RHSA-2021:5006: Critical: Red Hat Virtualization Host security and bug fix update [ovirt-4.4.9] Async #1
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.<br>Security Fix(es):<br><li> nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) (CVE-2021-43527)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2021:5006?
The severity of RHSA-2021:5006 is classified as critical.
How do I fix RHSA-2021:5006?
To fix RHSA-2021:5006, update the redhat-release-virtualization-host packages to version 4.4.9-3.el8e.
Which packages are affected by RHSA-2021:5006?
The affected packages in RHSA-2021:5006 include redhat-release-virtualization-host, redhat-release-virtualization-host-content, and redhat-virtualization-host-image-update-placeholder.
Is RHSA-2021:5006 related to Red Hat Virtualization?
Yes, RHSA-2021:5006 pertains to vulnerabilities affecting Red Hat Virtualization Hosts.
What should I do if I cannot update to version 4.4.9-3.el8e for RHSA-2021:5006?
If you cannot update to version 4.4.9-3.el8e for RHSA-2021:5006, reach out to Red Hat support for guidance on alternative solutions.