Red Hat Product Errata RHSA-2023:1677 - Security Advisory
Issued:
2023-04-10
Updated:
2023-04-10

RHSA-2023:1677 - Security Advisory

Synopsis

Important: Red Hat Virtualization Host 4.4.z SP 1 security update batch#5 (oVirt-4.5.3-5)

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.

The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.

Security Fix(es):

  • git: gitattributes parsing integer overflow (CVE-2022-23521)
  • git: Heap overflow in `git archive`, `git log --format` leading to RCE (CVE-2022-41903)
  • ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266)
  • kernel: FUSE filesystem low-privileged user privileges escalation (CVE-2023-0386)
  • nss: Arbitrary memory write via PKCS 12 (CVE-2023-0767)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/2974891

Affected Products

  • Red Hat Virtualization 4 for RHEL 8 x86_64
  • Red Hat Virtualization Host 4 for RHEL 8 x86_64

Fixes

  • BZ - 2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation
  • BZ - 2162055 - CVE-2022-23521 git: gitattributes parsing integer overflow
  • BZ - 2162056 - CVE-2022-41903 git: Heap overflow in `git archive`, `git log --format` leading to RCE
  • BZ - 2163379 - CVE-2023-0266 ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF
  • BZ - 2170377 - CVE-2023-0767 nss: Arbitrary memory write via PKCS 12

Red Hat Virtualization 4 for RHEL 8

SRPM
redhat-release-virtualization-host-4.5.3-6.el8ev.src.rpm SHA-256: ff5fe8dabb745f6b915ca00a511bb2c932babec2a1f0a76236c92e6e34615d26
x86_64
redhat-release-virtualization-host-4.5.3-6.el8ev.x86_64.rpm SHA-256: d5b5a64daf9cc41ec5126c97d641dea258d59039b1745a695e1e79d7ac9ff8eb
redhat-release-virtualization-host-content-4.5.3-6.el8ev.x86_64.rpm SHA-256: 523f4acdd226b0b185c0592ac28e593f7ae3448f894f9e022f888cdba7ec2254
redhat-virtualization-host-image-update-placeholder-4.5.3-6.el8ev.noarch.rpm SHA-256: 10e8c0a1a3429758d49d8ba8c9ee290bd1ced5f4af27f441b567da22c3f12b41

Red Hat Virtualization Host 4 for RHEL 8

SRPM
redhat-virtualization-host-4.5.3-202304051438_8.6.src.rpm SHA-256: d6cb770e0924b1f6b7269c3a0cbf60c1dbe9f26fcfb8930178b1448f731092a9
x86_64
redhat-virtualization-host-image-update-4.5.3-202304051438_8.6.x86_64.rpm SHA-256: 52d4cdd4e3cfd1423ffa9ebe4706ea8f454f90f43d73525e34a5fca1304c94ca

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.