RHBA-2021:0639: Red Hat Bug Fix Advisory: virt:8.3 bug fix and enhancement update

An update for the virt:8.3 module is now available for Red Hat Enterprise Linux Advanced Virtualization 8.3.1.The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Related CVEs:

• CVE-2020-25707: QEMU: infinite loop in e1000e_write_packet_to_guest() in hw/net/e1000e_core.c
• CVE-2020-25723: QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c
• CVE-2020-27617: QEMU: net: an assert failure via eth_get_gso_type
• CVE-2020-27821: QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c
• CVE-2020-29443: QEMU: ide: atapi: OOB access while processing read commands
• CVE-2020-35517: QEMU: virtiofsd: potential privileged host device access from guest