Red Hat Product Errata RHEA-2020:3316 - Product Enhancement Advisory
Issued:
2020-08-04
Updated:
2020-08-04

RHEA-2020:3316 - Product Enhancement Advisory

Synopsis

RHV Host (redhat-virtualization-host) 4.4

Type/Severity

Product Enhancement Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated redhat-virtualization-host packages that fix several bugs and add various enhancements are now available.

Description

CVE-2019-11477 redhat-virtualization-host: Kernel: tcp: integer overflow while processing SACK blocks allows remote denial of service [rhev-m-4.4.0]

Changes to the distribution component:

  • The usbutils and net-tools packages have been added to the RHV-H optional channel. This eases the installation of "iDRAC Service Module" on Dell PowerEdge systems. (BZ#1824117)

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

  • Red Hat Virtualization 4 for RHEL 8 x86_64
  • Red Hat Virtualization Host 4 for RHEL 8 x86_64

Fixes

  • BZ - 1696701 - Build imgbased for RHV 4.4 RHEL 8
  • BZ - 1701464 - Rebase RHV-H 4.4 on RHEL 8
  • BZ - 1708085 - Build redhat-release-virtualization-host for RHV 4.4 RHEL 8
  • BZ - 1720663 - Build ovirt-node-ng for RHV 4.4 RHEL 8
  • BZ - 1724102 - [RFE] Warn if SELinux is disabled when upgrading RHV-H
  • BZ - 1745619 - [RFE] Add the LDAP and Kerberos PAM Modules to RHVH
  • BZ - 1752428 - RHVH 4.4 install fails with DBusError
  • BZ - 1756703 - The Red Hat logo displays wrong.
  • BZ - 1756706 - The sshd service of RHVH is inactive.
  • BZ - 1756923 - RHVH-4.4.0 Bond failed, there is no slave NIC under the Bond
  • BZ - 1756929 - [RHVH4.4.0] After rebooting, the NIC Configuration with Manual type cannot be saved
  • BZ - 1756944 - RHVH-4.4.0 The NICs are turned off during installation, but all NICs were found to be open after installation
  • BZ - 1756948 - Failed to install RHVH4.4 on dirty disks when using automatic partitioning
  • BZ - 1760217 - RHVH4.4 installation fails when security profile is selected
  • BZ - 1766206 - grub2-efi-ia32-2.02-76.el8.x86_64 is included in RHV-H-4 4.4/el8 instead of grub2-efi-x64-*
  • BZ - 1770683 - [RHVH-4.4.0] Upgrade RHVH from RHVH-4.4-20190926.3 to rhvh-4.4.0.8-0.20191107.0 failed
  • BZ - 1770893 - Manager shows successful upgrade even when upgrade failed in imgbased
  • BZ - 1777886 - [RFE] Support minimal storage layout for RHVH
  • BZ - 1779588 - [RHVH-4.4.0] Unable to detect upgrade package, when upgrading RHVH from RHVM UI
  • BZ - 1781171 - Consume scap-security-guide-rhv in RHV-H
  • BZ - 1782168 - RHVH product version displays 4.3 in Subscription page with cockpit UI
  • BZ - 1800456 - Missing Subscription Page in Cockpit UI in rhvh-4.4.0.12
  • BZ - 1800508 - [RHVH-4.4] el version in "redhat-virtualization-host-4.4.0-20200205.0.el8_2" does not match the actual
  • BZ - 1803017 - The discard mount option is not set properly
  • BZ - 1809208 - Include openvswitch2.11 >= 2.11.0-47.el8fdp.x86_64
  • BZ - 1809367 - Host update fails with environment block too small
  • BZ - 1814984 - RHVH 4.4 installation will crash when registered to CDN
  • BZ - 1817443 - RHVH 4.4 installation will fail when security profile is selected
  • BZ - 1819036 - RHVH 4.4: No response when clicking button "Help" in Anaconda GUI
  • BZ - 1822089 - Task "ovirt.hosted_engine_setup : Install oVirt Hosted Engine packages" fail during hosted engine deployment via cockpit
  • BZ - 1824117 - [RHHI] include "usbutils" and "net-tools" to RHV-H optional channel
  • BZ - 1827232 - [RHVH 4.4] sometimes when defining 2 sizes of huge pages the parameters order changed and all memory occupied by the huge pages.
  • BZ - 1836026 - Add pkgs required by STIG
  • BZ - 1836619 - Rebase RHV-H 4.4.0 beta on RHEL-8.2 (beta refresh)
  • BZ - 1838231 - RHV 4.4 beta Failed to deploy host on RHV Manager
  • BZ - 1845916 - Need to remove node user from oVirt Node since there is no use of it.

