RLSA-2022:7968
See a problem?- Import Source
- https://storage.googleapis.com/resf-osv-data/RLSA-2022:7968.json
- JSON Data
- https://api.osv.dev/v1/vulns/RLSA-2022:7968
- Related
- Published
- 2022-11-15T06:12:15Z
- Modified
- 2023-02-02T14:07:26.446294Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Low: virt-v2v security, bug fix, and enhancement update
- Details
-
The virt-v2v package provides a tool for converting virtual machines to use the KVM (Kernel-based Virtual Machine) hypervisor or Rocky Enterprise Software Foundation Enterprise Virtualization. The tool modifies both the virtual machine image and its associated libvirt metadata. Also, virt-v2v can configure a guest to use VirtIO drivers if possible.
Security Fix(es):
- libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
- References
-
- https://errata.rockylinux.org/RLSA-2022:7968
- https://bugzilla.redhat.com/show_bug.cgi?id=1684075
- https://bugzilla.redhat.com/show_bug.cgi?id=1774386
- https://bugzilla.redhat.com/show_bug.cgi?id=1788823
- https://bugzilla.redhat.com/show_bug.cgi?id=1817050
- https://bugzilla.redhat.com/show_bug.cgi?id=1848862
- https://bugzilla.redhat.com/show_bug.cgi?id=1854275
- https://bugzilla.redhat.com/show_bug.cgi?id=1868048
- https://bugzilla.redhat.com/show_bug.cgi?id=1883802
- https://bugzilla.redhat.com/show_bug.cgi?id=1985830
- https://bugzilla.redhat.com/show_bug.cgi?id=2003503
- https://bugzilla.redhat.com/show_bug.cgi?id=2028764
- https://bugzilla.redhat.com/show_bug.cgi?id=2039597
- https://bugzilla.redhat.com/show_bug.cgi?id=2047660
- https://bugzilla.redhat.com/show_bug.cgi?id=2051564
- https://bugzilla.redhat.com/show_bug.cgi?id=2059287
- https://bugzilla.redhat.com/show_bug.cgi?id=2062360
- https://bugzilla.redhat.com/show_bug.cgi?id=2064178
- https://bugzilla.redhat.com/show_bug.cgi?id=2066773
- https://bugzilla.redhat.com/show_bug.cgi?id=2069768
- https://bugzilla.redhat.com/show_bug.cgi?id=2070186
- https://bugzilla.redhat.com/show_bug.cgi?id=2070530
- https://bugzilla.redhat.com/show_bug.cgi?id=2074026
- https://bugzilla.redhat.com/show_bug.cgi?id=2074801
- https://bugzilla.redhat.com/show_bug.cgi?id=2074805
- https://bugzilla.redhat.com/show_bug.cgi?id=2076013
- https://bugzilla.redhat.com/show_bug.cgi?id=2082603
- https://bugzilla.redhat.com/show_bug.cgi?id=2094779
- https://bugzilla.redhat.com/show_bug.cgi?id=2100862
- https://bugzilla.redhat.com/show_bug.cgi?id=2101665
- https://bugzilla.redhat.com/show_bug.cgi?id=2107503
- https://bugzilla.redhat.com/show_bug.cgi?id=2112801
- https://bugzilla.redhat.com/show_bug.cgi?id=2116811
- Credits
-
-
- Rocky Enterprise Software Foundation
-
- Red Hat
-
Affected packages
Rocky Linux:9 / virt-v2v
Package
- Name
- virt-v2v
- Purl
- pkg:rpm/rocky-linux/virt-v2v?distro=rocky-linux-9&epoch=1