[prev in list] [next in list] [prev in thread] [next in thread]
List: centos-virt
Subject: Re: [CentOS-virt] qemu-kvm-ev: usb: out-of-bounds r/w(CVE-2020-14364)
From: "rjmcy () vip ! qq ! com" <rjmcy () vip ! qq ! com>
Date: 2021-03-29 1:24:18
Message-ID: 202103290924179078678 () vip ! qq ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
[Attachment #4 (text/plain)]
I have reported on bugzilla, link: \
https://bugzilla.redhat.com/show_bug.cgi?id=1943399; But this seems to only support \
ovirt. Then,opened an issue on CentOS community;link: \
https://bugs.centos.org/view.php?id=18131; Thanks.
jasonrao
From: centos-virt-request
Date: 2021-03-16 20:00
To: centos-virt
Subject: CentOS-virt Digest, Vol 159, Issue 2
Send CentOS-virt mailing list submissions to
centos-virt@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.centos.org/mailman/listinfo/centos-virt
or, via email, send a message with subject or body 'help' to
centos-virt-request@centos.org
You can reach the person managing the list at
centos-virt-owner@centos.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of CentOS-virt digest..."
Today's Topics:
1. Re: qemu-kvm-ev: usb: out-of-bounds r/w(CVE-2020-14364)
(Sandro Bonazzola)
2. Unable to Login to AWS AMI With SSH Key - aarch64 (David Lemcoe)
3. Re: Unable to Login to AWS AMI With SSH Key - aarch64
(David Lemcoe)
----------------------------------------------------------------------
Message: 1
Date: Mon, 15 Mar 2021 17:30:44 +0100
From: Sandro Bonazzola <sbonazzo@redhat.com>
To: Discussion about the virtualization on CentOS
<centos-virt@centos.org>
Subject: Re: [CentOS-virt] qemu-kvm-ev: usb: out-of-bounds
r/w(CVE-2020-14364)
Message-ID:
<CAPQRNTmoDbYqHew9p824LG8CLWHr3Ca=kGv+Jaky4N0OVD2WrA@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Il giorno mer 3 mar 2021 alle ore 09:56 rjmcy@vip.qq.com <rjmcy@vip.qq.com>
ha scritto:
> Hello
> I saw that qemu-kvm-rhev has fixed the issue, but CentOS
> community hasn't updated the repaired version of qemu-kvm-ev;
> will it be fixed in the future?
>
Can you please open a BZ on
https://bugzilla.redhat.com/enter_bug.cgi?product=ovirt-distribution&component=qemu-kvm-ev
?
Thanks
> thanks
> _______________________________________________
> CentOS-virt mailing list
> CentOS-virt@centos.org
> https://lists.centos.org/mailman/listinfo/centos-virt
>
--
Sandro Bonazzola
MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV
Red Hat EMEA <https://www.redhat.com/>
sbonazzo@redhat.com
<https://www.redhat.com/>
*Red Hat respects your work life balance. Therefore there is no need to
answer this email out of your office hours.*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/52e2ec49/attachment-0001.html>
------------------------------
Message: 2
Date: Mon, 15 Mar 2021 12:36:42 -0400
From: David Lemcoe <david@delcoe.com>
To: centos-virt@centos.org
Subject: [CentOS-virt] Unable to Login to AWS AMI With SSH Key -
aarch64
Message-ID: <12D7B36C-DB26-41D6-BE8F-779153ECA319@delcoe.com>
Content-Type: text/plain; charset="us-ascii"
When launching CentOS Stream for aarch64 in us-east-1 using the CentOS-sponsored AMI \
(ami-0a311be1169cd6581, found at https://wiki.centos.org/Cloud/AWS \
<https://wiki.centos.org/Cloud/AWS>) I am able to launch the EC2 instance using a \
Gravitron2 processor, as expected. However, when attempting to login to that \
instance, I get a password prompt for the ec2-user, centos, and root users.
This behavior is not expected, because on the x86_64 AMIs the centos user is \
configured to use the SSH key selected in the AWS EC2 Launch Wizard, and a SSH login \
password is not required.
