- Issued:
- 2021-10-20
- Updated:
- 2021-10-20
RHSA-2021:3943 - Security Advisory
Synopsis
Moderate: RHV-H security update (redhat-virtualization-host) 4.3.19
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The redhat-virtualization-host packages provide the Red Hat Virtualization Host.
These packages include redhat-release-virtualization-host. Red Hat
Virtualization Hosts (RHVH) are installed using a special build of Red Hat
Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and
performing administrative tasks.
Security Fix(es):
- kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- Red Hat Virtualization Host has been rebased on Red Hat Enterprise Linux 7.9 Batch #9. (BZ#2010171)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
Affected Products
- Red Hat Virtualization 4 for RHEL 7 x86_64
- Red Hat Virtualization Host 4 for RHEL 7 x86_64
Fixes
- BZ - 1965461 - CVE-2021-22543 kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks
- BZ - 2010171 - Rebase RHV-H on RHEL 7.9 Batch 9
CVEs
Red Hat Virtualization 4 for RHEL 7
SRPM | |
---|---|
redhat-release-virtualization-host-4.3.19-1.el7ev.src.rpm | SHA-256: b0894e331ed8607657a6fa56a4a77210183c7e3f82e44c8d403871a70ec58282 |
redhat-virtualization-host-4.3.19-20211013.0.el7_9.src.rpm | SHA-256: 402b4d49cd893fbd1a40e573fdf6c58a1d1fcb25d2b9905fbf17b1f35825ba01 |
x86_64 | |
redhat-release-virtualization-host-4.3.19-1.el7ev.x86_64.rpm | SHA-256: 099b2b850cdd98e9f77e344e139e704a72b5071af8f7d8c567b7eb1898e4b665 |
redhat-virtualization-host-image-update-4.3.19-20211013.0.el7_9.noarch.rpm | SHA-256: 6f7d6e313eb939d8cc4923d053557132e0aa86fd6c3d30b3638347a7b279a503 |
redhat-virtualization-host-image-update-placeholder-4.3.19-1.el7ev.noarch.rpm | SHA-256: d13d43df2ad7f3cd404242de5e70aea98a02495f561942f93fe6eae1e1581145 |
Red Hat Virtualization Host 4 for RHEL 7
SRPM | |
---|---|
redhat-virtualization-host-4.3.19-20211013.0.el7_9.src.rpm | SHA-256: 402b4d49cd893fbd1a40e573fdf6c58a1d1fcb25d2b9905fbf17b1f35825ba01 |
x86_64 | |
redhat-virtualization-host-image-update-4.3.19-20211013.0.el7_9.noarch.rpm | SHA-256: 6f7d6e313eb939d8cc4923d053557132e0aa86fd6c3d30b3638347a7b279a503 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.