{"id":"RLSA-2019:3345","summary":"Low: virt:rhel security, bug fix, and enhancement update","details":"Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.\n\nSecurity Fix(es):\n\n* ntfs-3g: heap-based buffer overflow leads to local root privilege escalation (CVE-2019-9755)\n\n* QEMU: slirp: information leakage in tcp_emu() due to uninitialized stack variables (CVE-2019-9824)\n\n* QEMU: qxl: null pointer dereference while releasing spice resources (CVE-2019-12155)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.1 Release Notes linked from the References section.","modified":"2026-03-11T05:55:06.498344Z","published":"2019-11-05T17:33:34Z","upstream":["CVE-2019-12155","CVE-2019-9755","CVE-2019-9824"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2019:3345"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1531543"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1662272"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1664463"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1667249"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1673010"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1673396"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1673401"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1678515"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1678979"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1679483"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1679966"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1680231"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1683681"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1684383"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1685151"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1686895"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1687541"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1687596"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1688062"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1689297"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1691356"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1691624"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1693299"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1693433"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1694148"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1697627"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1698133"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1707192"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1707598"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1707706"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1710575"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1712670"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1712810"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1712946"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1714933"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1716347"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1716907"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1716908"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1717088"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719578"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1721434"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1721983"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1722668"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1722735"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1727821"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728530"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728657"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728958"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1729675"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1732642"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1737790"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1738839"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1738886"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1740797"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1741825"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1741837"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1742819"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1744415"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1747185"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1747440"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1749227"}],"affected":[{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-4-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-6-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2019:3345.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}