{"id":"RLSA-2022:1759","summary":"Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update","details":"Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.\n\nThe following packages have been upgraded to a later upstream version: qemu-kvm (6.2.0), libvirt (8.0.0), libvirt-python (8.0.0), perl-Sys-Virt (8.0.0), seabios (1.15.0), libtpms (0.9.1). (BZ#1997410, BZ#2012802, BZ#2012806, BZ#2012813, BZ#2018392, BZ#2027716, BZ#2029355)\n\nSecurity Fix(es):\n\n* QEMU: virtio-net: heap use-after-free in virtio_net_receive_rcu (CVE-2021-3748)\n\n* ntfs-3g: Out-of-bounds heap buffer access in ntfs_get_attribute_value() due to incorrect check of bytes_in_use value in MFT records (CVE-2021-33285)\n\n* ntfs-3g: Heap buffer overflow triggered by a specially crafted Unicode string (CVE-2021-33286)\n\n* ntfs-3g: Heap buffer overflow in ntfs_attr_pread_i() triggered by specially crafted NTFS attributes (CVE-2021-33287)\n\n* ntfs-3g: Heap buffer overflow triggered by a specially crafted MFT section (CVE-2021-33289)\n\n* ntfs-3g: Heap buffer overflow triggered by a specially crafted NTFS inode pathname (CVE-2021-35266)\n\n* ntfs-3g: Stack buffer overflow triggered when correcting differences between MFT and MFTMirror sections (CVE-2021-35267)\n\n* ntfs-3g: Heap buffer overflow in ntfs_inode_real_open() triggered by a specially crafted NTFS inode (CVE-2021-35268)\n\n* ntfs-3g: Heap buffer overflow in ntfs_attr_setup_flag() triggered by a specially crafted NTFS attribute from MFT (CVE-2021-35269)\n\n* ntfs-3g: NULL pointer dereference in ntfs_extent_inode_open() (CVE-2021-39251)\n\n* ntfs-3g: Out-of-bounds read in ntfs_ie_lookup() (CVE-2021-39252)\n\n* ntfs-3g: Out-of-bounds read in ntfs_runlists_merge_i() (CVE-2021-39253)\n\n* ntfs-3g: Integer overflow in memmove() leading to heap buffer overflow in ntfs_attr_record_resize() (CVE-2021-39254)\n\n* ntfs-3g: Out-of-bounds read ntfs_attr_find_in_attrdef() triggered by an invalid attribute (CVE-2021-39255)\n\n* ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name() (CVE-2021-39256)\n\n* ntfs-3g: Endless recursion from ntfs_attr_pwrite() triggered by an unallocated bitmap (CVE-2021-39257)\n\n* ntfs-3g: Out-of-bounds reads in ntfs_attr_find() and ntfs_external_attr_find() (CVE-2021-39258)\n\n* ntfs-3g: Out-of-bounds access in ntfs_inode_lookup_by_name() caused by an unsanitized attribute length (CVE-2021-39259)\n\n* ntfs-3g: Out-of-bounds access in ntfs_inode_sync_standard_information() (CVE-2021-39260)\n\n* ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite() (CVE-2021-39261)\n\n* ntfs-3g: Out-of-bounds access in ntfs_decompress() (CVE-2021-39262)\n\n* ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute (CVE-2021-39263)\n\n* libnbd: nbdcopy: missing error handling may create corrupted destination image (CVE-2022-0485)\n\n* hivex: stack overflow due to recursive call of _get_children() (CVE-2021-3622)\n\n* nbdkit: NBD_OPT_STRUCTURED_REPLY injection on STARTTLS (CVE-2021-3716)\n\n* libvirt: segmentation fault during VM shutdown can lead to vdsm hang (CVE-2021-3975)\n\n* QEMU: NULL pointer dereference in mirror_wait_on_conflicts() in block/mirror.c (CVE-2021-4145)\n\n* QEMU: NULL pointer dereference in pci_write() in hw/acpi/pcihp.c (CVE-2021-4158)\n\n* QEMU: block: fdc: null pointer dereference may lead to guest crash (CVE-2021-20196)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section.","modified":"2026-03-11T06:05:50.174713Z","published":"2022-05-10T07:59:57Z","upstream":["CVE-2021-20196","CVE-2021-33285","CVE-2021-33286","CVE-2021-33287","CVE-2021-33289","CVE-2021-35266","CVE-2021-35267","CVE-2021-35268","CVE-2021-35269","CVE-2021-3622","CVE-2021-3716","CVE-2021-3748","CVE-2021-39251","CVE-2021-39252","CVE-2021-39253","CVE-2021-39254","CVE-2021-39255","CVE-2021-39256","CVE-2021-39257","CVE-2021-39258","CVE-2021-39259","CVE-2021-39260","CVE-2021-39261","CVE-2021-39262","CVE-2021-39263","CVE-2021-3975","CVE-2021-4145","CVE-2021-4158","CVE-2022-0485"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2022:1759"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1677608"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1510237"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1689202"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1738392"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1743098"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1806857"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1810863"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1836094"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1845468"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1852762"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1867087"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1919210"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1924972"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1926508"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1942275"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1943203"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1953389"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1965140"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1965589"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1965638"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1972515"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1975489"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1975840"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1978574"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1981782"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1982993"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1983684"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1984721"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1985451"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1988104"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1988986"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1989338"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1989520"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1990135"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1994695"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995865"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1996530"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1997410"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1998514"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1998947"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1998949"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1998950"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2000225"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001525"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001608"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001609"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001613"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001616"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001619"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001621"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001623"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001645"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001649"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001650"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001651"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001652"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001653"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001654"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001656"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001658"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001659"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001661"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001662"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001665"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001667"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2002607"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2002694"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2002907"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2003071"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2003679"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2004