First published: Thu Jul 22 2021(Updated: )
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.<br>The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. <br>The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.<br>Security Fix(es):<br><li> kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)</li> <li> systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash (CVE-2021-33910)</li> <li> kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034)</li> <li> ansible: multiple modules expose secured values (CVE-2021-3447)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Bug Fix(es):<br><li> The redhat-release-virtualization-host package no longer requires vdsm-hooks. In this release, the installation of vdsm-hooks is not mandatory for the Red Hat Virtualization Host. (BZ#1976095)</li> <li> Previously, rhsmcertd was not enabled by default on the Red Hat Virtualization Host. As a result, the systems did not regularly report to RHSM while the subscription-manager reported no obvious issues and repositories were properly enabled.</li> In this release, rhsmcertd is enabled by default in RHVH, and as a result, RHSM now receives reports regularly. (BZ#1958145)<br><li> In this release, the Red Hat Virtualization Host has been rebased on top of the RHEL 8.4.0 Batch #1 update. For more information, see the RHEL release notes. (BZ#1957242)</li> <li> Red Hat Virtualization Host now includes an updated scap-security-guide-rhv which allows you to apply a PCI DSS security profile to the system during installation, (BZ#1883793)</li>
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/imgbased | <1.2.21-1.el8e | 1.2.21-1.el8e |
redhat/redhat-release-virtualization-host | <4.4.7-3.el8e | 4.4.7-3.el8e |
redhat/scap-security-guide | <0.1.54-2.el8e | 0.1.54-2.el8e |
redhat/python3-imgbased | <1.2.21-1.el8e | 1.2.21-1.el8e |
redhat/redhat-virtualization-host-image-update-placeholder | <4.4.7-3.el8e | 4.4.7-3.el8e |
redhat/scap-security-guide-rhv | <0.1.54-2.el8e | 0.1.54-2.el8e |
redhat/fcoe-utils | <1.0.33-3.git848bcc6.el8 | 1.0.33-3.git848bcc6.el8 |
redhat/redhat-virtualization-host | <4.4.7-20210715.1.el8_4 | 4.4.7-20210715.1.el8_4 |
redhat/vhostmd | <1.1-5.el8 | 1.1-5.el8 |
redhat/fcoe-utils | <1.0.33-3.git848bcc6.el8 | 1.0.33-3.git848bcc6.el8 |
redhat/fcoe-utils-debuginfo | <1.0.33-3.git848bcc6.el8 | 1.0.33-3.git848bcc6.el8 |
redhat/fcoe-utils-debugsource | <1.0.33-3.git848bcc6.el8 | 1.0.33-3.git848bcc6.el8 |
redhat/redhat-virtualization-host-image-update | <4.4.7-20210715.1.el8_4 | 4.4.7-20210715.1.el8_4 |
redhat/vhostmd | <1.1-5.el8 | 1.1-5.el8 |
redhat/vhostmd-debuginfo | <1.1-5.el8 | 1.1-5.el8 |
redhat/vhostmd-debugsource | <1.1-5.el8 | 1.1-5.el8 |
redhat/vm-dump-metrics | <1.1-5.el8 | 1.1-5.el8 |
redhat/vm-dump-metrics-debuginfo | <1.1-5.el8 | 1.1-5.el8 |
redhat/vm-dump-metrics-devel | <1.1-5.el8 | 1.1-5.el8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.