-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

====================================================================                   Red Hat Security Advisory

Synopsis:          Critical: Satellite 6.11.5 Async Security Update
Advisory ID:       RHSA-2023:1151-01
Product:           Red Hat Satellite 6
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1151
Issue date:        2023-03-07
CVE Names:         CVE-2022-32224 
====================================================================
1. Summary:

Updated Satellite 6.11 packages that fixes critical security bugs and
several
regular bugs are now available for Red Hat Satellite.

2. Relevant releases/architectures:

Red Hat Satellite 6.11 for RHEL 7 - noarch
Red Hat Satellite 6.11 for RHEL 8 - noarch

3. Description:

Red Hat Satellite is a system management solution that allows organizations
to configure and maintain their systems without the necessity to provide
public Internet access to their servers or other client systems. It
performs provisioning and configuration management of predefined standard
operating environments.

Security fix(es):

tfm-rubygem-activerecord: activerecord: Possible RCE escalation bug with
Serialized Columns in Active Record (CVE-2022-32224)

This update fixes the following bugs:

2153877	- The "Documentation" button on Satellite 6.11 for "Provisioning
Templates" page is pointing to 404 Page Not Found link
2161929	- Locale change caused by RHEL upgrade results in database index
corruption "get() returned more than one Modulemd -- it returned 2!"
2166747	- unable to install satellite 6.11 on rhel8.8 - ansible-core
version is too new
2166748	- Entitlement certificate is missing content section for a custom
product
2166749	- Sync container images of existing docker type repositories fail
with 404 - Not found
2166750	- Another deadlock issue when syncing repos with high concurrency
2166756	- Inspecting an image with skopeo no longer works on Capsules
2166757	- Content view filter included errata not in the filter date range
2166759	- Content view filter will include module streams of other
repos/arches if the errata contain rpms in different repos/arches.
2166760	- Even in 6.11.1, sync summary email notification shows the
incorrect summary for newly added errata.
2166761	- Content view publish fails when the content view and repository
both have a large name with : Error message: the server returns an error
HTTP status code: 500
2166762	- Insights recommendation sync failing in Satelliite
2170874	- Satellite-clone not working if ansible-core 2.13 is installed

Users of Red Hat Satellite are advised to upgrade to these updated
packages, which fix these bugs.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2108997 - CVE-2022-32224 activerecord: Possible RCE escalation bug with Serialized Columns in Active Record
2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link
2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!"
2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new
2166748 - Entitlement certificate is missing content section for a custom product
2166749 - Sync container images of existing docker type repositories fail with 404 - Not found
2166750 - Another deadlock issue when syncing repos with high concurrency
2166756 - Inspecting an image with skopeo no longer works on Capsules
2166757 - Content view filter included errata not in the filter date range
2166759 - Content view filter will include module streams of other repos/arches if the errata contain rpms in different repos/arches.
2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata.
2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500
2166762 - Insights recommendation sync failing in Satelliite
2170874 - Satellite-clone not working if ansible-core 2.13 is installed

6. Package List:

Red Hat Satellite 6.11 for RHEL 7:

Source:
candlepin-4.1.19-1.el7sat.src.rpm
foreman-3.1.1.26-1.el7sat.src.rpm
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm
satellite-6.11.5-1.el7sat.src.rpm
tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm
tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm
tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm
tfm-rubygem-actioncable-6.0.6-2.el7sat.src.rpm
tfm-rubygem-actionmailbox-6.0.6-2.el7sat.src.rpm
tfm-rubygem-actionmailer-6.0.6-2.el7sat.src.rpm
tfm-rubygem-actionpack-6.0.6-2.el7sat.src.rpm
tfm-rubygem-actiontext-6.0.6-2.el7sat.src.rpm
tfm-rubygem-actionview-6.0.6-2.el7sat.src.rpm
tfm-rubygem-activejob-6.0.6-2.el7sat.src.rpm
tfm-rubygem-activemodel-6.0.6-2.el7sat.src.rpm
tfm-rubygem-activerecord-6.0.6-2.el7sat.src.rpm
tfm-rubygem-activestorage-6.0.6-2.el7sat.src.rpm
tfm-rubygem-activesupport-6.0.6-1.el7sat.src.rpm
tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.src.rpm
tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.src.rpm
tfm-rubygem-katello-4.3.0.52-1.el7sat.src.rpm
tfm-rubygem-rails-6.0.6-2.el7sat.src.rpm
tfm-rubygem-railties-6.0.6-2.el7sat.src.rpm
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm

