{"id":"RHSA-2021:0383","summary":"Red Hat Security Advisory: RHV-M (ovirt-engine) 4.4.z security, bug fix, enhancement upd[ovirt-4.4.4] 0-day","modified":"2025-11-22T12:16:56Z","published":"2024-09-16T05:17:21Z","upstream":["CVE-2020-35497"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:0383"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1576923"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894454"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1908643"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1908755"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0383.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-35497"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-35497"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35497"}],"affected":[{"package":{"name":"ovirt-engine","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-backend","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-backend"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-dbscripts","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-dbscripts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-health-check-bundler","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-health-check-bundler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-restapi","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-restapi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-base","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-cinderlib","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-cinderlib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-imageio","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-imageio"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine-common","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-setup-plugin-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-tools","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-tools-backup","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-tools-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-webadmin-portal","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-webadmin-portal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"ovirt-engine-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/ovirt-engine-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"python3-ovirt-engine-lib","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/python3-ovirt-engine-lib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}},{"package":{"name":"rhvm","ecosystem":"Red Hat:rhev_manager:4.4:el8","purl":"pkg:rpm/redhat/rhvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.4.4.7-0.2.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0383.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}