Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2022:7472
HistoryNov 08, 2022 - 6:20 a.m.

(RHSA-2022:7472) Low: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

2022-11-0806:20:26
access.redhat.com
42
kvm
virt:rhel
virt-devel:rhel
security update
red hat enterprise linux 8.7

0.001 Low

EPSS

Percentile

39.0%

JSON

Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.

The following packages have been upgraded to a later upstream version: qemu-kvm (6.2.0). (BZ#2066828)

Security Fix(es):

  • QEMU: fdc: heap buffer overflow in DMA read data transfers (CVE-2021-3507)

  • libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897)

  • libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211)

  • swtpm: Unchecked header size indicator against expected size (CVE-2022-23645)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanynoarchlibguestfs-tools< 1.44.0-9.module+el8.7.0+16689+53d59bc2libguestfs-tools-1.44.0-9.module+el8.7.0+16689+53d59bc2.noarch.rpm
RedHatanyppc64lenbdkit-gzip-plugin-debuginfo< 1.24.0-4.module+el8.7.0+16689+53d59bc2nbdkit-gzip-plugin-debuginfo-1.24.0-4.module+el8.7.0+16689+53d59bc2.ppc64le.rpm
RedHatanyppc64lelibnbd-debuginfo< 1.6.0-5.module+el8.7.0+16689+53d59bc2libnbd-debuginfo-1.6.0-5.module+el8.7.0+16689+53d59bc2.ppc64le.rpm
RedHatanys390xnbdkit-tar-filter-debuginfo< 1.24.0-4.module+el8.7.0+16689+53d59bc2nbdkit-tar-filter-debuginfo-1.24.0-4.module+el8.7.0+16689+53d59bc2.s390x.rpm
RedHatanyi686netcf-debugsource< 0.2.8-12.module+el8.7.0+16689+53d59bc2netcf-debugsource-0.2.8-12.module+el8.7.0+16689+53d59bc2.i686.rpm
RedHatanyx86_64libvirt-daemon-driver-storage-core< 8.0.0-10.module+el8.7.0+16689+53d59bc2libvirt-daemon-driver-storage-core-8.0.0-10.module+el8.7.0+16689+53d59bc2.x86_64.rpm
RedHatanys390xperl-sys-virt-debugsource< 8.0.0-1.module+el8.7.0+16689+53d59bc2perl-Sys-Virt-debugsource-8.0.0-1.module+el8.7.0+16689+53d59bc2.s390x.rpm
RedHatanyppc64lelibvirt-libs-debuginfo< 8.0.0-10.module+el8.7.0+16689+53d59bc2libvirt-libs-debuginfo-8.0.0-10.module+el8.7.0+16689+53d59bc2.ppc64le.rpm
RedHatanyppc64lelibvirt-daemon-driver-storage-scsi< 8.0.0-10.module+el8.7.0+16689+53d59bc2libvirt-daemon-driver-storage-scsi-8.0.0-10.module+el8.7.0+16689+53d59bc2.ppc64le.rpm
RedHatanyaarch64libvirt-daemon-driver-storage-mpath-debuginfo< 8.0.0-10.module+el8.7.0+16689+53d59bc2libvirt-daemon-driver-storage-mpath-debuginfo-8.0.0-10.module+el8.7.0+16689+53d59bc2.aarch64.rpm
Rows per page:
1-10 of 9151