noarch:
candlepin-4.1.19-1.el7sat.noarch.rpm
candlepin-selinux-4.1.19-1.el7sat.noarch.rpm
foreman-3.1.1.26-1.el7sat.noarch.rpm
foreman-cli-3.1.1.26-1.el7sat.noarch.rpm
foreman-debug-3.1.1.26-1.el7sat.noarch.rpm
foreman-dynflow-sidekiq-3.1.1.26-1.el7sat.noarch.rpm
foreman-ec2-3.1.1.26-1.el7sat.noarch.rpm
foreman-gce-3.1.1.26-1.el7sat.noarch.rpm
foreman-journald-3.1.1.26-1.el7sat.noarch.rpm
foreman-libvirt-3.1.1.26-1.el7sat.noarch.rpm
foreman-openstack-3.1.1.26-1.el7sat.noarch.rpm
foreman-ovirt-3.1.1.26-1.el7sat.noarch.rpm
foreman-postgresql-3.1.1.26-1.el7sat.noarch.rpm
foreman-service-3.1.1.26-1.el7sat.noarch.rpm
foreman-telemetry-3.1.1.26-1.el7sat.noarch.rpm
foreman-vmware-3.1.1.26-1.el7sat.noarch.rpm
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm
satellite-6.11.5-1.el7sat.noarch.rpm
satellite-cli-6.11.5-1.el7sat.noarch.rpm
satellite-common-6.11.5-1.el7sat.noarch.rpm
tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm
tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm
tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm
tfm-rubygem-actioncable-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-actionmailbox-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-actionmailer-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-actionpack-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-actiontext-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-actionview-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-activejob-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-activemodel-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-activerecord-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-activestorage-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-activesupport-6.0.6-1.el7sat.noarch.rpm
tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.noarch.rpm
tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.noarch.rpm
tfm-rubygem-katello-4.3.0.52-1.el7sat.noarch.rpm
tfm-rubygem-rails-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-railties-6.0.6-2.el7sat.noarch.rpm
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:
foreman-3.1.1.26-1.el7sat.src.rpm
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm
satellite-6.11.5-1.el7sat.src.rpm
tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm
tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm
tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm

noarch:
foreman-debug-3.1.1.26-1.el7sat.noarch.rpm
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm
satellite-capsule-6.11.5-1.el7sat.noarch.rpm
satellite-common-6.11.5-1.el7sat.noarch.rpm
tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm
tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm
tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm
satellite-clone-3.1.1-2.el7sat.src.rpm

noarch:
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm
satellite-clone-3.1.1-2.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:
foreman-3.1.1.26-1.el7sat.src.rpm
satellite-6.11.5-1.el7sat.src.rpm

