ALSA-2022:5821
- Source
- https://errata.almalinux.org/8/ALSA-2022-5821.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:5821.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2022:5821
- Related
- Published
- 2022-08-02T00:00:00Z
- Modified
- 2022-11-24T19:17:28Z
- Summary
- Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
- Details
-
Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix(es): * QEMU: QXL: integer overflow in cursoralloc() can lead to heap buffer overflow (CVE-2021-4206) * QEMU: QXL: double fetch in qxlcursor() can lead to heap buffer overflow (CVE-2021-4207) * QEMU: virtio-net: map leaking on error during receive (CVE-2022-26353) * QEMU: vhost-vsock: missing virtqueue detach on error can lead to memory leak (CVE-2022-26354) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * AlmaLinux 9.0 guest with vsock device migration failed from AlmaLinux 9.0 > AlmaLinux 8.6 (BZ#2071103) * Fail to rebuild the reference count tables of qcow2 image on host block devices (e.g. LVs) (BZ#2072242) * Remove upstream-only devices from the qemu-kvm binary (BZ#2077928) * When doing a cpu-baseline between skylake and cascadelake, cascadelake is selected as baseline. (BZ#2084030) * Virt-v2v can't convert rhel8.6 guest from VMware on rhel8.6 (BZ#2093415) Enhancement(s): * Allow memory prealloc from multiple threads (BZ#2075569)
- References
-
- https://access.redhat.com/errata/RHSA-2022:5821
- https://access.redhat.com/security/cve/CVE-2021-4206
- https://access.redhat.com/security/cve/CVE-2021-4207
- https://access.redhat.com/security/cve/CVE-2022-26353
- https://access.redhat.com/security/cve/CVE-2022-26354
- https://bugzilla.redhat.com/2036966
- https://bugzilla.redhat.com/2036998
- https://bugzilla.redhat.com/2063197
- https://bugzilla.redhat.com/2063257
- https://errata.almalinux.org/8/ALSA-2022-5821.html
Affected packages
AlmaLinux:8 / SLOF
Package
- Name
- SLOF
AlmaLinux:8 / hivex
Package
- Name
- hivex
AlmaLinux:8 / hivex-devel
Package
- Name
- hivex-devel
AlmaLinux:8 / libguestfs
Package
- Name
- libguestfs
AlmaLinux:8 / libguestfs-appliance
Package
- Name
- libguestfs-appliance
AlmaLinux:8 / libguestfs-bash-completion
Package
- Name
- libguestfs-bash-completion
AlmaLinux:8 / libguestfs-devel
Package
- Name
- libguestfs-devel
AlmaLinux:8 / libguestfs-gfs2
Package
- Name
- libguestfs-gfs2
AlmaLinux:8 / libguestfs-gobject
Package
- Name
- libguestfs-gobject
AlmaLinux:8 / libguestfs-gobject-devel
Package
- Name
- libguestfs-gobject-devel
AlmaLinux:8 / libguestfs-inspect-icons
Package
- Name
- libguestfs-inspect-icons
AlmaLinux:8 / libguestfs-java
Package
- Name
- libguestfs-java
AlmaLinux:8 / libguestfs-java-devel
Package
- Name
- libguestfs-java-devel
AlmaLinux:8 / libguestfs-javadoc
Package
- Name
- libguestfs-javadoc
AlmaLinux:8 / libguestfs-man-pages-ja
Package
- Name
- libguestfs-man-pages-ja
AlmaLinux:8 / libguestfs-man-pages-uk
Package
- Name
- libguestfs-man-pages-uk
AlmaLinux:8 / libguestfs-rescue
Package
- Name
- libguestfs-rescue
AlmaLinux:8 / libguestfs-rsync
Package
- Name
- libguestfs-rsync
AlmaLinux:8 / libguestfs-tools
Package
- Name
- libguestfs-tools
AlmaLinux:8 / libguestfs-tools-c
Package
- Name
- libguestfs-tools-c
AlmaLinux:8 / libguestfs-winsupport
Package
- Name
- libguestfs-winsupport
AlmaLinux:8 / libguestfs-xfs
Package
- Name
- libguestfs-xfs
AlmaLinux:8 / libiscsi
Package
- Name
- libiscsi
AlmaLinux:8 / libiscsi-devel
Package
- Name
- libiscsi-devel
AlmaLinux:8 / libiscsi-utils
Package
- Name
- libiscsi-utils
AlmaLinux:8 / libnbd
