Il giorno lun 1 feb 2021 alle ore 11:46 Renaud RAKOTOMALALA <renaud.rakotomalala@smile.fr> ha scritto:

Hello everyone,

I operate several oVirt clusters including pre-productions using ovirt-node-ng images.

For our traditional clusters we manage the incident in a unitary way with a dedicated rpm, however for ovirt-node-ng I am not yet up to date with critical package updates process.

Do you have any advice or tips?

Related to CVE-2021-3156 an updated oVirt Node 4.4 has been released a while ago, please refer to official announce: to https://lists.ovirt.org/archives/list/announce@ovirt.org/thread/WRMYQCKJAVVJRIFMMN7XXAK5LI5KOFDW/

oVirt 4.3 gone end of life when oVirt 4.4 has been released so oVirt Node 4.3 is not going to get any further updates.

Please upgrade to 4.4 as soon as practical.

Thanks,

Sandro Bonazzola

MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV

Red Hat EMEA

sbonazzo@redhat.com

Red Hat respects your work life balance. Therefore there is no need to answer this email out of your office hours.