On February 8th the oVirt project released an async update to the following packages:

• ovirt-release44-4.4.4.1

• ovirt-node-ng-installer ISO 4.4.4.1 (4.4.4-2021020810)

• imgbased-1.2.16

Fixing the following security issues:

• [BZ 1917684] -  CVE-2021-3156 sudo: Heap buffer overflow in argument parsing

• [RHSA-2021:0150] - Multiple vulnerabilities within dnsmasq

As well as, fixing the following bugs:

• [BZ 1903777] - chronyd is disabled after upgrading RHV-H 4.4.2 -> 4.4.3

• [BZ 1909782] - /etc/openvswitch permissions broken after upgrade

• [BZ 1921553] - RHVH upgrade to the latest 4.4.4-1 build will fail due to FileNotFoundError