In the aarch64 AMI, the centos and root usernames all prompt for password, and never \
seem to consider the provided SSH key.
This is the SSH command that I am using:
ssh -i ssh_key_selected_at_launch.pem centos@<the_public_ip>
This command results in a password prompt.
What is the process for connecting to the CentOS Stream AMI spun for aarch64?
Thank you!
David Lemcoe Jr.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/1237a0c6/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1481 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/1237a0c6/attachment-0001.p7s>
------------------------------
Message: 3
Date: Mon, 15 Mar 2021 12:46:49 -0400
From: David Lemcoe <david@delcoe.com>
To: centos-virt@centos.org
Subject: Re: [CentOS-virt] Unable to Login to AWS AMI With SSH Key -
aarch64
Message-ID: <FFA02901-53F9-4996-9331-E04640881528@delcoe.com>
Content-Type: text/plain; charset="utf-8"
I have resolved my ?issue.? It would appear that CentOS 8 Stream for aarch64 does not \
support `t4g.nano` instance sizes. Once I moved to t4g.small, my SSH login worked as \
expected.
Sorry to bother!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1481 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/77b64c18/attachment-0001.p7s>
------------------------------
Subject: Digest Footer
_______________________________________________
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt
------------------------------
End of CentOS-virt Digest, Vol 159, Issue 2
*******************************************
[Attachment #5 (text/html)]
<html><head><meta http-equiv="content-type" content="text/html; \
charset=utf-8"><style>body { line-height: 1.5; }blockquote { margin-top: 0px; \
margin-bottom: 0px; margin-left: 0.5em; }body { font-size: 14px; font-family: \
"Microsoft YaHei UI"; color: rgb(0, 0, 0); line-height: 1.5; }</style></head><body> \
<div><span></span><span style="color: rgb(0, 0, 0); background-color: rgba(0, 0, 0, \
0);">I have reported on bugzilla, link:</span><span style="background-color: \
transparent;"> </span><a href="https://bugzilla.redhat.com/show_bug.cgi?id=1943399;" \
style="background-color: \
transparent;">https://bugzilla.redhat.com/show_bug.cgi?id=1943399;</a><span \
style="color: rgb(0, 0, 0); background-color: rgba(0, 0, 0, 0);"> </span><span \
style="background-color: transparent;">But this seems to only support \
ovirt.</span></div><div><span style="background-color: \
transparent;">Then,</span><span style="font-size: small; white-space: pre-wrap; \
background-color: transparent;">opened an issue on CentOS </span><span \
style="background-color: transparent;">community;link: </span><span \
style="background-color: transparent;"></span><a \
href="https://bugs.centos.org/view.php?id=18131;" style="background-color: \
transparent;">https://bugs.centos.org/view.php?id=18131;</a><span style="color: \
rgb(0, 0, 0); background-color: rgba(0, 0, 0, 0);"> </span></div><div><span \
style="color: rgb(0, 0, 0); background-color: rgba(0, 0, 0, \
0);">Thanks.</span></div><span style="color: rgb(0, 0, 0); background-color: rgba(0, \
0, 0, 0);"></span><div><span style="background-color: \
transparent;"><br></span></div><hr style="width: 210px; height: 1px;" color="#b5c4df" \
size="1" align="left"> <div><span><div style="MARGIN: 10px; FONT-FAMILY: verdana; \
FONT-SIZE: 10pt"><br></div><div style="MARGIN: 10px; FONT-FAMILY: verdana; FONT-SIZE: \
10pt">jasonrao</div></span></div> <blockquote style="margin-Top: 0px; margin-Bottom: \
0px; margin-Left: 0.5em; margin-Right: inherit"><div> </div><div \
style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm"><div \
style="PADDING-RIGHT: 8px; PADDING-LEFT: 8px; FONT-SIZE: \
