Skip to navigation

Security Advisory Important: Red Hat Enterprise Virtualization Manager 3.3.0 update

Advisory: RHSA-2014:0038-1
Type: Security Advisory
Severity: Important
Issued on: 2014-01-21
Last updated on: 2014-01-21
Affected Products: Red Hat Enterprise Virtualization 3.3
CVEs (cve.mitre.org): CVE-2013-6434

Details

Red Hat Enterprise Virtualization Manager 3.3 is now available.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

Red Hat Enterprise Virtualization Manager is a visual tool for centrally
managing collections of virtual servers running Red Hat Enterprise Linux
and Microsoft Windows. This package also includes the Red Hat Enterprise
Virtualization Manager API, a set of scriptable commands that give
administrators the ability to perform queries and operations on Red Hat
Enterprise Virtualization Manager.

A flaw was found in the way Red Hat Enterprise Virtualization Manager
relayed SPICE connection information to remote-viewer when a native SPICE
client invocation method was used. As a result, remote-viewer attempted an
insecure connection first and only switched to a secure connection when
requested by the SPICE server. An attacker able to intercept the SPICE
connection could use this flaw to conduct man-in-the-middle attacks.
(CVE-2013-6434)

Red Hat would like to thank Michael Samuel of Amcom for reporting this
issue.

This update also fixes several bugs and adds various enhancements.
Documentation for these changes will be available shortly from the
Technical Notes document linked to in the References section.

All Red Hat Enterprise Virtualization Manager users are advised to upgrade
to these updated packages, which resolve these issues and add these
enhancements.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Virtualization 3.3

SRPMS:
rhevm-3.3.0-0.45.el6ev.src.rpm
File outdated by:  RHBA-2014:0384
    MD5: 8565fb5614bbea6856168623f5b104d5
SHA-256: 2e6279740c9157c3bf4dc00905399d0ba063b1da24f7c33dc4fc00148fc72419
 
