Oracle Linux 9 ELSA-2022-7326: Important PKI-Core XML Parsing Issue
oracle
November 3, 2022
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
Summary
[11.0.6-1.0.1] - Replaced upstream graphical references [Orabug: 33952704] [11.0.6-1] - Bug #2107335 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE [rhel-9.0.0.z]
SRPMs
Warning: Undefined array key "references" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/70384_8ef039c68d1d756f705e7dee9ba3d15b on line 11
https://oss.oracle.com:443/ol9/SRPMS-updates/pki-core-11.0.6-2.0.1.el9_0.src.rpm
x86_64
pki-acme-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-java-11.0.6-2.0.1.el9_0.noarch.rpm pki-ca-11.0.6-2.0.1.el9_0.noarch.rpm pki-kra-11.0.6-2.0.1.el9_0.noarch.rpm pki-server-11.0.6-2.0.1.el9_0.noarch.rpm pki-symkey-11.0.6-2.0.1.el9_0.x86_64.rpm pki-tools-11.0.6-2.0.1.el9_0.x86_64.rpm python3-pki-11.0.6-2.0.1.el9_0.noarch.rpm
aarch64
pki-acme-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-11.0.6-2.0.1.el9_0.noarch.rpm pki-base-java-11.0.6-2.0.1.el9_0.noarch.rpm pki-ca-11.0.6-2.0.1.el9_0.noarch.rpm pki-kra-11.0.6-2.0.1.el9_0.noarch.rpm pki-server-11.0.6-2.0.1.el9_0.noarch.rpm pki-symkey-11.0.6-2.0.1.el9_0.aarch64.rpm pki-tools-11.0.6-2.0.1.el9_0.aarch64.rpm python3-pki-11.0.6-2.0.1.el9_0.noarch.rpm
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2022-2414
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!