RHSA-2021:3943 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: RHV-H security update (redhat-virtualization-host) 4.3.19

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The redhat-virtualization-host packages provide the Red Hat Virtualization Host.
These packages include redhat-release-virtualization-host. Red Hat
Virtualization Hosts (RHVH) are installed using a special build of Red Hat
Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and
performing administrative tasks.

Security Fix(es):

kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

Red Hat Virtualization Host has been rebased on Red Hat Enterprise Linux 7.9 Batch #9. (BZ#2010171)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/2974891

Affected Products

Red Hat Virtualization 4 for RHEL 7 x86_64
Red Hat Virtualization Host 4 for RHEL 7 x86_64

Fixes

BZ - 1965461 - CVE-2021-22543 kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks
BZ - 2010171 - Rebase RHV-H on RHEL 7.9 Batch 9

CVEs

CVE-2021-22543

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Virtualization 4 for RHEL 7

SRPM
redhat-release-virtualization-host-4.3.19-1.el7ev.src.rpm	SHA-256: b0894e331ed8607657a6fa56a4a77210183c7e3f82e44c8d403871a70ec58282
redhat-virtualization-host-4.3.19-20211013.0.el7_9.src.rpm	SHA-256: 402b4d49cd893fbd1a40e573fdf6c58a1d1fcb25d2b9905fbf17b1f35825ba01
x86_64
redhat-release-virtualization-host-4.3.19-1.el7ev.x86_64.rpm	SHA-256: 099b2b850cdd98e9f77e344e139e704a72b5071af8f7d8c567b7eb1898e4b665
redhat-virtualization-host-image-update-4.3.19-20211013.0.el7_9.noarch.rpm	SHA-256: 6f7d6e313eb939d8cc4923d053557132e0aa86fd6c3d30b3638347a7b279a503
redhat-virtualization-host-image-update-placeholder-4.3.19-1.el7ev.noarch.rpm	SHA-256: d13d43df2ad7f3cd404242de5e70aea98a02495f561942f93fe6eae1e1581145

Red Hat Virtualization Host 4 for RHEL 7

SRPM
redhat-virtualization-host-4.3.19-20211013.0.el7_9.src.rpm	SHA-256: 402b4d49cd893fbd1a40e573fdf6c58a1d1fcb25d2b9905fbf17b1f35825ba01
x86_64
redhat-virtualization-host-image-update-4.3.19-20211013.0.el7_9.noarch.rpm	SHA-256: 6f7d6e313eb939d8cc4923d053557132e0aa86fd6c3d30b3638347a7b279a503

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation