RHSA-2013:1155 - Security Advisory

Topic

Updated vdsm packages that fix one security issue and various bugs are now
available.

The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

[Updated 21 August 2013]
The packages list in this erratum has been updated to include missing
packages for the "Red Hat Enterprise Virt Management Agent (v 6 x86_64)"
channel (also known as "rhel-x86_64-rhev-mgmt-agent-6"). No changes have
been made to the original packages.

Description

VDSM is a management module that serves as a Red Hat Enterprise
Virtualization Manager agent on Red Hat Enterprise Virtualization
Hypervisor or Red Hat Enterprise Linux hosts.

It was found that the fix for CVE-2013-0167 released via RHSA-2013:0886
was incomplete. A privileged guest user could potentially use this flaw to
make the host the guest is running on unavailable to the management
server. (CVE-2013-4236)

This issue was found by David Gibson of Red Hat.

This update also fixes the following bugs:

• Previously, failure to move a disk produced a 'truesize' exit message,

which was not informative. Now, failure to move a disk produces a more
helpful error message explaining that the volume is corrupted or missing.
(BZ#985556)

• The LVM filter has been updated to only access physical volumes by full

/dev/mapper paths in order to improve performance. This replaces the
previous behavior of scanning all devices including logical volumes on
physical volumes. (BZ#983599)

• The log collector now collects /var/log/sanlock.log from Hypervisors, to

assist in debugging sanlock errors. (BZ#987042)

• When the poollist parameter was not defined, dumpStorageTable crashed,

causing SOS report generation to fail with the error 'IndexError: list
index out of range'. VDSM now handles this exception, so the log collector
can generate host SOS reports. (BZ#985069)

• Previously, VDSM used the memAvailable parameter to report available

memory on a host, which could return negative values if memory
overcommitment was in use. Now, the new memFree parameter returns the
actual amount of free memory on a host. (BZ#982639)

All users managing Red Hat Enterprise Linux Virtualization hosts using Red
Hat Enterprise Virtualization Manager are advised to install these updated
packages, which fix these issues.

These updated packages will be provided to users of Red Hat Enterprise
Virtualization Hypervisor in the next rhev-hypervisor6 errata package.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Affected Products

• Red Hat Virtualization 3.2 x86_64
• Red Hat Virtualization 3 for RHEL 6 x86_64

Fixes

• BZ - 982639 - vdsm is reporting negative values for available memory
• BZ - 983599 - Change lvm filter to access RHEV PVs only by full path /dev/mapper/wwid
• BZ - 985556 - vdsm: failure to move disk with 'truesize' error in vdsm will show the same exit message in event log
• BZ - 987042 - logcollector does not collect /var/log/sanlock.log from hypervisors
• BZ - 996166 - CVE-2013-4236 vdsm: incomplete fix for CVE-2013-0167 issue

CVEs

• CVE-2013-4236

References

• https://access.redhat.com/security/updates/classification/#moderate
• https://rhn.redhat.com/errata/RHSA-2013-0886.html