Kernel-based Virtual Machine (KVM) offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.
Security Fix(es):
QEMU: VNC: improper I/O watch removal in TLS handshake can lead to remote unauthenticated denial of service (CVE-2023-3354)
NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image (CVE-2022-40284)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
0:1.3.18-23.module+el8.10.0+1590+a67ab9690:1.3.18-23.module+el8.10.0+1835+43f01cbb1:1.44.0-9.module+el8.10.0+1590+a67ab969.rocky1:1.44.0-9.module+el8.10.0+1835+43f01cbb.rocky.rocky0:1.18.0-8.module+el8.10.0+1590+a67ab9690:1.18.0-8.module+el8.10.0+1835+43f01cbb0:1.6.0-5.module+el8.10.0+1590+a67ab9690:1.6.0-5.module+el8.10.0+1835+43f01cbb0:0.9.1-2.20211126git1ff6fe1f43.module+el8.10.0+1590+a67ab9690:0.9.1-2.20211126git1ff6fe1f43.module+el8.10.0+1835+43f01cbbExploitability
AV:NAC:LPR:NUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H