Bug Fix Advisory rhev-hypervisor bugfix update

Advisory: RHBA-2012:0015-2
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2012-01-11
Last updated on: 2012-01-17
Affected Products: Red Hat Enterprise Virtualization


An updated rhev-hypervisor package that fixes various bugs is now available.

The rhev-hypervisor package provides a Red Hat Enterprise Virtualization
Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a
dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything
necessary to run and manage virtual machines: A subset of the Red Hat Enterprise
Linux operating environment and the Red Hat Enterprise Virtualization Agent.

Note: Red Hat Enterprise Virtualization Hypervisor is only available for
the Intel 64 and AMD64 architectures with virtualization extensions.

This updated package provides updated components that include fixes for
numerous security issues. These issues have no security impact on Red Hat
Enterprise Virtualization Hypervisor itself, however.

The security fixes included in this update address the following CVE

CVE-2011-4862 (a krb5 issue)

CVE-2011-1020, CVE-2011-3637, CVE-2011-4077, CVE-2011-4132, CVE-2011-4324,
CVE-2011-4325, CVE-2011-4330, and CVE-2011-4348 (kernel issues)

This update also fixes the following bug:

* The /etc/resolv.conf file was being overwritten every time a change was made
to networking. The statement PEERDNS="no" is now added to all interface
configuration (ifcfg*) files created by the hypervisor. This prevents the
incorrect overwriting of the /etc/resolv.conf file (BZ#768021).

This errata includes fixes included in kernel errata RHSA-2012:0007.

Users of Red Hat Enterprise Virtualization Hypervisor should upgrade to this
updated package, which fixes these bugs.


Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at

Updated packages

Red Hat Enterprise Virtualization

rhev-hypervisor-5.7-20120106.0.el5_7.noarch.rpm     MD5: 438267053bad31b1f9af09644bb7671e
SHA-256: 86bb9dcab35b24a77091f92f803d25a3ad0cccfa734d471f2c1aeb45d172e8ae
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

768021 - Changes to networking always clear the contents of resolv.conf


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/