This bug was created to ensure that one or more security vulnerabilities are fixed in affected versions of oVirt. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field.
As of Feb 21 2022 CentOS Stream includes kernel-4.18.0-365.el8 (https://koji.mbox.centos.org/koji/buildinfo?buildID=21111) which contains the fix: - fs: add vfs_parse_fs_param_source() helper (Waiman Long) [2034609] - cgroup: verify that source is a string (Waiman Long) [2034609]
ISO: https://resources.ovirt.org/pub/ovirt-4.4/iso/ovirt-node-ng-installer/4.4.10-2022030308/el8/ovirt-node-ng-installer-4.4.10-2022030308.el8.iso