Related

rocky 6
nessus 73
osv 19
oraclelinux 12
ubuntucve 4
rosalinux 1
redhatcve 4
openvas 30
nvd 4
debiancve 4
fedora 1
prion 4
almalinux 6
cvelist 4
cve 4
mageia 1
suse 4
redhat 6
cbl_mariner 1
alpinelinux 1
veracode 3
vulnrichment 1
ubuntu 3
redos 1
gentoo 1
debian 1
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2022-11-08 06:20:26
guestfs-tools security, bug fix, and enhancement update
2022-11-15 06:12:07
virt-v2v security, bug fix, and enhancement update
2022-11-15 06:12:15
nessus
nessus
Rocky Linux 8 : virt:rhel and virt-devel:rhel (RLSA-2022:7472)
2023-11-06 00:00:00
RHEL 8 : virt:rhel and virt-devel:rhel (RHSA-2022:7472)
2022-11-09 00:00:00
Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2022-7472)
2022-11-15 00:00:00
osv
osv
Low: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2022-11-08 06:20:26
Low: swtpm security and bug fix update
2022-11-15 00:00:00
CVE-2022-23645
2022-02-18 21:15:13
oraclelinux
oraclelinux
virt:ol and virt-devel:ol security, bug fix, and enhancement update
2022-11-15 00:00:00
swtpm security and bug fix update
2022-11-22 00:00:00
virt-v2v security, bug fix, and enhancement update
2022-11-22 00:00:00
ubuntucve
ubuntucve
CVE-2022-23645
2022-02-18 00:00:00
CVE-2021-3507
2021-05-06 00:00:00
CVE-2022-2211
2022-07-12 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2401
2024-04-17 13:39:37
redhatcve
redhatcve
CVE-2022-23645
2022-02-21 11:18:08
CVE-2021-3507
2021-04-19 19:26:29
CVE-2022-2211
2022-06-27 04:05:24
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:1297-1)
2022-04-22 00:00:00
openSUSE: Security Advisory for swtpm (SUSE-SU-2022:1297-1)
2022-05-17 00:00:00
Fedora: Security Advisory for swtpm (FEDORA-2022-12443a525c)
2022-03-23 00:00:00
nvd
nvd
CVE-2022-23645
2022-02-18 21:15:13
CVE-2021-3507
2021-05-06 16:15:07
CVE-2022-2211
2022-07-12 21:15:09
debiancve
debiancve
CVE-2022-23645
2022-02-18 21:15:13
CVE-2022-2211
2022-07-12 21:15:09
CVE-2021-3507
2021-05-06 16:15:07
fedora
fedora
[SECURITY] Fedora 35 Update: swtpm-0.7.1-1.20220218git92a7035.fc35
2022-03-05 18:30:57
prion
prion
Out-of-bounds
2022-02-18 21:15:00
Heap overflow
2021-05-06 16:15:00
Design/Logic Flaw
2022-07-12 21:15:00
almalinux
almalinux
Low: swtpm security and bug fix update
2022-11-15 00:00:00
Low: libguestfs security, bug fix, and enhancement update
2022-11-15 00:00:00
Low: virt-v2v security, bug fix, and enhancement update
2022-11-15 00:00:00
cvelist
cvelist
CVE-2022-23645 Out-of-bounds read in swtpm
2022-02-18 20:50:10
CVE-2021-3507
2021-05-06 15:16:14
CVE-2022-2211
2022-07-12 20:33:33
cve
cve
CVE-2022-23645
2022-02-18 21:15:13
CVE-2021-3507
2021-05-06 16:15:07
CVE-2022-2211
2022-07-12 21:15:09
mageia
mageia
Updated swtpm packages fix security vulnerability
2022-03-23 11:36:28
suse
suse
Security update for swtpm (low)
2022-04-21 00:00:00
Security update for libguestfs (moderate)
2022-07-28 00:00:00
Security update for libvirt (moderate)
2022-05-05 00:00:00
redhat
redhat
(RHSA-2022:8100) Low: swtpm security and bug fix update
2022-11-15 06:15:36
(RHSA-2022:7959) Low: guestfs-tools security, bug fix, and enhancement update
2022-11-15 06:12:07
(RHSA-2022:7958) Low: libguestfs security, bug fix, and enhancement update
2022-11-15 06:12:06
cbl_mariner
cbl_mariner
CVE-2021-3507 affecting package qemu-kvm 4.2.0-48
2024-07-03 03:08:33
alpinelinux
alpinelinux
CVE-2021-3507
2021-05-06 16:15:07
veracode
veracode
Denial Of Service (DoS)
2021-12-16 21:31:55
Denial Of Service (DoS)
2022-07-13 10:13:24
Denial Of Service (DoS)
2022-03-28 07:06:18
vulnrichment
vulnrichment
CVE-2022-0897
2022-03-25 00:00:00
ubuntu
ubuntu
libvirt vulnerabilities
2023-05-31 00:00:00
libvirt vulnerabilities
2022-05-02 00:00:00
QEMU vulnerabilities
2022-06-21 00:00:00
redos
redos
ROS-20240329-20
2024-03-29 00:00:00
gentoo
gentoo
libvirt: Multiple Vulnerabilities
2022-10-16 00:00:00
debian
debian
[SECURITY] [DLA 3778-1] libvirt security update
2024-04-01 12:19:02

0.001 Low

EPSS

Percentile

39.0%

JSON
Related for RHSA-2022:7472
rocky6nessus73osv19oraclelinux12ubuntucve4rosalinux1redhatcve4openvas30nvd4debiancve4fedora1prion4almalinux6cvelist4cve4mageia1suse4redhat6cbl_mariner1alpinelinux1veracode3vulnrichment1ubuntu3redos1gentoo1debian1