Package
- Name
- libnbd
AlmaLinux:8 / libnbd-bash-completion
Package
- Name
- libnbd-bash-completion
AlmaLinux:8 / libnbd-devel
Package
- Name
- libnbd-devel
AlmaLinux:8 / libtpms
Package
- Name
- libtpms
AlmaLinux:8 / libtpms-devel
Package
- Name
- libtpms-devel
AlmaLinux:8 / libvirt
Package
- Name
- libvirt
AlmaLinux:8 / libvirt-client
Package
- Name
- libvirt-client
AlmaLinux:8 / libvirt-daemon
Package
- Name
- libvirt-daemon
AlmaLinux:8 / libvirt-daemon-config-network
Package
- Name
- libvirt-daemon-config-network
AlmaLinux:8 / libvirt-daemon-config-nwfilter
Package
- Name
- libvirt-daemon-config-nwfilter
AlmaLinux:8 / libvirt-daemon-driver-interface
Package
- Name
- libvirt-daemon-driver-interface
AlmaLinux:8 / libvirt-daemon-driver-network
Package
- Name
- libvirt-daemon-driver-network
AlmaLinux:8 / libvirt-daemon-driver-nodedev
Package
- Name
- libvirt-daemon-driver-nodedev
AlmaLinux:8 / libvirt-daemon-driver-nwfilter
Package
- Name
- libvirt-daemon-driver-nwfilter
AlmaLinux:8 / libvirt-daemon-driver-qemu
Package
- Name
- libvirt-daemon-driver-qemu
AlmaLinux:8 / libvirt-daemon-driver-secret
Package
- Name
- libvirt-daemon-driver-secret
AlmaLinux:8 / libvirt-daemon-driver-storage
Package
- Name
- libvirt-daemon-driver-storage
AlmaLinux:8 / libvirt-daemon-driver-storage-core
Package
- Name
- libvirt-daemon-driver-storage-core
AlmaLinux:8 / libvirt-daemon-driver-storage-disk
Package
- Name
- libvirt-daemon-driver-storage-disk
AlmaLinux:8 / libvirt-daemon-driver-storage-gluster
Package
- Name
- libvirt-daemon-driver-storage-gluster
AlmaLinux:8 / libvirt-daemon-driver-storage-iscsi
Package
- Name
- libvirt-daemon-driver-storage-iscsi
AlmaLinux:8 / libvirt-daemon-driver-storage-iscsi-direct
Package
- Name
- libvirt-daemon-driver-storage-iscsi-direct
AlmaLinux:8 / libvirt-daemon-driver-storage-logical
Package
- Name
- libvirt-daemon-driver-storage-logical
AlmaLinux:8 / libvirt-daemon-driver-storage-mpath
Package
- Name
- libvirt-daemon-driver-storage-mpath
AlmaLinux:8 / libvirt-daemon-driver-storage-rbd
Package
- Name
- libvirt-daemon-driver-storage-rbd
AlmaLinux:8 / libvirt-daemon-driver-storage-scsi
Package
- Name
- libvirt-daemon-driver-storage-scsi
AlmaLinux:8 / libvirt-daemon-kvm
Package
- Name
- libvirt-daemon-kvm
AlmaLinux:8 / libvirt-dbus
Package
- Name
- libvirt-dbus
AlmaLinux:8 / libvirt-devel
Package
- Name
- libvirt-devel
AlmaLinux:8 / libvirt-docs
Package
- Name
- libvirt-docs
AlmaLinux:8 / libvirt-libs
Package
- Name
- libvirt-libs
AlmaLinux:8 / libvirt-lock-sanlock
Package
- Name
- libvirt-lock-sanlock
AlmaLinux:8 / libvirt-nss
Package
- Name
- libvirt-nss
AlmaLinux:8 / libvirt-wireshark
Package
- Name
- libvirt-wireshark
AlmaLinux:8 / lua-guestfs
Package
- Name
- lua-guestfs
AlmaLinux:8 / nbdfuse
Package
- Name
- nbdfuse
AlmaLinux:8 / nbdkit
Package
- Name
- nbdkit
AlmaLinux:8 / nbdkit-bash-completion
Package
- Name
- nbdkit-bash-completion
AlmaLinux:8 / nbdkit-basic-filters
Package
- Name
- nbdkit-basic-filters
AlmaLinux:8 / nbdkit-basic-plugins
Package
- Name
- nbdkit-basic-plugins
AlmaLinux:8 / nbdkit-curl-plugin
Package
- Name
- nbdkit-curl-plugin
AlmaLinux:8 / nbdkit-devel
Package
- Name
- nbdkit-devel
AlmaLinux:8 / nbdkit-example-plugins
Package
- Name
- nbdkit-example-plugins
AlmaLinux:8 / nbdkit-gzip-filter
Package
- Name
- nbdkit-gzip-filter
AlmaLinux:8 / nbdkit-gzip-plugin
Package
- Name
- nbdkit-gzip-plugin
AlmaLinux:8 / nbdkit-linuxdisk-plugin
Package
- Name
- nbdkit-linuxdisk-plugin
AlmaLinux:8 / nbdkit-nbd-plugin
Package