x86_64:
rhevm-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: c015f51de61962ca3fd2a1df91e2e367
SHA-256: 54c3d4b31c183840f7324ac656197e17b86cc1709fed81f7dc23b4215d6e0ae8
rhevm-backend-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: bc7711346fb888ef8889fd09a9d5a9e2
SHA-256: 6ad39bf65114be899892274caab2f9fadabc788b7d3e49f7aea1c7101319a918
rhevm-dbscripts-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 5ce55cc7a8bddf22b7c44637fe4020d9
SHA-256: 7925642644cc4e00681636c848a72471d521cc96ff04effb5f7dc6b650e1972e
rhevm-lib-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 1f20c6ccfb2c97ffcf3799132db8706e
SHA-256: 1c5b2e3b3b52071795f714e814ed7bc33147774ff97977794177529e26c30c0d
rhevm-restapi-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: b0f6bdfb9da96810e1b48c685663e667
SHA-256: 207a922f2802b7aeaab41f799dd154cbd9b2798113be4916614399465d02a652
rhevm-setup-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 4b9ff444b9437256c54de78ac5b702e2
SHA-256: 6a5c5069628433ae6864c6a5a164ac1667f6a2bf440ab3526d4767f9a27b2d62
rhevm-setup-plugin-allinone-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 2ddb7f3e7deadc1a5f27fcde029151f6
SHA-256: 381855b5e474e746fcd746e7c968e68e4c849f40859462891a13b961485edb71
rhevm-tools-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 745dd6934bb922475e0baafff6607d23
SHA-256: bf754b77d17cd37379cd0c9f4605bb7a90689d0b215b09d8bb80506de975c952
rhevm-userportal-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 938ee749e64222abbc4890d2369d69ee
SHA-256: 296e9b7d23a373149335180de7bf9f34f1090e37489cc2b0a11322b1f81238a0
rhevm-webadmin-portal-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 7877801e87160e7a1868de4cee05d2bb
SHA-256: 0c9f2115d3da2bdea88eb1aeae286ebe06fb9e180230a8d1ecc6b1067ca4b0ce
rhevm-websocket-proxy-3.3.0-0.45.el6ev.noarch.rpm
File outdated by:  RHBA-2014:0384
    MD5: 2ebd3a41116a9595641864289805464d
SHA-256: 60061ced3e4c96efb157e1cd1d63f78ed944c97415b2e33c4afff1fde1574fb8
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1000789 - Failed to create VM from template without any image disks
1002401 - [RFE] backup/restore: support restoring to different database location
1002664 - Failures to remove images from an import domain result in imported images on data domains being marked as illegal.
1003117 - Make UseSecureConnectionWithServers config option availabe via rhevm-config
1004066 - Host: Exit message: internal error No more available PCI addresses
1005256 - When deleting snapshots created for Live Storage Migration, RHEV removes the source disk rather than the snapshot
1006659 - prestarted VMs in a pool do not use sysprep file
1012798 - [RFE] [webadmin] pin left pane to dialog window in New logical network dialog
1013860 - "Resources" tab on the Power User Portal unable to display all virtual machine disks
1015148 - [RFE] Ability to see additional detail on Storage summary in the RHEV-M environment
1015638 - VmPoolMonitor throws a NullPointerException while starting a guest that in turn remains down with its images locked.
1018201 - CPU pinning option is not available for the VMs running on "Local on Host" type DataCenter.
1021326 - Max Memory Over Commitment's units should use percentage and not "MB"
1023131 - DestroyVDSCommand called after CancelMigrateVDSCommand failure when attempting to cancel multiple live migrations at a time
1023952 - [RFE] [RHEVM][webadmin] vNIC profile screens are missing features
1028966 - require openjdk version which solves the memory leak in RHEV-M: service ovirt-engine gets OOM killed after few days of uptime
1029106 - getallfromvmtemplates stored in procedure execution takes long time making VM creation take long time when having more than 80 templates
1029177 - taskcleaner.sh '-l' option does not produce logfile
1032807 - TryBackToAllSnapshotsOfVm threw NullPointerException during snapshot-preview because of random disk attached to VM
1037894 - rhevm-manage-domains fails to update ldapServers entries when using action=edit
1039839 - CVE-2013-6434 rhev: remote-viewer spice tls-stripping issue
787578 - PRD33 - RFE: add support for multiple monitors on QXL device (single device with more RAM)
825801 - PRD33 - [webadmin] RFE: Improve bonding logic
829672 - [RFE] RESTAPI: vm/template Import candidates should have /disks sub-collection
835543 - PRD33 - RFE: Allow to edit file (nfs/posix/local) domain connections (incl. advanced options)
838456 - PRD33 - [RFE] Localization of landing / welcome / splash page
