RedHatRHSA-2013:0886(RHSA-2013:0886) Moderate: rhev 3.2 - vdsm security and bug fix update
EPSS
Percentile
20.8%
VDSM is a management module that serves as a Red Hat Enterprise
Virtualization Manager agent on Red Hat Enterprise Virtualization
Hypervisor or Red Hat Enterprise Linux hosts.
A flaw was found in the way unexpected fields in guestInfo dictionaries
were processed. A privileged guest user could potentially use this flaw to
make the host the guest is running on unavailable to the management
server. (CVE-2013-0167)
The CVE-2013-0167 issue was discovered by Dan Kenigsberg of the Red Hat
Enterprise Virtualization team.
This update also fixes various bugs. Refer to the Technical Notes for
information about these changes:
All users managing Red Hat Enterprise Linux Virtualization hosts using Red
Hat Enterprise Virtualization Manager are advised to install these updated
packages, which fix these issues.
These updated packages will be provided to users of Red Hat Enterprise
Virtualization Hypervisor in the next rhev-hypervisor6 errata package.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | vdsm | < 4.10.2-22.0.el6ev | vdsm-4.10.2-22.0.el6ev.x86_64.rpm |
| RedHat | 6 | x86_64 | vdsm-python | < 4.10.2-22.0.el6ev | vdsm-python-4.10.2-22.0.el6ev.x86_64.rpm |
| RedHat | 6 | noarch | vdsm-xmlrpc | < 4.10.2-22.0.el6ev | vdsm-xmlrpc-4.10.2-22.0.el6ev.noarch.rpm |
| RedHat | 6 | src | vdsm | < 4.10.2-22.0.el6ev | vdsm-4.10.2-22.0.el6ev.src.rpm |
| RedHat | 6 | noarch | vdsm-reg | < 4.10.2-22.0.el6ev | vdsm-reg-4.10.2-22.0.el6ev.noarch.rpm |
| RedHat | 6 | x86_64 | vdsm-debuginfo | < 4.10.2-22.0.el6ev | vdsm-debuginfo-4.10.2-22.0.el6ev.x86_64.rpm |
| RedHat | 6 | noarch | vdsm-hook-vhostmd | < 4.10.2-22.0.el6ev | vdsm-hook-vhostmd-4.10.2-22.0.el6ev.noarch.rpm |
| RedHat | 6 | noarch | vdsm-cli | < 4.10.2-22.0.el6ev | vdsm-cli-4.10.2-22.0.el6ev.noarch.rpm |
Related
