Red Hat Updates
1783Warning Date
Severity Level
Warning Number
Target Sector
22 August, 2021
● High
2021-3395
All
Description:
Red Hat has released security updates to address several vulnerabilities in the following products:
- compat-exiv2-023
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Virtualization Host
- Red Hat Virtualization 4 for RHEL 8 x86_64
- Red Hat Virtualization Host 4 for RHEL 8 x86_64
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Buffer overflow
- Command injection
Best practice and Recommendations:
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates: