Vulnerability Database
Blog
FAQ
Docs
RHSA-2019:2437
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2019:2437
Import Source
https://security.access.redhat.com/data/osv/RHSA-2019:2437.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2019:2437
Related
CVE-2018-16838
CVE-2018-16881
CVE-2019-0161
CVE-2019-10139
CVE-2019-10160
CVE-2019-1559
Published
2024-09-13T19:53:41Z
Modified
2024-09-13T19:53:41Z
Severity
9.8 (Critical)
CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat Virtualization security update
Details
References
https://access.redhat.com/errata/RHSA-2019:2437
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=1640820
https://bugzilla.redhat.com/show_bug.cgi?id=1658366
https://bugzilla.redhat.com/show_bug.cgi?id=1683804
https://bugzilla.redhat.com/show_bug.cgi?id=1687920
https://bugzilla.redhat.com/show_bug.cgi?id=1694065
https://bugzilla.redhat.com/show_bug.cgi?id=1702223
https://bugzilla.redhat.com/show_bug.cgi?id=1709829
https://bugzilla.redhat.com/show_bug.cgi?id=1718388
https://bugzilla.redhat.com/show_bug.cgi?id=1720156
https://bugzilla.redhat.com/show_bug.cgi?id=1720160
https://bugzilla.redhat.com/show_bug.cgi?id=1720310
https://bugzilla.redhat.com/show_bug.cgi?id=1720434
https://bugzilla.redhat.com/show_bug.cgi?id=1720435
https://bugzilla.redhat.com/show_bug.cgi?id=1720436
https://bugzilla.redhat.com/show_bug.cgi?id=1724044
https://bugzilla.redhat.com/show_bug.cgi?id=1726534
https://bugzilla.redhat.com/show_bug.cgi?id=1727007
https://bugzilla.redhat.com/show_bug.cgi?id=1727859
https://bugzilla.redhat.com/show_bug.cgi?id=1728998
https://bugzilla.redhat.com/show_bug.cgi?id=1729023
https://access.redhat.com/security/data/csaf/v2/advisories/2019/rhsa-2019_2437.json
https://access.redhat.com/security/cve/CVE-2018-16838
https://www.cve.org/CVERecord?id=CVE-2018-16838
https://nvd.nist.gov/vuln/detail/CVE-2018-16838
https://access.redhat.com/security/cve/CVE-2018-16881
https://www.cve.org/CVERecord?id=CVE-2018-16881
https://nvd.nist.gov/vuln/detail/CVE-2018-16881
https://access.redhat.com/security/cve/CVE-2019-0161
https://www.cve.org/CVERecord?id=CVE-2019-0161
https://nvd.nist.gov/vuln/detail/CVE-2019-0161
https://edk2-docs.gitbooks.io/security-advisory/content/xhci-stack-local-stack-overflow.html
https://access.redhat.com/security/cve/CVE-2019-1559
https://www.cve.org/CVERecord?id=CVE-2019-1559
https://nvd.nist.gov/vuln/detail/CVE-2019-1559
https://github.com/RUB-NDS/TLS-Padding-Oracles
https://www.openssl.org/news/secadv/20190226.txt
https://access.redhat.com/security/cve/CVE-2019-10139
https://www.cve.org/CVERecord?id=CVE-2019-10139
https://nvd.nist.gov/vuln/detail/CVE-2019-10139
https://access.redhat.com/security/cve/CVE-2019-10160
https://www.cve.org/CVERecord?id=CVE-2019-10160
https://nvd.nist.gov/vuln/detail/CVE-2019-10160
https://python-security.readthedocs.io/vuln/urlsplit-nfkc-normalization2.html
Affected packages
Red Hat:enterprise_linux:7::hypervisor
/
redhat-virtualization-host
Package
Name
redhat-virtualization-host
Purl
pkg:rpm/redhat/redhat-virtualization-host
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-20190722.0.el7_7
Red Hat:enterprise_linux:7::hypervisor
/
redhat-virtualization-host-image-update
Package
Name
redhat-virtualization-host-image-update
Purl
pkg:rpm/redhat/redhat-virtualization-host-image-update
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-20190722.0.el7_7
Red Hat:enterprise_linux:7::hypervisor
/
imgbased
Package
Name
imgbased
Purl
pkg:rpm/redhat/imgbased
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.9-0.1.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
ovirt-node-ng
Package
Name
ovirt-node-ng
Purl
pkg:rpm/redhat/ovirt-node-ng
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-0.20190717.0.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
ovirt-node-ng-nodectl
Package
Name
ovirt-node-ng-nodectl
Purl
pkg:rpm/redhat/ovirt-node-ng-nodectl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-0.20190717.0.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
python-imgbased
Package
Name
python-imgbased
Purl
pkg:rpm/redhat/python-imgbased
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.9-0.1.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
python2-ovirt-node-ng-nodectl
Package
Name
python2-ovirt-node-ng-nodectl
Purl
pkg:rpm/redhat/python2-ovirt-node-ng-nodectl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-0.20190717.0.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
redhat-release-virtualization-host
Package
Name
redhat-release-virtualization-host
Purl
pkg:rpm/redhat/redhat-release-virtualization-host
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-2.el7ev
Red Hat:enterprise_linux:7::hypervisor
/
redhat-virtualization-host-image-update-placeholder
Package
Name
redhat-virtualization-host-image-update-placeholder
Purl
pkg:rpm/redhat/redhat-virtualization-host-image-update-placeholder
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.3.5-2.el7ev
RHSA-2019:2437 - OSV