Vulnerability Database
Blog
FAQ
Docs
RHSA-2022:0475
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2022:0475
Import Source
https://security.access.redhat.com/data/osv/RHSA-2022:0475.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2022:0475
Related
CVE-2021-4104
CVE-2022-23302
CVE-2022-23305
CVE-2022-23307
Published
2024-09-29T18:50:58Z
Modified
2024-10-27T20:55:15Z
Severity
8.8 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: RHV Manager (ovirt-engine) security update [ovirt-4.4.10-1]
Details
References
https://access.redhat.com/errata/RHSA-2022:0475
https://access.redhat.com/security/updates/classification/#low
https://access.redhat.com/security/vulnerabilities/RHSB-2021-009
https://bugzilla.redhat.com/show_bug.cgi?id=1992476
https://bugzilla.redhat.com/show_bug.cgi?id=2013430
https://bugzilla.redhat.com/show_bug.cgi?id=2031667
https://bugzilla.redhat.com/show_bug.cgi?id=2041949
https://bugzilla.redhat.com/show_bug.cgi?id=2041959
https://bugzilla.redhat.com/show_bug.cgi?id=2041967
https://bugzilla.redhat.com/show_bug.cgi?id=2044257
https://bugzilla.redhat.com/show_bug.cgi?id=2044277
https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0475.json
https://access.redhat.com/security/cve/CVE-2021-4104
https://www.cve.org/CVERecord?id=CVE-2021-4104
https://nvd.nist.gov/vuln/detail/CVE-2021-4104
https://github.com/apache/logging-log4j2/pull/608#issuecomment-990494126
https://github.com/apache/logging-log4j2/pull/608#issuecomment-991723301
https://lists.apache.org/thread/0x4zvtq92yggdgvwfgsftqrj4xx5w0nx
https://www.openwall.com/lists/oss-security/2021/12/13/1
https://access.redhat.com/security/cve/CVE-2022-23302
https://www.cve.org/CVERecord?id=CVE-2022-23302
https://nvd.nist.gov/vuln/detail/CVE-2022-23302
https://www.openwall.com/lists/oss-security/2022/01/18/3
https://access.redhat.com/security/cve/CVE-2022-23305
https://www.cve.org/CVERecord?id=CVE-2022-23305
https://nvd.nist.gov/vuln/detail/CVE-2022-23305
https://www.openwall.com/lists/oss-security/2022/01/18/4
https://access.redhat.com/security/cve/CVE-2022-23307
https://www.cve.org/CVERecord?id=CVE-2022-23307
https://nvd.nist.gov/vuln/detail/CVE-2022-23307
https://www.openwall.com/lists/oss-security/2022/01/18/5
Affected packages
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine
Package
Name
ovirt-engine
Purl
pkg:rpm/redhat/ovirt-engine
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-backend
Package
Name
ovirt-engine-backend
Purl
pkg:rpm/redhat/ovirt-engine-backend
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-dbscripts
Package
Name
ovirt-engine-dbscripts
Purl
pkg:rpm/redhat/ovirt-engine-dbscripts
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-health-check-bundler
Package
Name
ovirt-engine-health-check-bundler
Purl
pkg:rpm/redhat/ovirt-engine-health-check-bundler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-restapi
Package
Name
ovirt-engine-restapi
Purl
pkg:rpm/redhat/ovirt-engine-restapi
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup
Package
Name
ovirt-engine-setup
Purl
pkg:rpm/redhat/ovirt-engine-setup
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-base
Package
Name
ovirt-engine-setup-base
Purl
pkg:rpm/redhat/ovirt-engine-setup-base
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-cinderlib
Package
Name
ovirt-engine-setup-plugin-cinderlib
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-cinderlib
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-imageio
Package
Name
ovirt-engine-setup-plugin-imageio
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-imageio
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-ovirt-engine
Package
Name
ovirt-engine-setup-plugin-ovirt-engine
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-ovirt-engine-common
Package
Name
ovirt-engine-setup-plugin-ovirt-engine-common
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine-common
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-vmconsole-proxy-helper
Package
Name
ovirt-engine-setup-plugin-vmconsole-proxy-helper
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-vmconsole-proxy-helper
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-setup-plugin-websocket-proxy
Package
Name
ovirt-engine-setup-plugin-websocket-proxy
Purl
pkg:rpm/redhat/ovirt-engine-setup-plugin-websocket-proxy
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-tools
Package
Name
ovirt-engine-tools
Purl
pkg:rpm/redhat/ovirt-engine-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-tools-backup
Package
Name
ovirt-engine-tools-backup
Purl
pkg:rpm/redhat/ovirt-engine-tools-backup
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-vmconsole-proxy-helper
Package
Name
ovirt-engine-vmconsole-proxy-helper
Purl
pkg:rpm/redhat/ovirt-engine-vmconsole-proxy-helper
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-webadmin-portal
Package
Name
ovirt-engine-webadmin-portal
Purl
pkg:rpm/redhat/ovirt-engine-webadmin-portal
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
ovirt-engine-websocket-proxy
Package
Name
ovirt-engine-websocket-proxy
Purl
pkg:rpm/redhat/ovirt-engine-websocket-proxy
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
python3-ovirt-engine-lib
Package
Name
python3-ovirt-engine-lib
Purl
pkg:rpm/redhat/python3-ovirt-engine-lib
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
rhvm
Package
Name
rhvm
Purl
pkg:rpm/redhat/rhvm
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.4.10.6-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
snmp4j
Package
Name
snmp4j
Purl
pkg:rpm/redhat/snmp4j
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.6.4-0.1.el8ev
Red Hat:rhev_manager:4.4:el8
/
snmp4j-javadoc
Package
Name
snmp4j-javadoc
Purl
pkg:rpm/redhat/snmp4j-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.6.4-0.1.el8ev
RHSA-2022:0475 - OSV