA-2020:4059 (https://access.redhat.com/errata/RHSA-2020:4059). CVE-2021-20295 was assigned to that Red Hat specific security regression. For more details about the original security issue CVE-2020-10756, refer to bug 1835986 or the CVE page: https://access.redhat.com/security/cve/CVE-2020-10756.
It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 (https://access.redhat.com/errata/RHSA-2020:4676) erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in virt:rhel/qemu-kvm via erratum RHSA-2020:4059 (https://access.redhat.com/errata/RHSA-2020:4059). CVE-2021-20295 was assigned to that Red Hat specific security regression. For more details about the original security issue CVE-2020-10756, refer to bug 1835986 or the CVE page: https://access.redhat.com/security/cve/CVE-2020-10756.
It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 (https://access.redhat.com/errata/RHSA-2020:4676) erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756, which was previously corrected in virt:rhel/qemu-kvm via erratum RHSA-2020:4059 (https://access.redhat.com/errata/RHSA-2020:4059). CVE-2021-20295 was assigned to that Red Hat specific security regression. For more details about the original security issue CVE-2020-10756, refer to bug 1835986 or the CVE page: https://access.redhat.com/security/cve/CVE-2020-10756.
It was discovered that the update for the virt:rhel module in the RHSA ...