12px;FONT-FAMILY:tahoma;COLOR:#000000; BACKGROUND: #efefef; PADDING-BOTTOM: 8px; \
PADDING-TOP: 8px"><div><b>From:</b> <a \
href="mailto:centos-virt-request@centos.org">centos-virt-request</a></div><div><b>Date:</b> 2021-03-16 20:00</div><div><b>To:</b> <a \
href="mailto:centos-virt@centos.org">centos-virt</a></div><div><b>Subject:</b> CentOS-virt \
Digest, Vol 159, Issue 2</div></div></div><div><div>Send CentOS-virt mailing list \
submissions to</div> <div> centos-virt@centos.org</div>
<div> </div>
<div>To subscribe or unsubscribe via the World Wide Web, visit</div>
<div> https://lists.centos.org/mailman/listinfo/centos-virt</div>
<div>or, via email, send a message with subject or body 'help' to</div>
<div> centos-virt-request@centos.org</div>
<div> </div>
<div>You can reach the person managing the list at</div>
<div> centos-virt-owner@centos.org</div>
<div> </div>
<div>When replying, please edit your Subject line so it is more specific</div>
<div>than "Re: Contents of CentOS-virt digest..."</div>
<div> </div>
<div> </div>
<div>Today's Topics:</div>
<div> </div>
<div> 1. Re: qemu-kvm-ev: usb: out-of-bounds r/w(CVE-2020-14364)</div>
<div> (Sandro Bonazzola)</div>
<div> 2. Unable to Login to AWS AMI With SSH Key - aarch64 (David \
Lemcoe)</div> <div> 3. Re: Unable to Login to AWS AMI With SSH Key - \
aarch64</div> <div> (David Lemcoe)</div>
<div> </div>
<div> </div>
<div>----------------------------------------------------------------------</div>
<div> </div>
<div>Message: 1</div>
<div>Date: Mon, 15 Mar 2021 17:30:44 +0100</div>
<div>From: Sandro Bonazzola <sbonazzo@redhat.com></div>
<div>To: Discussion about the virtualization on CentOS</div>
<div> <centos-virt@centos.org></div>
<div>Subject: Re: [CentOS-virt] qemu-kvm-ev: usb: out-of-bounds</div>
<div> r/w(CVE-2020-14364)</div>
<div>Message-ID:</div>
<div> <CAPQRNTmoDbYqHew9p824LG8CLWHr3Ca=kGv+Jaky4N0OVD2WrA@mail.gmail.com></div>
<div>Content-Type: text/plain; charset="utf-8"</div>
<div> </div>
<div>Il giorno mer 3 mar 2021 alle ore 09:56 rjmcy@vip.qq.com \
<rjmcy@vip.qq.com></div> <div>ha scritto:</div>
<div> </div>
<div>> Hello</div>
<div>> I saw that qemu-kvm-rhev \
has fixed the issue, but CentOS</div> <div>> community hasn't updated the \
repaired version of qemu-kvm-ev;</div> <div>> will it be fixed in the \
future?</div> <div>></div>
<div> </div>
<div>Can you please open a BZ on</div>
<div>https://bugzilla.redhat.com/enter_bug.cgi?product=ovirt-distribution&component=qemu-kvm-ev</div>
<div> ?</div>
<div>Thanks</div>
<div> </div>
<div> </div>
<div> </div>
<div>> thanks</div>
<div>> _______________________________________________</div>
<div>> CentOS-virt mailing list</div>
<div>> CentOS-virt@centos.org</div>
<div>> https://lists.centos.org/mailman/listinfo/centos-virt</div>
<div>></div>
<div> </div>
<div> </div>
<div>-- </div>
<div> </div>
<div>Sandro Bonazzola</div>
<div> </div>
<div>MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV</div>
<div> </div>
<div>Red Hat EMEA <https://www.redhat.com/></div>
<div> </div>
<div>sbonazzo@redhat.com</div>
<div><https://www.redhat.com/></div>
<div> </div>
<div>*Red Hat respects your work life balance. Therefore there is no need to</div>
<div>answer this email out of your office hours.*</div>
<div>-------------- next part --------------</div>
<div>An HTML attachment was scrubbed...</div>
<div>URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/52e2ec49/attachment-0001.html></div>
<div> </div>
<div>------------------------------</div>
<div> </div>
<div>Message: 2</div>
<div>Date: Mon, 15 Mar 2021 12:36:42 -0400</div>
<div>From: David Lemcoe <david@delcoe.com></div>
<div>To: centos-virt@centos.org</div>
<div>Subject: [CentOS-virt] Unable to Login to AWS AMI With SSH Key -</div>
