Issued:: 2023-08-16
Updated:: 2023-08-16

RHSA-2023:4664 - Security Advisory

Overview
Updated Images

Synopsis

Important: OpenShift Virtualization 4.13.3 Images security and bug fix update

Type/Severity

Security Advisory: Important

Topic

Red Hat OpenShift Virtualization release 4.13.3 is now available with updates to packages and images that fix several bugs and add enhancements.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform.

This advisory contains OpenShift Virtualization 4.13.3 images.

Security Fix(es):

openshift: OCP & FIPS mode (CVE-2023-3089)
golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
golang: go/parser: Infinite loop in parsing (CVE-2023-24537)
golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)
golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

Consistency in naming mediatedDevicesTypes and nodemediatedDeviceTypes (BZ#2054863)
"failed to sync guest time" log spam in destination virt-launcher pod during VM live migration (BZ#2064160)
Missing documentation for snapshot recording rules (BZ#2143165)
KubevirtHyperconvergedClusterOperatorCRModification alert in firing state during cnv upgrade (4.11.2->4.12.0) (BZ#2154319)
VMExport: can't download a PVC that was created from DV on NFS (when there's no VM that owns this PVC) - the storage doesn't support fsGroup (BZ#2156525)
Unable to do post-copy migration (BZ#2164836)
empty libvirt metrics output, when executing metrics Prometheus query on a vm that is paused status (BZ#2172544)
The filter items on instanceType page is not horizontal aligned (BZ#2174744)
"No NetworkAttachmentDefinitions available" should not show when editing pod networking (BZ#2175651)
CNV 4.13 nightly | manually increasing the number of virt-api pods does not work (BZ#2175710)
The volume in instanceTypes page should be selected automatically just after it's been added (BZ#2177977)
PVC size is not readable while selecting "PVC (creates PVC)" in disk modal (BZ#2180666)
"Copy SSH command" get undefined user (BZ#2180719)
[Nonpriv] VM Memory does not show in details card of overview or details tab (BZ#2181432)
spec.firmware.bootloader is not copied while cloning a UEFI VM (BZ#2181515)
kubevirt-plugin (now kubevirt-console-plugin) ignores node placement configuration (BZ#2181999)
VM metrics graphs are render incorrectly (BZ#2182000)
Restore VM's pretty names (BZ#2182317)
Cannot clone VM to other namespace if the VM is created from instanceType (BZ#2182938)
"No data available" shows on Virtualization overview metrics chart (BZ#2183915)
Some CNV installation components are missing required labels (BZ#2187509)
Custom SELinux policy for virt_launcher still present on CNV with DisableCustomSELinuxPolicy feature gate enabled (BZ#2188144)
VM created from CD source registry cannot be started due to InvalidImageName (BZ#2189744)
lun cannot be used with DVs (BZ#2190171)
[4.13.z] Missing virtctl vmexport download manifests command (BZ#2203727)
[4.13]Missing StorageProfile defaults for IBM and AWS EFS CSI provisioners (BZ#2220844)
[cnv-4.13] isolateEmulatorThread should not block live migration (BZ#2229148)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Container Native Virtualization 4.13 for RHEL 9 x86_64
Red Hat Container Native Virtualization 4.13 for RHEL 8 x86_64
Red Hat Container Native Virtualization 4.13 for RHEL 7 x86_64

