Lucene search

RedHatRHSA-2022:7968

HistoryNov 15, 2022 - 6:12 a.m.

(RHSA-2022:7968) Low: virt-v2v security, bug fix, and enhancement update

2022-11-1506:12:15

access.redhat.com

virt-v2v

kvm hypervisor

libvirt metadata

virtio drivers

buffer overflow

dos

cve-2022-2211

red hat enterprise linux 9.1 release notes

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

38.4%

JSON

The virt-v2v package provides a tool for converting virtual machines to use the KVM (Kernel-based Virtual Machine) hypervisor or Red Hat Enterprise Virtualization. The tool modifies both the virtual machine image and its associated libvirt metadata. Also, virt-v2v can configure a guest to use VirtIO drivers if possible.

Security Fix(es):

libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9x86_64virt-v2v-debuginfo< 2.0.7-6.el9virt-v2v-debuginfo-2.0.7-6.el9.x86_64.rpm
RedHat9x86_64virt-v2v< 2.0.7-6.el9virt-v2v-2.0.7-6.el9.x86_64.rpm
RedHat9noarchvirt-v2v-bash-completion< 2.0.7-6.el9virt-v2v-bash-completion-2.0.7-6.el9.noarch.rpm
RedHat9noarchvirt-v2v-man-pages-ja< 2.0.7-6.el9virt-v2v-man-pages-ja-2.0.7-6.el9.noarch.rpm
RedHat9x86_64virt-v2v-debugsource< 2.0.7-6.el9virt-v2v-debugsource-2.0.7-6.el9.x86_64.rpm
RedHat9noarchvirt-v2v-man-pages-uk< 2.0.7-6.el9virt-v2v-man-pages-uk-2.0.7-6.el9.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	x86_64	virt-v2v-debuginfo	< 2.0.7-6.el9	virt-v2v-debuginfo-2.0.7-6.el9.x86_64.rpm
RedHat	9	x86_64	virt-v2v	< 2.0.7-6.el9	virt-v2v-2.0.7-6.el9.x86_64.rpm
RedHat	9	noarch	virt-v2v-bash-completion	< 2.0.7-6.el9	virt-v2v-bash-completion-2.0.7-6.el9.noarch.rpm
RedHat	9	noarch	virt-v2v-man-pages-ja	< 2.0.7-6.el9	virt-v2v-man-pages-ja-2.0.7-6.el9.noarch.rpm
RedHat	9	x86_64	virt-v2v-debugsource	< 2.0.7-6.el9	virt-v2v-debugsource-2.0.7-6.el9.x86_64.rpm
RedHat	9	noarch	virt-v2v-man-pages-uk	< 2.0.7-6.el9	virt-v2v-man-pages-uk-2.0.7-6.el9.noarch.rpm