[ovirt-users] Re: So - no updates nor mentions about CVE-2022-0847 (Dirty Pipe)?
Here's ovirt tracker:
Bug 2061694 <https://bugzilla.redhat.com/show_bug.cgi?id=2061694> -
CVE-2022-0847 <https://access.redhat.com/security/cve/CVE-2022-0847> -
kernel: improper initialization of the "flags" member of the new
pipe_buffer [ovirt-4.4]
CentOS Stream 8 didn't provide a kernel with the fix yet:
https://koji.mbox.centos.org/koji/packageinfo?packageID=866
So on oVirt Node there's nothing we can do other than wait. You're welcome
to ask CentOS Stream to provide a fix.
Il giorno gio 17 mar 2022 alle ore 16:10 <jasonmicron(a)gmail.com> ha scritto:
Sorry if I missed this, but oVirt Engine is impacted. I was hoping to
see
some sort of release or announcement about this. If there was one,
apologies. RHV has mitigated this:
https://access.redhat.com/errata/RHSA-2022:0841
_______________________________________________
Users mailing list -- users(a)ovirt.org
To unsubscribe send an email to users-leave(a)ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct:
https://www.ovirt.org/community/about/community-guidelines/
List Archives:
https://lists.ovirt.org/archives/list/users@ovirt.org/message/J6OEABN74DG...
--
Sandro Bonazzola
MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV
Red Hat EMEA <https://www.redhat.com/>
sbonazzo(a)redhat.com
<https://www.redhat.com/>
*Red Hat respects your work life balance. Therefore there is no need to
answer this email out of your office hours.*
Attachments:
- attachment.html (text/html — 5.3 KB)