Fixes

BZ - 2054863 - Consistency in naming mediatedDevicesTypes and nodemediatedDeviceTypes
BZ - 2064160 - "failed to sync guest time" log spam in destination virt-launcher pod during VM live migration
BZ - 2130604 - Unable to start/stop VM while rebooting the node where kubemacpool-mac-controller-manager pod is running
BZ - 2143165 - Missing documentation for snapshot recording rules
BZ - 2154319 - KubevirtHyperconvergedClusterOperatorCRModification alert in firing state during cnv upgrade (4.11.2->4.12.0)
BZ - 2156525 - VMExport: can't download a PVC that was created from DV on NFS (when there's no VM that owns this PVC) - the storage doesn't support fsGroup
BZ - 2164836 - Unable to do post-copy migration
BZ - 2172544 - empty libvirt metrics output, when executing metrics Prometheus query on a vm that is paused status
BZ - 2174744 - The filter items on instanceType page is not horizontal aligned
BZ - 2175651 - "No NetworkAttachmentDefinitions available" should not show when editing pod networking
BZ - 2175710 - CNV 4.13 nightly | manually increasing the number of virt-api pods does not work
BZ - 2177977 - The volume in instanceTypes page should be selected automatically just after it's been added
BZ - 2178358 - CVE-2022-41723 net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding
BZ - 2180666 - PVC size is not readable while selecting "PVC (creates PVC)" in disk modal
BZ - 2180719 - "Copy SSH command" get undefined user
BZ - 2181432 - [Nonpriv] VM Memory does not show in details card of overview or details tab
BZ - 2181515 - spec.firmware.bootloader is not copied while cloning a UEFI VM
BZ - 2181999 - kubevirt-plugin (now kubevirt-console-plugin) ignores node placement configuration
BZ - 2182000 - VM metrics graphs are render incorrectly
BZ - 2182317 - Restore VM's pretty names
BZ - 2182938 - Cannot clone VM to other namespace if the VM is created from instanceType
BZ - 2183915 - "No data available" shows on Virtualization overview metrics chart
BZ - 2184481 - CVE-2023-24538 golang: html/template: backticks not treated as string delimiters
BZ - 2184482 - CVE-2023-24536 golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption
BZ - 2184483 - CVE-2023-24534 golang: net/http, net/textproto: denial of service from excessive memory allocation
BZ - 2184484 - CVE-2023-24537 golang: go/parser: Infinite loop in parsing
BZ - 2187509 - Some CNV installation components are missing required labels
BZ - 2188144 - Custom SELinux policy for virt_launcher still present on CNV with DisableCustomSELinuxPolicy feature gate enabled
BZ - 2189744 - VM created from CD source registry cannot be started due to InvalidImageName
BZ - 2190171 - lun can not be used with DVs
BZ - 2196026 - CVE-2023-24539 golang: html/template: improper sanitization of CSS values
BZ - 2196027 - CVE-2023-24540 golang: html/template: improper handling of JavaScript whitespace
BZ - 2196029 - CVE-2023-29400 golang: html/template: improper handling of empty HTML attributes
BZ - 2203727 - [4.13.z] Missing?virtctl vmexport download manifests command
BZ - 2212085 - CVE-2023-3089 openshift: OCP & FIPS mode
BZ - 2220844 - [4.13]Missing StorageProfile defaults for IBM and AWS EFS CSI provisioners
BZ - 2221913 - [4.13]DataImportCron Garbage Collection can mistakenly delete latest PVC
BZ - 2229148 - [cnv-4.13] isolateEmulatorThread should not block live migration

References

aarch64

container-native-virtualization/bridge-marker-rhel9@sha256:ff4c5f7d59fa938de6dd7394bc38c69ec142d90438232f242b35e77019d56d6b

container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:a32c2591cd58f8fcdf75ffd6ca48438f98fe94ede1183fa9dfcb93eb246c4f9c

container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:e0a2cf76b8762da61a9deda21ba99932104f53015f9976589cbc0ca0181b99c8

container-native-virtualization/cnv-must-gather-rhel9@sha256:2840bb1ac72f1c3c1c829d8b4fc93d9b52a6ecfc2d9d5a6b6a3000e19a66993f

container-native-virtualization/hco-bundle-registry-rhel9@sha256:88eba23cc5acb861ddf0e975c6816a625a64f59d2db3cf9b41887fd9ebf77745

container-native-virtualization/hostpath-csi-driver-rhel9@sha256:fefd519fd61681629fc129bce217f8368ff61e9e2fa9787d9acfd178e9f751a5

container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:42ca962f2fbb886038ce13440a55b55bbf1bb4e7b366fc0c6f043b3e67e5eebc

container-native-virtualization/hostpath-provisioner-rhel9@sha256:7cd5e47a0a329c7b0dfbe6c50038adfe8f1db2a9c172b7a059d1b3ff1e009ca3

container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:b6c863388340225a360d99c14fcd439b15bff4d173e6c79113a80fcf8e455564

container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:5f84aab0389c6a85c4ec58e230fea3694e3c800185f7ec1a090ccdce0c214d79

container-native-virtualization/kubemacpool-rhel9@sha256:6184c3cfc8d282bd5a5c468fff7c8f726149b4010cdd5c8998f2f6b2d4f055c3

container-native-virtualization/kubesecondarydns-rhel9@sha256:f8d3bab9e69a933e01d9b8758518a19d8c1c1f8fd64909a8ffc683159030895a

container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:cb09c73e12893427f6c723f529ea1e70a1bf90ac9f0780b5e1451f6d8ecfa3f7

container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:0c8b9c4b62527d0452d76bab0a61c9d12d1c89791e8c9b63dc145a36b4f5d729

