RHSA-2019:3345-01 -- Redhat SLOF, hivex, libguestfs, libguestfs-winsupport, libiscsi, libvirt, libvirt-dbus, libvirt-python, nbdkit, netcf, perl-Sys-Virt, qemu-kvm, seabios, sgabios, supermin, qemu-guest-agentID: oval:org.secpod.oval:def:66672 | Date: (C)2020-11-09 (M)2022-10-10 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix: * ntfs-3g: heap-based buffer overflow leads to local root privilege escalation * QEMU: slirp: information leakage in tcp_emu due to uninitialized stack variables * QEMU: qxl: null pointer dereference while releasing spice resources For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
SLOF |
hivex |
libguestfs |
libguestfs-winsupport |
libiscsi |
libvirt |
libvirt-dbus |
libvirt-python |
nbdkit |
netcf |
perl-Sys-Virt |
qemu-kvm |
seabios |
sgabios |
supermin |
qemu-guest-agent |