An update for qemu-kvm-ev has been also tagged for release and announced with
but due to some issues in CentOS release process for Virt SIG content, it is not yet available on mirrors.
We are working with CentOS community to get the packages signed and published as soon as possible.
In the meanwhile you can still get the update package by enabling the test repository https://buildlogs.centos.org/centos/7/virt/x86_64/kvm-common/ on your systems or manually installing the package from the repository.
If you're running oVirt on a different Linux distribution, please check with your vendor for available updates.
Please note that to fully mitigate this vulnerability, system administrators must apply both hardware “microcode” updates and software patches that enable new functionality.
At this time, microprocessor microcode will be delivered by the individual manufacturers.
The oVirt team recommends end users and systems administrator to apply any available updates as soon as practical.
Thanks,
-- SANDRO BONAZZOLA
ASSOCIATE MANAGER, SOFTWARE ENGINEERING, EMEA ENG VIRTUALIZATION R&D
 |  |