838527 - [rhevm] unable to start ovirt-engine if service crash and pid is left
853739 - [RFE] RESTAPI: On action api returns parameters in response body instead of actual action result
859727 - [RFE] There is no way to distinguish between user and group in search
863211 - PRD33 - predictable host timeouts for ha/fencing (backend - vdsNotResponding takes too long before fence host)
867642 - PRD33 - add spm priority to host general subtab
872719 - PRD33 - [RFE] Add support for adding and managing external tasks
873795 - PRD33 - Default time zone in New VM dialog
879904 - engine: engine fails to connect to DB and cannot be started with NPE
880773 - [RFE] [rhevm-upgrade] during upgrade rhev-guest-tools-iso is not updated to latest version and remains with old version
885135 - [RFE] provide a more informative message in event when a VM started in Paused Mode
886840 - [RFE] RSDL : Add the option to set custom ticket to a VM
889271 - PRD33 - [RFE] RHEV should log and keep track of the versions installed and upgraded
890568 - PRD33 - [RFE] Branding as external package
891056 - PRD33 - [RFE] Normalized ovirtmgmt Initialization - provision mgmt network post bootstrap
892642 - Disk permission don't disappear after disk is deleted(is shown as 'null(Disk)').
902353 - PRD33 - Web Admin: There is no way to define VM default host using RunOnce [RFE]
907491 - [Admin Portal] improve/fix grid/tab content loading animation
908327 - Trying to import a template again after a previously failed import attempt results in 'Error while executing action: Cannot copy Template. The Storage Domain already contains the target disk(s)'
908656 - PRD33 - [RFE] Add VDSM hook for hotplug disk
908835 - [RFE] [Admin Portal] Copying a quota drops consumers and permissions
909270 - [RFE] [User Portal] RDP console opened from User Portal does not pass clipboard
909930 - PRD33 - Add 'Create Snapshot' as an action on a VM
912076 - PRD33 - Implement a plug-in scheduler implementation that interfaces to external scheduler via scheduling API and SDK
912258 - [RFE] [Admin Portal] "No $objects to display" text missing in some sub-tabs
915778 - [RFE][RHEVM] [webadmin] Network Interfaces statistics are not shown for VM unless VNIC is selected
915904 - [RFE] Improve performance for General sub-tabs
916832 - [RFE] Allow to set VncKeyboardLayout via REST API per VM
916866 - PRD33 - Allow to set VncKeyboardLayout in GUI
917586 - [RFE] Use /etc/ovirt-engine/engine.conf for local configuration instead of /etc/sysconfig/ovirt-engine
918890 - PRD33 - Allow non plugin automatic invocation of RDP session (basic - no cd, disconnect reason, etc.)
920694 - engine: deactivating the master domain and concurrently putting all hosts in maintenance leaves hosts non-op upon activation
921544 - PRD33 - LUNs 'In Use' field is confusing
922475 - PRD33 - [RFE] Backup and Restore API for Independent Software Vendors
922504 - PRD33 - ovirt-engine-backend: Distinguish between regular and force removal of data center events
922609 - Cannot edit description field of running VMs - Need to stop and restart the guest for a new description to be effected.
926928 - [RFE] RHEVM-API: Add /applications sub-collection under vm
947977 - PRD33 - [RFE] Support a watchdog VM device in the engine
948481 - use logrotate instead of proprietary solution to handle log rotation
948744 - Some java exceptions are not logged to the log file
949281 - Hibernate VM was started for a VM that has already Hibernate VM run for.
949484 - Underscores in tag names break tags
950768 - Windows XP guest fails to start when enabling native USB support.
952107 - Under certain circumstances live storage migration failure leaves images split among old and new storage as well as tasks running in database
952297 - PRD33 - ovirt-engine service re-work
953614 - Automatic logout does not always happen as per UserSessionTimeOutInterval value
953989 - PRD33 - Events main tab / sub-tabs Must Support the UI Plug-in Model
955498 - Desktop VM from RHEV 3.0 does not have any sound device after importing to RHEV 3.1
957703 - engine: can't live migrate vm's disk after a failure because image already exists in the target
957729 - [RFE] Expose VM Limit config values to rhevm-config
959879 - [REST-API] Update of power management by sending entire host representation is ignored
960931 - PRD33 - RFE: live snapshot with cpu/memory/disk status
961645 - PRD33 - [RHEVM-RHS] Bootstrapping should set iptables rules, allowing gluster process on RHS Nodes
962162 - PRD33 - [RFE] [host-deploy] support ssh public key authentication