container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:ddb6d5ddcc573fcf8d7d1aae5544cfaef9baa2438eaeb55715ec585c1a029356

container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:3145e1c3168e0ef4011afad2f5ab17408416614322f8b189f9d9f4c0c9724607

container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:672eb2a4cbccaf822da955dae6bd3590b881c531e2ab5a4bd3f1059324984728

container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:313023a6839f56893074bf78162b69be1a1b1c8c8d54088b3ce06cb50f64268c

container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:2b3504d827ea1860b947bb634dc14f91c6a4a203cf3dc1e59ee6b4b7baa1e1ca

container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:b5cf7ecf853f578ec4f330b8d0f6628e82e3b805e46d0854f1089e88941348f1

container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:2aa5075cef829800438640e3955cb0c234c3223967331409d48133feb404216d

container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:7c3f3bff54aba3c323a21f996d676931b9bfb6def6eb3518655acc6bdad6f2e5

container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:57b2328936a501285ff39fcb502afab72a9884dec803c56533bdc5fd14f99c54

container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:e6421f0dc3a99fc9b510cabf138f58a87306a382d636e2100ab56be2d1ac10e5

container-native-virtualization/kubevirt-template-validator-rhel9@sha256:b09ceab3907731b610f76aba3bcaed5f13456674db4f713ce1096f97112ec0be

container-native-virtualization/libguestfs-tools-rhel9@sha256:da0128f73d882e2d2c8b357ce12f0f219b861d8dd8bbfec3735abc0204937c18

container-native-virtualization/multus-dynamic-networks-rhel9@sha256:042a25a4bbacd7e5dae707abfa99aac56be78f98bd083d90394a66559577858d

container-native-virtualization/ovs-cni-plugin-rhel9@sha256:36d2f25cb1c22b339f52f8f85e51e82a74545b6f9719e83e1bf3a7ff0750a12b

container-native-virtualization/virt-api-rhel9@sha256:79860afa4628a0fcc47be8662bc2b43488a6af1e60f132e196f8c6c429cc77b5

container-native-virtualization/virt-artifacts-server-rhel9@sha256:002425814902243f2c9c67cece12b99c3cbd45befde4dc652b76059c3b08d6d3

container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:45a966de5ac8eef1c90a3bf3d3955c2368cfaec38a79b9c1c530f3d541786d94

container-native-virtualization/virt-cdi-cloner-rhel9@sha256:fc02be05495a2269ff8f2a942caef0be2d931496c50ac9bea140bcc28460b5d9

container-native-virtualization/virt-cdi-controller-rhel9@sha256:779b19d3118203c216de8dab6e936de8ef4f90b7ecd8ba333847cece3e2281b9

container-native-virtualization/virt-cdi-importer-rhel9@sha256:9f25a2931e0198f98ba4733bd654e942e348bd9e7881c1c537cb5bd4989c92ac

container-native-virtualization/virt-cdi-operator-rhel9@sha256:ada5c0ec8d9fef0e105122cd8c33d3335d883bc0fca939c65e79ea97a095e042

container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:3c367d0b59ed68fa291f8eec7108525ab445de34267ae3b8ce99860084e30aff

container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:44dbe678a54c5a87a8b78926bed6b4ae39ea9d4af7cf269db34e3aef96760464

container-native-virtualization/virt-controller-rhel9@sha256:7c4714b2cbf7bf5902cb0db878f3e32c68dec6df0604e8487a64ea3353b680b0

container-native-virtualization/virt-exportproxy-rhel9@sha256:37cc98e2cc0a4221ebb663e23c80546afb248d2c7a438041628914b7f60c72b8

container-native-virtualization/virt-exportserver-rhel9@sha256:100d37e6ba1f69fe994763ffe668e6251f157106f651dc6eea13ef9b5d95bd26

container-native-virtualization/virt-handler-rhel9@sha256:2db34a9d6676348646754a37ca43d3044236e2a416d3270970968d76745b46c8

container-native-virtualization/virt-launcher-rhel9@sha256:592d75312f15dc04d464cb9ea7ff5e2d9f0e575976fa847e1da78704725a77af

container-native-virtualization/virt-operator-rhel9@sha256:2521e63a9180a1bff98048714414607d86f5e60e451b4dfdbefec6fcbc8c8937

container-native-virtualization/virtio-win-rhel9@sha256:3f808a89cf3a07b21494b6b168f5d31ef16fb9aca4d1085655477d6d3fc6f740

