{"id":"RHBA-2020:2396","summary":"Red Hat Bug Fix Advisory: Red Hat Virtualization Engine security, bug fix 4.3.10","modified":"2026-03-11T07:16:16.672923Z","published":"2024-09-13T18:08:55Z","upstream":["CVE-2020-1720"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHBA-2020:2396"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1717336"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1764779"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1796136"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1817450"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1820642"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1826789"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827039"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827350"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827611"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1828067"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1832218"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2396.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-1720"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798852"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-1720"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-1720"}],"affected":[{"package":{"name":"ovirt-engine","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-backend","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-backend"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-dbscripts","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-dbscripts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-extensions-api-impl","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-extensions-api-impl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-extensions-api-impl-javadoc","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-extensions-api-impl-javadoc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-health-check-bundler","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-health-check-bundler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-restapi","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-restapi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-base","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-plugin-cinderlib","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-cinderlib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine-common","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-plugin-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-setup-plugin-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-tools","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-tools-backup","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-tools-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-webadmin-portal","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-webadmin-portal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"ovirt-engine-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/ovirt-engine-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"python2-ovirt-engine-lib","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/python2-ovirt-engine-lib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-contrib","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-contrib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-contrib-syspaths","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-contrib-syspaths"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-debuginfo","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-devel","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-docs","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-libs","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-plperl","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-plperl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-plpython","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-plpython"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-pltcl","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-pltcl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-server","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-server-syspaths","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-server-syspaths"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-static","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-syspaths","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-syspaths"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rh-postgresql10-postgresql-test","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rh-postgresql10-postgresql-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:10.12-2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}},{"package":{"name":"rhvm","ecosystem":"Red Hat:rhev_manager:4.3","purl":"pkg:rpm/redhat/rhvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.10.3-0.2.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2396.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N"}]}