guestfs-tools-1.48.2-5.el9

エラータID: AXSA:2023-5034:01

Release date: 
Thursday, February 9, 2023 - 06:18
Subject: 
guestfs-tools-1.48.2-5.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Low
Description: 

guestfs-tools is a set of tools that can be used to make batch configuration changes to guests, get disk used/free statistics, perform backups and guest clones, change registry/UUID/hostname info, build guests from scratch, and much more.

Security Fix(es):

* libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-2211
A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the get_keys() function. This flaw leads to a denial of service, either by mistake or malicious actor.

Solution: 

Update packages.

CVEs: 
CVE-2022-2211
A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the get_keys() function. This flaw leads to a denial of service, either by mistake or malicious actor.
Additional Info: 

N/A

Download: 

SRPMS
  1. guestfs-tools-1.48.2-5.el9.src.rpm
    MD5: 31bc67eaf69f7329dc3ad30358769abc
    SHA-256: 1cd139bfeb4a50903817b89931d225366f58230b2d3a83863fe2b5a434127a1e
    Size: 12.05 MB

Asianux Server 9 for x86_64
  1. guestfs-tools-1.48.2-5.el9.x86_64.rpm
    MD5: d43f6ca2a779dce8e02e146a2e6b0176
    SHA-256: 48661eb85e41ab6af7b29e857b0e188125dc43a5a5be230ac78c3961fc6b7c7d
    Size: 3.25 MB
  2. virt-win-reg-1.48.2-5.el9.noarch.rpm
    MD5: b741cbbd229ded336ef27cd25be0bf06
    SHA-256: 28d26042a264f8a13ba79015e226701f667ba323aa8c50e1ceeb04ae16bb158c
    Size: 30.73 kB