container-native-virtualization/vm-console-proxy-rhel9@sha256:dd171160b95e3926960153e999ba7686aa627982b742a1fe101cf3796ece1323

container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:a661b8704b535729f092f69151d0a4bf39f77734adbbbc2680151b5b07aa928d

x86_64

container-native-virtualization/bridge-marker-rhel9@sha256:0442bd3f6db788d815b39b4d4cd17eaeeda70faa07490421d1beb902ecbe8ea3

container-native-virtualization/cluster-network-addons-operator-rhel9@sha256:65fd54535f9a912e84dc5137af6e889667c80064ee20ec0766d4ddbc44cd6842

container-native-virtualization/cnv-containernetworking-plugins-rhel9@sha256:4f24428f6dec14f2fb6d0b023287f9acbe3f9266f677c53597996c68ac8fdea6

container-native-virtualization/cnv-must-gather-rhel9@sha256:f2129875afb6ffb7d93ebf82982e2efb43bcbcdcb5bbea7ff13a487d1a226b0a

container-native-virtualization/hco-bundle-registry-rhel9@sha256:821913dc264e2779f0e7cb1fafc429463a64efe0f895d84ec1850937ac76c403

container-native-virtualization/hostpath-csi-driver-rhel9@sha256:3a784f08efac5ec95080c8770a47768a4675beda2b15e4d971fe3a008a092dbe

container-native-virtualization/hostpath-provisioner-operator-rhel9@sha256:f517928ec380bbeb458987d56cfd71330f80f9a169c034f5fd852f3ad7c5f32e

container-native-virtualization/hostpath-provisioner-rhel9@sha256:a3568cb89ac549ba53f4a01e8d23f821552bb794a2d4207e8b2f128b67290d57

container-native-virtualization/hyperconverged-cluster-operator-rhel9@sha256:129d3a66fea22d6c440baf10c072caeba209fbee903d8e5b1cae784f717ed41a

container-native-virtualization/hyperconverged-cluster-webhook-rhel9@sha256:1330e0a02b02934d52b2f9259796707d21955c200bdb5685a59020352d25966e

container-native-virtualization/kubemacpool-rhel9@sha256:844d7d03c78e5ced5433a23beb81dbb9ef87be848964106252b8d7c23c4dcedb

container-native-virtualization/kubesecondarydns-rhel9@sha256:318e10da8c6ead3b4e96fa78074179635297f6bcf4a1e5723896253d0123b28a

container-native-virtualization/kubevirt-console-plugin-rhel9@sha256:53d1b582811f62d1214425ef1997687886a08c47779bb61d009b46ece0d45139

container-native-virtualization/kubevirt-dpdk-checkup-rhel9@sha256:2287502d96bdf12b59d9f308242ef49da04792afb66d893927c6acf832ae581c

container-native-virtualization/kubevirt-ssp-operator-rhel9@sha256:e7fbc368b51c2a52e4b89f826c7027d8422f8ca066915c8d065dfbd8fd90a1f2

container-native-virtualization/kubevirt-tekton-tasks-cleanup-vm-rhel9@sha256:630a58be94a64fa9941def14e6f8f37c2dddfb198553e7f6e92f282925893863

container-native-virtualization/kubevirt-tekton-tasks-copy-template-rhel9@sha256:0b95cc7e096f82b945bf65b60fdfbc9ea9bd91b767fafccdfcd13bf55ff0936e

container-native-virtualization/kubevirt-tekton-tasks-create-datavolume-rhel9@sha256:521cc33b06ff534295a80de9f363f42ba1998ec7fe3fbecc94e907fda923dbe3

container-native-virtualization/kubevirt-tekton-tasks-create-vm-from-template-rhel9@sha256:caa8240dcd60ed91181ad7787dcf5550e736233795b6a2a4b289cfa3e536e3e1

container-native-virtualization/kubevirt-tekton-tasks-disk-virt-customize-rhel9@sha256:25ec6961286033c84e6eca6fd1ad138ee3aa646be430cc77ecb3a1127cccae9c

container-native-virtualization/kubevirt-tekton-tasks-disk-virt-sysprep-rhel9@sha256:4063ebb60a2976afd9f359de45e19db7f382f4e568a50edb3f89548ce58d1fc1

container-native-virtualization/kubevirt-tekton-tasks-modify-vm-template-rhel9@sha256:5a221eb301ce59e1dcf798cf0e71c37774c89a468a87e30d9abad71f295b0778

