ALSA-2020:1358

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/8/ALSA-2020-1358.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2020:1358.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2020:1358
Related
Published
2020-04-07T12:58:04Z
Modified
2021-12-23T15:15:25Z
Summary
Important: virt:rhel security and bug fix update
Details

Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.

Security Fix(es):

  • QEMU: block: iscsi: OOB heap access via an unexpected response of iSCSI Server (CVE-2020-1711)

  • QEMU: slirp: OOB buffer access while emulating tcp protocols in tcp_emu() (CVE-2020-7039)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • libvirtd: error : virCPUx86UpdateLive:3110 : operation failed: guest CPU doesn't match specification: missing features: fxsr_opt (BZ#1809510)
References

Affected packages

AlmaLinux:8 / libiscsi

Package

Name
libiscsi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / libiscsi

Package

Name
libiscsi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.5.0+2608+72063365

AlmaLinux:8 / libiscsi

Package

Name
libiscsi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / libiscsi-devel

Package

Name
libiscsi-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / libiscsi-devel

Package

Name
libiscsi-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / libiscsi-devel

Package

Name
libiscsi-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.5.0+2608+72063365

AlmaLinux:8 / libiscsi-utils

Package

Name
libiscsi-utils

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / libiscsi-utils

Package

Name
libiscsi-utils

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / libiscsi-utils

Package

Name
libiscsi-utils

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.18.0-8.module_el8.5.0+2608+72063365

AlmaLinux:8 / netcf

Package

Name
netcf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.5.0+2608+72063365

AlmaLinux:8 / netcf

Package

Name
netcf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / netcf

Package

Name
netcf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / netcf-devel

Package

Name
netcf-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / netcf-devel

Package

Name
netcf-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.5.0+2608+72063365

AlmaLinux:8 / netcf-devel

Package

Name
netcf-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / netcf-libs

Package

Name
netcf-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.6.0+2880+7d9e3703

AlmaLinux:8 / netcf-libs

Package

Name
netcf-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.5.0+2608+72063365

AlmaLinux:8 / netcf-libs

Package

Name
netcf-libs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.8-12.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / sgabios

Package

Name
sgabios

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.20170427git-3.module_el8.5.0+2608+72063365

AlmaLinux:8 / sgabios

Package

Name
sgabios

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.20170427git-3.module_el8.3.0+2048+e7a0a3ea

AlmaLinux:8 / sgabios-bin

Package

Name
sgabios-bin

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.20170427git-3.module_el8.5.0+2608+72063365

AlmaLinux:8 / sgabios-bin

Package

Name
sgabios-bin

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.20170427git-3.module_el8.6.0+2880+7d9e3703