Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix: * libvirt: double free in qemuAgentGetInterfaces in qemu_agent.c * QEMU: heap buffer overflow in msix_table_mmio_write in hw/pci/msix.c * QEMU: ide: atapi: OOB access while processing read commands * QEMU: heap buffer overflow in iscsi_aio_ioctl_cb in block/iscsi.c may lead to information disclosure * QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment in hw/net/net_tx_pkt.c * QEMU: infinite loop in e1000e_write_packet_to_guest in hw/net/e1000e_core.c * QEMU: assertion failure through usb_packet_unmap in hw/usb/hcd-ehci.c * QEMU: e1000e: infinite loop scenario in case of null packet descriptor * QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.