{"id":"RLSA-2021:1762","summary":"Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update","details":"Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.\n\nSecurity Fix(es):\n\n* libvirt: double free in qemuAgentGetInterfaces() in qemu_agent.c (CVE-2020-25637)\n\n* QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c (CVE-2020-27821)\n\n* QEMU: ide: atapi: OOB access while processing read commands (CVE-2020-29443)\n\n* QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure (CVE-2020-11947)\n\n* QEMU: reachable assertion failure in net_tx_pkt_add_raw_fragment() in hw/net/net_tx_pkt.c (CVE-2020-16092)\n\n* QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c (CVE-2020-25707)\n\n* QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c (CVE-2020-25723)\n\n* QEMU: e1000e: infinite loop scenario in case of null packet descriptor (CVE-2020-28916)\n\n* QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets (CVE-2020-29129, CVE-2020-29130)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section.","modified":"2026-03-11T05:55:44.620697Z","published":"2021-05-18T06:02:26Z","upstream":["CVE-2020-11947","CVE-2020-16092","CVE-2020-25637","CVE-2020-25707","CVE-2020-25723","CVE-2020-27821","CVE-2020-28916","CVE-2020-29129","CVE-2020-29130","CVE-2020-29443"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2021:1762"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1384241"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798463"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1828952"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834281"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837495"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1843852"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1846975"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1850680"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1859494"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1860283"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1872854"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1874304"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1874780"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876297"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1876742"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1880418"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1880546"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1881037"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1884531"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1893895"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1898579"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901837"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902231"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902651"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902960"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1903064"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1910220"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1910267"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1910326"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1912765"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1917446"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1918708"}],"affected":[{"package":{"name":"hivex","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/hivex?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.18-20.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libguestfs","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libguestfs?distro=rocky-linux-8-4-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.40.2-27.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libguestfs-winsupport","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libguestfs-winsupport?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.2-1.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libnbd","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libnbd?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2.2-1.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libvirt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.0.0-35.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"libvirt-python","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-python?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.0.0-1.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"nbdkit","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/nbdkit?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.16.2-4.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"perl-Sys-Virt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/perl-Sys-Virt?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.0.0-1.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/qemu-kvm?distro=rocky-linux-8-4-legacy&epoch=5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5:4.2.0-48.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"seabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/seabios?distro=rocky-linux-8-5-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.13.0-2.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-4-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-6-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}},{"package":{"name":"supermin","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/supermin?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.1.19-10.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2021:1762.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}