noarch:
foreman-cli-3.1.1.26-1.el7sat.noarch.rpm
satellite-cli-6.11.5-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:
candlepin-4.1.19-1.el8sat.src.rpm
foreman-3.1.1.26-1.el8sat.src.rpm
python-naya-1.1.1-1.1.el8pc.src.rpm
python-pulp-container-2.9.9-1.el8pc.src.rpm
python-pulpcore-3.16.15-1.el8pc.src.rpm
rubygem-actioncable-6.0.6-2.el8sat.src.rpm
rubygem-actionmailbox-6.0.6-2.el8sat.src.rpm
rubygem-actionmailer-6.0.6-2.el8sat.src.rpm
rubygem-actionpack-6.0.6-2.el8sat.src.rpm
rubygem-actiontext-6.0.6-2.el8sat.src.rpm
rubygem-actionview-6.0.6-2.el8sat.src.rpm
rubygem-activejob-6.0.6-2.el8sat.src.rpm
rubygem-activemodel-6.0.6-2.el8sat.src.rpm
rubygem-activerecord-6.0.6-2.el8sat.src.rpm
rubygem-activestorage-6.0.6-2.el8sat.src.rpm
rubygem-activesupport-6.0.6-1.el8sat.src.rpm
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm
rubygem-foreman_rh_cloud-5.0.44-1.el8sat.src.rpm
rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.src.rpm
rubygem-katello-4.3.0.52-1.el8sat.src.rpm
rubygem-rails-6.0.6-2.el8sat.src.rpm
rubygem-railties-6.0.6-2.el8sat.src.rpm
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm
satellite-6.11.5-1.el8sat.src.rpm

noarch:
candlepin-4.1.19-1.el8sat.noarch.rpm
candlepin-selinux-4.1.19-1.el8sat.noarch.rpm
foreman-3.1.1.26-1.el8sat.noarch.rpm
foreman-cli-3.1.1.26-1.el8sat.noarch.rpm
foreman-debug-3.1.1.26-1.el8sat.noarch.rpm
foreman-dynflow-sidekiq-3.1.1.26-1.el8sat.noarch.rpm
foreman-ec2-3.1.1.26-1.el8sat.noarch.rpm
foreman-gce-3.1.1.26-1.el8sat.noarch.rpm
foreman-journald-3.1.1.26-1.el8sat.noarch.rpm
foreman-libvirt-3.1.1.26-1.el8sat.noarch.rpm
foreman-openstack-3.1.1.26-1.el8sat.noarch.rpm
foreman-ovirt-3.1.1.26-1.el8sat.noarch.rpm
foreman-postgresql-3.1.1.26-1.el8sat.noarch.rpm
foreman-service-3.1.1.26-1.el8sat.noarch.rpm
foreman-telemetry-3.1.1.26-1.el8sat.noarch.rpm
foreman-vmware-3.1.1.26-1.el8sat.noarch.rpm
python38-naya-1.1.1-1.1.el8pc.noarch.rpm
python38-pulp-container-2.9.9-1.el8pc.noarch.rpm
python38-pulpcore-3.16.15-1.el8pc.noarch.rpm
rubygem-actioncable-6.0.6-2.el8sat.noarch.rpm
rubygem-actionmailbox-6.0.6-2.el8sat.noarch.rpm
rubygem-actionmailer-6.0.6-2.el8sat.noarch.rpm
rubygem-actionpack-6.0.6-2.el8sat.noarch.rpm
rubygem-actiontext-6.0.6-2.el8sat.noarch.rpm
rubygem-actionview-6.0.6-2.el8sat.noarch.rpm
rubygem-activejob-6.0.6-2.el8sat.noarch.rpm
rubygem-activemodel-6.0.6-2.el8sat.noarch.rpm
rubygem-activerecord-6.0.6-2.el8sat.noarch.rpm
rubygem-activestorage-6.0.6-2.el8sat.noarch.rpm
rubygem-activesupport-6.0.6-1.el8sat.noarch.rpm
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm
rubygem-foreman_rh_cloud-5.0.44-1.el8sat.noarch.rpm
rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.noarch.rpm
rubygem-katello-4.3.0.52-1.el8sat.noarch.rpm
rubygem-rails-6.0.6-2.el8sat.noarch.rpm
rubygem-railties-6.0.6-2.el8sat.noarch.rpm
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm
satellite-6.11.5-1.el8sat.noarch.rpm
satellite-cli-6.11.5-1.el8sat.noarch.rpm
satellite-common-6.11.5-1.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:
foreman-3.1.1.26-1.el8sat.src.rpm
python-naya-1.1.1-1.1.el8pc.src.rpm
python-pulp-container-2.9.9-1.el8pc.src.rpm
python-pulpcore-3.16.15-1.el8pc.src.rpm
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm
satellite-6.11.5-1.el8sat.src.rpm