container-native-virtualization/kubevirt-tekton-tasks-operator-rhel9@sha256:a5bcc429ece46810669eafc5f094dd6e6f01b7e7e8d586d36eb03485dd124c64

container-native-virtualization/kubevirt-tekton-tasks-wait-for-vmi-status-rhel9@sha256:9e22d5364994b88efdfb2c6b76bb378ef51b25dc8f5224decf6f27424e63b3b5

container-native-virtualization/kubevirt-template-validator-rhel9@sha256:2ede58582a46f15fa08044bae1b833c792c5f25214ef91cbd2f4db703868c137

container-native-virtualization/libguestfs-tools-rhel9@sha256:1f6ec7816c8213f7bbc05d370095d9e3bb687c515c5bbcf5600fc4dc3dc7b805

container-native-virtualization/multus-dynamic-networks-rhel9@sha256:3596ecb6900437a01860a9b15d7ee4c0829bbb00a86ac085a08e98bc500955a3

container-native-virtualization/ovs-cni-plugin-rhel9@sha256:00dba85b8662f5ef6a9aa3f195afa4830d8cd6f63a1d4c6ff3f46cbe9238ec8c

container-native-virtualization/virt-api-rhel9@sha256:bce6cf0c24f9a68ca78a2cc97441aa72c34c97429619839e5f6860bebc8bc8c7

container-native-virtualization/virt-artifacts-server-rhel9@sha256:d4152cad14e423b3f3ebc735d756c48ea771d37dd97265dc96543c0ae141e359

container-native-virtualization/virt-cdi-apiserver-rhel9@sha256:3ceb781b50bb149d54eed31e17db4eaecb8b66eca739165e879b83f702b27691

container-native-virtualization/virt-cdi-cloner-rhel9@sha256:7270f9ddf432332d9f41daaf82f8ee9e10b4df3567ebec10d728e6c6bcd0979c

container-native-virtualization/virt-cdi-controller-rhel9@sha256:c3e0065706b22e1fdce723cff6d789575ddf91001d1d41d2f91da936f3436230

container-native-virtualization/virt-cdi-importer-rhel9@sha256:bc6e6c7c2c0c69a34eb8a7e9bac68d210de413114bb7e6fcc5ff180ac2f4d9a6

container-native-virtualization/virt-cdi-operator-rhel9@sha256:b4b32bacef90db8823c3d6f7757e1d8e0b080597fde5317be73bd31d6d47c6f2

container-native-virtualization/virt-cdi-uploadproxy-rhel9@sha256:e4ecc2ca22b77366714637fa787df663ab6418a0ecfdd3aaeb8069d651cb9acf

container-native-virtualization/virt-cdi-uploadserver-rhel9@sha256:3cb5869ce62d32838c6a554bd1cb04b3fbc45784065a40693dab47eee036c4ea

container-native-virtualization/virt-controller-rhel9@sha256:2026b988fb7b3b4233b41f67107e69526b9fa3008878db991f1432f168d63247

container-native-virtualization/virt-exportproxy-rhel9@sha256:1d72d464383422163ab6058e265d43c7f5853d52bee5241986675c4215f85818

container-native-virtualization/virt-exportserver-rhel9@sha256:906fcddd7156a43043d614eaae98ab3a84f2e68cda310f3cb3ed889c639a67eb

container-native-virtualization/virt-handler-rhel9@sha256:b97a548e6e04f70123846cc50b8a1e8166b03be9d9827366c4034409687b28ad

container-native-virtualization/virt-launcher-rhel9@sha256:36d15a667157780a8cd31d5d6a577a6c2f724b342ab4db65a0d1840557c2591c

container-native-virtualization/virt-operator-rhel9@sha256:41be8c8444ad3e68d5b697a86deee7fe48fef7710bddc975677e4ef05bbefc85

container-native-virtualization/virtio-win-rhel9@sha256:a24db9e9a29f0be46344eb2567d067d799dc59526112cb8f13534fec608b67c9

container-native-virtualization/vm-console-proxy-rhel9@sha256:000252748de0cb5d4fdc1e1d3083b0ac1466a3203b9281afa469e5f360069e6e

container-native-virtualization/vm-network-latency-checkup-rhel9@sha256:322917a579c968913799447cb87ccc8ecac9bf12d9135dba6d4a841c00b435fa

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

RHSA-2023:4664 - Security Advisory

Synopsis

Type/Severity

Topic

Description

Solution

Affected Products

Fixes

CVEs

References

aarch64

x86_64

Quick Links

Help

Site Info

Related Sites

Red Hat legal and privacy links

Red Hat legal and privacy links