CVEs

(none)

References

(none)

Red Hat Virtualization 4 for RHEL 8

SRPM
imgbased-1.2.10-1.el8ev.src.rpm SHA-256: d289963833655721791d8d117f2d6e34539673a019354cd39e9ad22749b5198a
ovirt-node-ng-4.4.0-1.el8ev.src.rpm SHA-256: 43ecaf02a013eca0eed669d9c0ee6a4ef263598f20cc3719c9df015a9d5efd09
redhat-release-virtualization-host-4.4.1-1.el8ev.src.rpm SHA-256: c1d5290b87e3e980311118b71dba31b9eeb00205175ca5bae7f1f403b9644d3d
scap-security-guide-0.1.48-1.el8ev.src.rpm SHA-256: d809ead1236fdcca52c1564db827b4b882e8016390ec1de0e4e9ae9737831997
x86_64
imgbased-1.2.10-1.el8ev.noarch.rpm SHA-256: caa4aeff51121c49c998816185550097fcaec1e5a3e6edc3c5710d68a18172cc
ovirt-node-ng-nodectl-4.4.0-1.el8ev.noarch.rpm SHA-256: fc0d3b8ae65770237f998c0f0f164bce9235188eed863633b1206df1389b042e
python3-imgbased-1.2.10-1.el8ev.noarch.rpm SHA-256: 36e44711f761e82b4e6b26ea3b89c43ce37e939a07ee343c13d789eff0b8e977
python3-ovirt-node-ng-nodectl-4.4.0-1.el8ev.noarch.rpm SHA-256: 05a18d63434b7cfe29e2b1bda38fe0b560dd0eda87a03c0b9db3f998f481468f
redhat-release-virtualization-host-4.4.1-1.el8ev.x86_64.rpm SHA-256: 97297c7a20eb91b8d525bd680784b8a673aed289cf085ae7fa2903106ee131dc
redhat-virtualization-host-image-update-placeholder-4.4.1-1.el8ev.noarch.rpm SHA-256: 695f77d1c1f9847d53719aedad8975754eed32d4bb32fa46795e79af6f901b35
scap-security-guide-0.1.48-1.el8ev.noarch.rpm SHA-256: 7721834933899e788375e0bb99680b95eef62c45d3bc906e16e8f273c2ec36db
scap-security-guide-doc-0.1.48-1.el8ev.noarch.rpm SHA-256: f7e2ac54d5235782d86b997d02e65868d82da58dc5d6b801681fe2eddbc17273
scap-security-guide-rhv-0.1.48-1.el8ev.noarch.rpm SHA-256: 97b2beef52e8eb368956206190e0a096673bed108fc7fab0ff16eb0fd22737d0