<div> aarch64</div>
<div>Message-ID: <12D7B36C-DB26-41D6-BE8F-779153ECA319@delcoe.com></div>
<div>Content-Type: text/plain; charset="us-ascii"</div>
<div> </div>
<div>When launching CentOS Stream for aarch64 in us-east-1 using the CentOS-sponsored \
AMI (ami-0a311be1169cd6581, found at https://wiki.centos.org/Cloud/AWS \
<https://wiki.centos.org/Cloud/AWS>) I am able to launch the EC2 instance using \
a Gravitron2 processor, as expected. However, when attempting to login to that \
instance, I get a password prompt for the ec2-user, centos, and root users. </div> \
<div> </div> <div>This behavior is not expected, because on the x86_64 AMIs the \
centos user is configured to use the SSH key selected in the AWS EC2 Launch Wizard, \
and a SSH login password is not required. </div> <div> </div>
<div>In the aarch64 AMI, the centos and root usernames all prompt for password, and \
never seem to consider the provided SSH key.</div> <div> </div>
<div>This is the SSH command that I am using:</div>
<div> </div>
<div> ssh -i ssh_key_selected_at_launch.pem centos@<the_public_ip></div>
<div> </div>
<div>This command results in a password prompt.</div>
<div> </div>
<div>What is the process for connecting to the CentOS Stream AMI spun for \
aarch64?</div> <div> </div>
<div>Thank you!</div>
<div> </div>
<div>David Lemcoe Jr.</div>
<div> </div>
<div>-------------- next part --------------</div>
<div>An HTML attachment was scrubbed...</div>
<div>URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/1237a0c6/attachment-0001.html></div>
<div>-------------- next part --------------</div>
<div>A non-text attachment was scrubbed...</div>
<div>Name: smime.p7s</div>
<div>Type: application/pkcs7-signature</div>
<div>Size: 1481 bytes</div>
<div>Desc: not available</div>
<div>URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/1237a0c6/attachment-0001.p7s></div>
<div> </div>
<div>------------------------------</div>
<div> </div>
<div>Message: 3</div>
<div>Date: Mon, 15 Mar 2021 12:46:49 -0400</div>
<div>From: David Lemcoe <david@delcoe.com></div>
<div>To: centos-virt@centos.org</div>
<div>Subject: Re: [CentOS-virt] Unable to Login to AWS AMI With SSH Key -</div>
<div> aarch64</div>
<div>Message-ID: <FFA02901-53F9-4996-9331-E04640881528@delcoe.com></div>
<div>Content-Type: text/plain; charset="utf-8"</div>
<div> </div>
<div>I have resolved my ?issue.? It would appear that CentOS 8 Stream for aarch64 \
does not support `t4g.nano` instance sizes. Once I moved to t4g.small, my SSH login \
worked as expected.</div> <div> </div>
<div>Sorry to bother!</div>
<div>-------------- next part --------------</div>
<div>A non-text attachment was scrubbed...</div>
<div>Name: smime.p7s</div>
<div>Type: application/pkcs7-signature</div>
<div>Size: 1481 bytes</div>
<div>Desc: not available</div>
<div>URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20210315/77b64c18/attachment-0001.p7s></div>
<div> </div>
<div>------------------------------</div>
<div> </div>
<div>Subject: Digest Footer</div>
<div> </div>
<div>_______________________________________________</div>
<div>CentOS-virt mailing list</div>
<div>CentOS-virt@centos.org</div>
<div>https://lists.centos.org/mailman/listinfo/centos-virt</div>
<div> </div>
<div> </div>
<div>------------------------------</div>
<div> </div>
<div>End of CentOS-virt Digest, Vol 159, Issue 2</div>
<div>*******************************************</div>
<div> </div>
</div></blockquote>
</body></html>
.
_______________________________________________
CentOS-virt mailing list
CentOS-virt@centos.org
https://lists.centos.org/mailman/listinfo/centos-virt
.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic