Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 415
Alerts This Week
Warning Icon 1 415

Oracle Linux 9 ELSA-2022-7326: Important PKI-Core XML Parsing Issue

oracle
Calendar Grey November 3, 2022
Oracle Linux Logo Esm H88
Crucial announcement regarding Oracle Linux focusing on security vulnerabilities tied to pki-core, aimed at improving system integrity and protection.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[11.0.6-1.0.1] - Replaced upstream graphical references [Orabug: 33952704] [11.0.6-1] - Bug #2107335 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE [rhel-9.0.0.z]

SRPMs

https://oss.oracle.com:443/ol9/SRPMS-updates/pki-core-11.0.6-2.0.1.el9_0.src.rpm

x86_64

pki-acme-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-java-11.0.6-2.0.1.el9_0.noarch.rpm pki-ca-11.0.6-2.0.1.el9_0.noarch.rpm pki-kra-11.0.6-2.0.1.el9_0.noarch.rpm pki-server-11.0.6-2.0.1.el9_0.noarch.rpm pki-symkey-11.0.6-2.0.1.el9_0.x86_64.rpm pki-tools-11.0.6-2.0.1.el9_0.x86_64.rpm python3-pki-11.0.6-2.0.1.el9_0.noarch.rpm

aarch64

pki-acme-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-java-11.0.6-2.0.1.el9_0.noarch.rpm pki-ca-11.0.6-2.0.1.el9_0.noarch.rpm pki-kra-11.0.6-2.0.1.el9_0.noarch.rpm pki-server-11.0.6-2.0.1.el9_0.noarch.rpm pki-symkey-11.0.6-2.0.1.el9_0.aarch64.rpm pki-tools-11.0.6-2.0.1.el9_0.aarch64.rpm python3-pki-11.0.6-2.0.1.el9_0.noarch.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2022-2414

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.