416"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2004812"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2007129"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2009236"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2012385"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2012802"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2012806"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2012813"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2013916"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2017928"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2018173"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2018392"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2020630"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2021778"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022604"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022606"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022607"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022608"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2023279"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2024326"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2024419"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2025769"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026834"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2027208"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2027716"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2029355"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2029380"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2029582"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2029612"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2029647"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2030119"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2030435"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2030437"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2030438"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2031035"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2031039"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2031041"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2033279"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2034602"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2035002"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2035177"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2035185"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2035237"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2035714"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2036178"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2037135"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041480"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2041610"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2043584"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2045945"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2046172"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2050324"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2050697"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2050702"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2054597"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2059311"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2065314"}],"affected":[{"package":{"name":"hivex","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/hivex?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.18-23.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"hivex","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/hivex?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.18-23.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libguestfs","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libguestfs?distro=rocky-linux-8-6-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.44.0-5.module+el8.6.0+1052+ff61d164.rocky"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libguestfs-winsupport","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libguestfs-winsupport?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.6-1.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libguestfs-winsupport","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libguestfs-winsupport?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.6-1.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libiscsi","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libiscsi?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.18.0-8.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libnbd","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libnbd?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.6.0-5.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libnbd","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libnbd?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.6.0-5.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libtpms","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libtpms?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.9.1-0.20211126git1ff6fe1f43.module+el8.6.0+1052+ff61d164"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libvirt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.0.0-5.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libvirt-dbus","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-dbus?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.0-2.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"libvirt-python","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/libvirt-python?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.0.0-1.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"nbdkit","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/nbdkit?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.24.0-4.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-4-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"netcf","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/netcf?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.8-12.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"perl-Sys-Virt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/perl-Sys-Virt?distro=rocky-linux-8&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.0.0-1.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"perl-Sys-Virt","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/perl-Sys-Virt?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:8.0.0-1.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"qemu-kvm","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/qemu-kvm?distro=rocky-linux-8-6-legacy&epoch=5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5:6.2.0-11.module+el8.6.0+1000+18e3b59f.5"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"seabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/seabios?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.15.0-2.module+el8.6.0+1052+ff61d164"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.7.0+1084+97b81f61"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-4-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.4.0+534+4680a14e"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"sgabios","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/sgabios?distro=rocky-linux-8-6-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.20170427git-3.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"supermin","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/supermin?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.1-1.module+el8.6.0+1052+ff61d164"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"swtpm","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/swtpm?distro=rocky-linux-8-6-legacy&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.7.0-1.20211109gitb79fd91.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}},{"package":{"name":"virt-v2v","ecosystem":"Rocky Linux:8","purl":"pkg:rpm/rocky-linux/virt-v2v?distro=rocky-linux-8-6-legacy&epoch=1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.42.0-18.module+el8.6.0+847+b490afdd"}],"database_specific":{"yum_repository":"AppStream"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2022:1759.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}