962177 - [rhevm-dwh] - ETL Reports error when a Single Host in setup is Non-Responsive ("ETL service sampling has encountered an error")
965179 - [RFE] Add delete-this-file feature support to the engine
966003 - Changing vmpool's quota is ignored.
966192 - PRD33 - AuditLogDirector.log(*) methods should also update engine.log
966198 - PRD33 - Add new column to audit_log SQL table for stack trace
966980 - backup.sh return code always 0 even on error
967268 - boot order has been changed after unexpected reboot
967278 - PRD33 - [RFE] Foreman as host provider
967327 - PRD33 - Add support for OpenLDAP as domain provider
967328 - PRD33 - add soft fencing over SSH (restart VDSM) as a preliminary step before fencing a None-Responsive host
967353 - PRD33 - force Apache proxy on upgrade and clean install
967516 - PRD33 - Tech Preview - Add support for Neutron based networks
967541 - PRD33 - custom properties per vnic / device
967572 - PRD33 - mom integration - balloon to try and get memory up to guaranteed memory
967573 - PRD33 - alert on VMs not respecting balloon
967574 - PRD33 - engine monitoring/balancing VMs not getting guaranteed memory
967604 - engine: AutoRecovery of host fails and host is set as NonOperational when export domain continues to be reported with error code 358
967987 - Provide additional logging at JndiAction level that would show credentials chosen for manage-domains authentication
968178 - [RHEVM-RHS] Should check for gluster capabilities when moving host from virt to gluster cluster
968499 - PRD33 - upgrade gwt framework to 2.5
970046 - PRD33 - gluster - Supporting RHS hooks through RHEV-M
970195 - webadmin portal only reports VMs in "Up" status in the "Load" column
970948 - PRD33 - Quota support
971237 - RHEVM slow due to stored procedure getdisksvmguid() consuming most CPU
971346 - Rhevm-setup misguides user with regards to steps for rhevm-reports upgrade
971695 - webadmin: Events main tab: When applying an Events search filter (which results in few items) by hitting "Enter" - duplicate entries are shown.
972455 - PRD33 - Select SPM as default host for new storage dialog
973383 - Upgrade from RHEV-M 3.1 to 3.2 failed with 'GroupsError: No Groups Available in any repository'
974066 - PRD33 - externalize vm level configuration values to a property file
974148 - RHEV-M AD authentication does not work if one of the DCs is defunct.
974982 - make rhevm-config to set TZ
975097 - PRD33 - glance import/export templates and raw floating disks
976671 - Recreate trust store when upgrading
977322 - rest-api: Missing node <snapshot_states> in /api/capabilities
977689 - After enable concurrent option under host power management fencing begin failed
978268 - Unable to put a host into maintenance because VMs previously managed by vdsm are running on the host
979763 - [engine-setup] setup fails when selinux is disabled
980486 - Attaching a network to a host's nic inherits the host nic's IP to the new network
980926 - Upgrade from 3.2.0-11.30 to 3.2.0-11.37 fails during 'Preparing CA' stage.
982050 - VM UUID is not shown prominently in Web UI
982527 - Disk entries remain in database after deleting the datacenter
982636 - Cloning VM from snapshot of another VM results in corruption of original VM
983120 - PRD33 - Provide MoTD on logon screen
983295 - Unable to bypass FQDN requirement for rhevm-setup
985635 - Changing email address for event notification results in error "User is already subscribed to this event with the same Notification method"
986700 - [user portal] RHEVM slow due to stored procedure getdisksvmguid() consuming most CPU
986979 - It is not possible to assign any network to an cluster in WebAdmin portal.
987783 - Live Storage Migration attempted on an unplugged disk of a running VM (instead of a simple cold move)
988259 - [Admin Portal] Cannot update VM properties - Field timeZone can not be updated when status is Up
989041 - Unable to detach VMs from a pool if pool contains more than 100 VMs
993123 - REST-API doesn't return statistics for VLAN tagged interfaces
994218 - Rhev-m admin GUI logs actions done by <UNKNOWN> in the Events tab
994463 - Failed attached Export Storage Domain - Could not obtain lock
995501 - [host-deploy] block concurrent installation for same host
996816 - Unable to create a windows 2012 ( 64bit ) VM with 32GB memory
999812 - RestAPI URI template style query for 'users' and 'disks' resources do not work.


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/