- Name
- nbdkit-nbd-plugin
AlmaLinux:8 / nbdkit-python-plugin
Package
- Name
- nbdkit-python-plugin
AlmaLinux:8 / nbdkit-server
Package
- Name
- nbdkit-server
AlmaLinux:8 / nbdkit-ssh-plugin
Package
- Name
- nbdkit-ssh-plugin
AlmaLinux:8 / nbdkit-tar-filter
Package
- Name
- nbdkit-tar-filter
AlmaLinux:8 / nbdkit-tar-plugin
Package
- Name
- nbdkit-tar-plugin
AlmaLinux:8 / nbdkit-tmpdisk-plugin
Package
- Name
- nbdkit-tmpdisk-plugin
AlmaLinux:8 / nbdkit-vddk-plugin
Package
- Name
- nbdkit-vddk-plugin
AlmaLinux:8 / nbdkit-xz-filter
Package
- Name
- nbdkit-xz-filter
AlmaLinux:8 / netcf
Package
- Name
- netcf
AlmaLinux:8 / netcf-devel
Package
- Name
- netcf-devel
AlmaLinux:8 / netcf-libs
Package
- Name
- netcf-libs
AlmaLinux:8 / ocaml-hivex
Package
- Name
- ocaml-hivex
AlmaLinux:8 / ocaml-hivex-devel
Package
- Name
- ocaml-hivex-devel
AlmaLinux:8 / ocaml-libguestfs
Package
- Name
- ocaml-libguestfs
AlmaLinux:8 / ocaml-libguestfs-devel
Package
- Name
- ocaml-libguestfs-devel
AlmaLinux:8 / ocaml-libnbd
Package
- Name
- ocaml-libnbd
AlmaLinux:8 / ocaml-libnbd-devel
Package
- Name
- ocaml-libnbd-devel
AlmaLinux:8 / perl-Sys-Guestfs
Package
- Name
- perl-Sys-Guestfs
AlmaLinux:8 / perl-Sys-Virt
Package
- Name
- perl-Sys-Virt
AlmaLinux:8 / perl-hivex
Package
- Name
- perl-hivex
AlmaLinux:8 / python3-hivex
Package
- Name
- python3-hivex
AlmaLinux:8 / python3-libguestfs
Package
- Name
- python3-libguestfs
AlmaLinux:8 / python3-libnbd
Package
- Name
- python3-libnbd
AlmaLinux:8 / python3-libvirt
Package
- Name
- python3-libvirt
AlmaLinux:8 / qemu-guest-agent
Package
- Name
- qemu-guest-agent
AlmaLinux:8 / qemu-img
Package
- Name
- qemu-img
AlmaLinux:8 / qemu-kvm
Package
- Name
- qemu-kvm
AlmaLinux:8 / qemu-kvm-block-curl
Package
- Name
- qemu-kvm-block-curl
AlmaLinux:8 / qemu-kvm-block-gluster
Package
- Name
- qemu-kvm-block-gluster
AlmaLinux:8 / qemu-kvm-block-iscsi
Package
- Name
- qemu-kvm-block-iscsi
AlmaLinux:8 / qemu-kvm-block-rbd
Package
- Name
- qemu-kvm-block-rbd
AlmaLinux:8 / qemu-kvm-block-ssh
Package
- Name
- qemu-kvm-block-ssh
AlmaLinux:8 / qemu-kvm-common
Package
- Name
- qemu-kvm-common
AlmaLinux:8 / qemu-kvm-core
Package
- Name
- qemu-kvm-core
AlmaLinux:8 / qemu-kvm-docs
Package
- Name
- qemu-kvm-docs
AlmaLinux:8 / qemu-kvm-hw-usbredir
Package
- Name
- qemu-kvm-hw-usbredir
AlmaLinux:8 / qemu-kvm-tests
Package
- Name
- qemu-kvm-tests
AlmaLinux:8 / qemu-kvm-ui-opengl
Package
- Name
- qemu-kvm-ui-opengl
AlmaLinux:8 / qemu-kvm-ui-spice
Package
- Name
- qemu-kvm-ui-spice
AlmaLinux:8 / ruby-hivex
Package
- Name
- ruby-hivex
AlmaLinux:8 / ruby-libguestfs
Package
- Name
- ruby-libguestfs
AlmaLinux:8 / seabios
Package
- Name
- seabios
AlmaLinux:8 / seabios-bin
Package
- Name
- seabios-bin
AlmaLinux:8 / seavgabios-bin
Package
- Name
- seavgabios-bin
AlmaLinux:8 / sgabios
Package
- Name
- sgabios
AlmaLinux:8 / sgabios-bin
Package
- Name
- sgabios-bin
AlmaLinux:8 / supermin
Package
- Name
- supermin
AlmaLinux:8 / supermin-devel
Package
- Name
- supermin-devel
AlmaLinux:8 / swtpm
Package
- Name
- swtpm
AlmaLinux:8 / swtpm-devel
Package
- Name
- swtpm-devel
AlmaLinux:8 / swtpm-libs
Package
- Name
- swtpm-libs
AlmaLinux:8 / swtpm-tools
Package
- Name
- swtpm-tools
AlmaLinux:8 / swtpm-tools-pkcs11
Package
- Name
- swtpm-tools-pkcs11
AlmaLinux:8 / virt-dib
Package
- Name
- virt-dib
AlmaLinux:8 / virt-v2v
Package
- Name
- virt-v2v
AlmaLinux:8 / virt-v2v-bash-completion
Package
- Name
- virt-v2v-bash-completion
AlmaLinux:8 / virt-v2v-man-pages-ja
Package
- Name
- virt-v2v-man-pages-ja