RHSA-2023:2757-01 -- Redhat SLOF, hivex, libguestfs, libiscsi, libnbd, libtpms, libvirt, nbdkit, netcf, perl-Sys-Virt, qemu-kvm, seabios, sgabios, supermin, swtpm, virt-v2v, lua-guestfs, nbdfuse, perl-Sys-Guestfs, perl-hivex, python3-hivex, python3-libguestfs, python3-libnbd, python3-libvirt, qemu-guest-agent, qemu-img, ruby-hivex, ruby-libguestfs, virt-dib, seavgabios-binID: oval:org.secpod.oval:def:507717 | Date: (C)2023-07-20 (M)2024-04-03 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix: * ntfs-3g: heap-based buffer overflow in ntfsck * QEMU: VNC: integer underflow in vnc_client_cut_text_ext leads to CPU exhaustion * ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value * ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate * ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc * ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array * tpm2: TCG TPM2.0 implementations vulnerable to memory corruption For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
SLOF |
hivex |
libguestfs |
libiscsi |
libnbd |
libtpms |
libvirt |
nbdkit |
netcf |
perl-Sys-Virt |
qemu-kvm |
seabios |
sgabios |
supermin |
swtpm |
virt-v2v |
lua-guestfs |
nbdfuse |
perl-Sys-Guestfs |
perl-hivex |
python3-hivex |
python3-libguestfs |
python3-libnbd |
python3-libvirt |
qemu-guest-agent |
qemu-img |
ruby-hivex |
ruby-libguestfs |
virt-dib |
seavgabios-bin |