Red Hat Virtualization Host 4 for RHEL 8

SRPM
net-tools-2.0-0.51.20160912git.el8.src.rpm SHA-256: 9c2ba2417f769855c40e1952ce02c8bd65597f7c1d14188037538365a7986042
redhat-virtualization-host-4.4.1-20200722.0.el8_2.src.rpm SHA-256: 88658a9178f81116b004ad730e4d8b647f774b68b04d20695d33c3d4540c0a40
sssd-2.2.3-20.el8.src.rpm SHA-256: 0875b67ffefd27f07a819d9a7513f1651718351d4e0f907ac827f9fc2a6c1345
usbutils-010-3.el8.src.rpm SHA-256: 4f9346e4faab07a636d212359306fad29342e47544acf4842d14ea27a9504d9b
x86_64
libipa_hbac-2.2.3-20.el8.x86_64.rpm SHA-256: 8b8630e02599616f59c11245660741475abc694b53ab0d50d23cd5bebd160a34
libipa_hbac-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 83ada05d5f5944c5bf08be744ffdcb01575aec6f066702b0f161bb457db42c4d
libsss_autofs-2.2.3-20.el8.x86_64.rpm SHA-256: d33c81023dfc922103458fa702f20d5b8be9a959f9c2dd72ebf4605112aff277
libsss_autofs-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 4740fae7feeeecc52a46d901ed66758cf3fee9a208c8cdecb0ca2ad9aa644262
libsss_certmap-2.2.3-20.el8.x86_64.rpm SHA-256: 9326aa093b8fac91db15a908307ca09ad97f91dc0230ba58910da02d400841a4
libsss_certmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 9277966c53b587bef9408553b39df3e050a986a35064618cc4c55e785f666043
libsss_idmap-2.2.3-20.el8.x86_64.rpm SHA-256: 053689d081bee59d32123a932452795e3a959da040acb5457a7af1bf07e91b4b
libsss_idmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 1665f877f6bcaa3c7562adf2aaabbd3033a03caddbf62b52574ad96aa5f3d6b0
libsss_nss_idmap-2.2.3-20.el8.x86_64.rpm SHA-256: cd73f63813598b6ba48fca861190fec4699d101bb62be91caa58208e5c9e89e3
libsss_nss_idmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 0425a5423717f4202456d7de79540f1b3ee303d75f353f07e082952239d97736
libsss_nss_idmap-devel-2.2.3-20.el8.x86_64.rpm SHA-256: fe488c2460f38959eb5fd8ccf784eb7e2ed6762ee849cf0346a2cb66a6fdd5e5
libsss_simpleifp-2.2.3-20.el8.x86_64.rpm SHA-256: 94b58dac4d4fd479f80aff98c56a23522e601119fb8615546c94096f5be8080a
libsss_simpleifp-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 115b8938950f311a6e0b4def2951305d2eea28bf5bba10bc2dbb518a280976ab
libsss_sudo-2.2.3-20.el8.x86_64.rpm SHA-256: 34b371acd44d23d7591b2d06047771bfd5a6fa97fcb19c30dfacda3ee6d9f71a
libsss_sudo-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: de8b39ba3d8284c2fdfebe067180f572db93087428511ff157c35fcb61b850ab
net-tools-2.0-0.51.20160912git.el8.x86_64.rpm SHA-256: 7ddb5bd8ac2c6813caa44776aa9ef57bd119c881d2c8c904225982900d59e936
net-tools-debuginfo-2.0-0.51.20160912git.el8.x86_64.rpm SHA-256: 340b0822e0056800dfe20be475de8c5e84bb2ed698b95f67b4c0c8946a59f297
net-tools-debugsource-2.0-0.51.20160912git.el8.x86_64.rpm SHA-256: 1c2cdd0788c54c9fbd78a29e82bb4d23a1fe33bda669c66a64101eb4df67eee5
python3-libipa_hbac-2.2.3-20.el8.x86_64.rpm SHA-256: a6efe0836e2ac6999af1b7d3d105152780bce55e58d7fcf2367eddd234c38d2b
python3-libipa_hbac-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: ef9010ffe19941d9d4c8445a319e9877952815437da042104a4076d9fbd17a50
python3-libsss_nss_idmap-2.2.3-20.el8.x86_64.rpm SHA-256: 2ed3eadc3e9858e458895c07acdff959b8128e496b6ba9691a243406d76be31f
python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 8be50599d611e408b97e8de5b0c99924e0993139a05d8061cc02fdedbc5fa8cf
python3-sss-2.2.3-20.el8.x86_64.rpm SHA-256: f5ee9727b9a0fac57177cdddea10fdb6dea320ee70f23395d68883d03e94fc09
python3-sss-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 0e6e23949305a895c83c687ee01a369a6b691e8273b3eb1b22a65067c74bef77
python3-sss-murmur-2.2.3-20.el8.x86_64.rpm SHA-256: a5f11da650a82b1581b04c2b55d7a57e2d90f26ad45e46babb208f4d11758d89
python3-sss-murmur-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 0cabdf6b2516a652ca57aadbb4766a244ac750c338a1aa14a676faa5baa73a82
python3-sssdconfig-2.2.3-20.el8.noarch.rpm SHA-256: 09018f105b68bf3232d6c72a6378044a30550de53c5df84683681a75252cde20
redhat-virtualization-host-image-update-4.4.1-20200722.0.el8_2.noarch.rpm SHA-256: 8059414464cd59fb70a60807c4ca2ec01e844c68004b6141ed56ad514f92b166
sssd-2.2.3-20.el8.x86_64.rpm SHA-256: 5ed52441f9d438b607252a3bd986e25ac65292f64bbe6bda404d33c55924159e
sssd-ad-2.2.3-20.el8.x86_64.rpm SHA-256: 5ccb5c08502bff3200283b192e00b8f40f0fc92ae056a4b494ef41554e1416c7
