It was found that VDSM did accept SSL connection in a flawed way. A malicious client could use this flaw to stop VDSM from accepting new connections (denial of service).
This issue has been addressed in following products: Red Hat Enterprise Virtualization for RHEL-5 Via RHSA-2010:0628 https://rhn.redhat.com/errata/RHSA-2010-0628.html
This issue has been addressed in following products: Red Hat Enterprise Virtualization for RHEL-5 Via RHSA-2010:0622 https://rhn.redhat.com/errata/RHSA-2010-0622.html