sssd-ad-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: d810a0be57d05e1af3a92689babca3c0497e97c09095f9fc4bda7b5c525def0d
sssd-client-2.2.3-20.el8.x86_64.rpm SHA-256: ca96b28de99853abd67e36eaffd73b8ca469756d90cb0d0395df7c68201cdbdf
sssd-client-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 188a3e321835c01642145b9ecd599dbd58c4c046a246ff0931ca8d460b329dc3
sssd-common-2.2.3-20.el8.x86_64.rpm SHA-256: 20395ee7af96c4c06974ceaaa897cecd77ed0515bbbb492509d5ee8269448306
sssd-common-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 00adbaa2c7aec2e62694a8dcec7e66d6fff81820d75b6c55f0207141ffdc3f7c
sssd-common-pac-2.2.3-20.el8.x86_64.rpm SHA-256: 3edebf1e4f3aa168b461dc51326008ec99215eba141cccc0fb7c25d7ea965181
sssd-common-pac-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: e8399f2c2ed0de1ec332dcc08a89c8da31eadb80a95494674fccaf0de4da8a12
sssd-dbus-2.2.3-20.el8.x86_64.rpm SHA-256: 079b0b7d20860b3f030d456c0ef6706dbf1414c54c2071b7c05597dd7d83bdf5
sssd-dbus-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 344902d3fe04de2e83c88073048789fdffa6b26da0f988df24dbeb612797f340
sssd-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: dedb63f9f49f53d98d568fd19b6cd79be0d7ed8d12367cc5c9eeaf9e4a7b9dc3
sssd-debugsource-2.2.3-20.el8.x86_64.rpm SHA-256: 99647b2aae1fa784e0d43d9c5e0107fb4b96ed80c503b6e0f6523ef04ee0b884
sssd-ipa-2.2.3-20.el8.x86_64.rpm SHA-256: ae136b60ca945f6496debb8874f8d704fe82e8ed1aa2a89167383c88d7e69e92
sssd-ipa-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 8b970731f19cbac6f16429e63fc4a37878f3d29e324545de8d5908b171dd5588
sssd-kcm-2.2.3-20.el8.x86_64.rpm SHA-256: 5ee75f5bf91ccc20997468f321a54f8f81304c0793b8a5e8ac848a011c0e3913
sssd-kcm-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: bd0b9bf3fc9ad7523d863b927d4d00b2a7893a0f0e6766e6a686f6a9969b5c7a
sssd-krb5-2.2.3-20.el8.x86_64.rpm SHA-256: 131fc380630199953c2e60e930ead7519549c6c0b327383c87bd5eb2eb5598be
sssd-krb5-common-2.2.3-20.el8.x86_64.rpm SHA-256: 70ef63c8439b09549d2fa436085de467d5941c27270a96a4f2812d0f615c3885
sssd-krb5-common-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 87e2f2717c2076480196f3f427e5f14d06a26562479438445ad92760e464ed23
sssd-krb5-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: b3334051c1932fc2cf3aa7dd5c49ca3c5e4a7f51ae8c4d842590cb16f3599a87
sssd-ldap-2.2.3-20.el8.x86_64.rpm SHA-256: 41c3604d13bd0be84797e5c9426439b7483a1c5b0ef99ef67cb6990b3301103a
sssd-ldap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 52892710eac68bc31c676fe45d4239d134f4ad4a5713be0d5bb4a20f1f70c6bc
sssd-libwbclient-2.2.3-20.el8.x86_64.rpm SHA-256: 366e3f9f1d19d98a7fdab3648622ab2840422a011ccb57f8280bb6cdeb93a320
sssd-libwbclient-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: d0508c4e35cda0cc572a736d7b0fcf4eed34c0a084b230f17d7000ce5852c011
sssd-nfs-idmap-2.2.3-20.el8.x86_64.rpm SHA-256: ea172216a27fcba92cae06b683e8b2431acf73e9a503463eefccdb34f421de43
sssd-nfs-idmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: d6f385df791990ea6960c2fb0b4cce00423ba0009ae5df58921fce83eb727e4a
sssd-polkit-rules-2.2.3-20.el8.x86_64.rpm SHA-256: 8deb12e91d1701e7f2c0922368ad281ecf01af479ff42ff2496d99beae976ba3
sssd-proxy-2.2.3-20.el8.x86_64.rpm SHA-256: 976196c0af583d1e155978038c591f5649784f67fc4aeb75559de3d132c89f4d
sssd-proxy-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: d3ec623761a2cb325b5da859e2401021437d5bf9e544712e5d2cc71fe21f00a9
sssd-tools-2.2.3-20.el8.x86_64.rpm SHA-256: 898caca2cde9d342e4ffae249601209ad27fdcbd08e018b4273954243b0e7dec
sssd-tools-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: 921016109ba8199183b994ad66354a1310a34acc5e9122d38d4df52da7d268f5
sssd-winbind-idmap-2.2.3-20.el8.x86_64.rpm SHA-256: 073248e6b7abbec7463dcf6d98af6d765c683f4147d2ec2e7d56b08fb9f5784c
sssd-winbind-idmap-debuginfo-2.2.3-20.el8.x86_64.rpm SHA-256: c681c06306fe2c08269b702611b3a5ecd10ad77e42601c992029e468c58c28e8
usbutils-010-3.el8.x86_64.rpm SHA-256: e39d4e832e3f2ff451ee927f2217fc225682e09154904c7fc0817ee7c9206e48
usbutils-debuginfo-010-3.el8.x86_64.rpm SHA-256: bfd65e6d7061a143e0b76ad34d720852869bad21837af55530c5b8764d8eddf5
usbutils-debugsource-010-3.el8.x86_64.rpm SHA-256: 8ab2cd3847e6a76bcf5166628685f51a5dab27c51ec6b8ca5045ef6632b52819

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.