noarch:
foreman-debug-3.1.1.26-1.el8sat.noarch.rpm
python38-naya-1.1.1-1.1.el8pc.noarch.rpm
python38-pulp-container-2.9.9-1.el8pc.noarch.rpm
python38-pulpcore-3.16.15-1.el8pc.noarch.rpm
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm
satellite-capsule-6.11.5-1.el8sat.noarch.rpm
satellite-common-6.11.5-1.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm
satellite-clone-3.1.1-2.el8sat.src.rpm

noarch:
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm
satellite-clone-3.1.1-2.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:
foreman-3.1.1.26-1.el8sat.src.rpm
satellite-6.11.5-1.el8sat.src.rpm

noarch:
foreman-cli-3.1.1.26-1.el8sat.noarch.rpm
satellite-cli-6.11.5-1.el8sat.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-32224
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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QZVe
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://listman.redhat.com/mailman/listinfo/rhsa-announce

RedHat: RHSA-2023-1151:01 Critical: Satellite 6.11.5 Async Security Update

Updated Satellite 6.11 packages that fixes critical security bugs and several regular bugs are now available for Red Hat Satellite

Summary

Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security fix(es):
tfm-rubygem-activerecord: activerecord: Possible RCE escalation bug with Serialized Columns in Active Record (CVE-2022-32224)
This update fixes the following bugs:
2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link 2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!" 2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new 2166748 - Entitlement certificate is missing content section for a custom product 2166749 - Sync container images of existing docker type repositories fail with 404 - Not found 2166750 - Another deadlock issue when syncing repos with high concurrency 2166756 - Inspecting an image with skopeo no longer works on Capsules 2166757 - Content view filter included errata not in the filter date range 2166759 - Content view filter will include module streams of other repos/arches if the errata contain rpms in different repos/arches. 2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata. 2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500 2166762 - Insights recommendation sync failing in Satelliite 2170874 - Satellite-clone not working if ansible-core 2.13 is installed
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.



Summary


Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258

References

https://access.redhat.com/security/cve/CVE-2022-32224 https://access.redhat.com/security/updates/classification/#critical

Package List

Red Hat Satellite 6.11 for RHEL 7:
Source: candlepin-4.1.19-1.el7sat.src.rpm foreman-3.1.1.26-1.el7sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm tfm-rubygem-actioncable-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionmailbox-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionmailer-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionpack-6.0.6-2.el7sat.src.rpm tfm-rubygem-actiontext-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionview-6.0.6-2.el7sat.src.rpm tfm-rubygem-activejob-6.0.6-2.el7sat.src.rpm tfm-rubygem-activemodel-6.0.6-2.el7sat.src.rpm tfm-rubygem-activerecord-6.0.6-2.el7sat.src.rpm tfm-rubygem-activestorage-6.0.6-2.el7sat.src.rpm tfm-rubygem-activesupport-6.0.6-1.el7sat.src.rpm tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.src.rpm tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.src.rpm tfm-rubygem-katello-4.3.0.52-1.el7sat.src.rpm tfm-rubygem-rails-6.0.6-2.el7sat.src.rpm tfm-rubygem-railties-6.0.6-2.el7sat.src.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm
noarch: candlepin-4.1.19-1.el7sat.noarch.rpm candlepin-selinux-4.1.19-1.el7sat.noarch.rpm foreman-3.1.1.26-1.el7sat.noarch.rpm foreman-cli-3.1.1.26-1.el7sat.noarch.rpm foreman-debug-3.1.1.26-1.el7sat.noarch.rpm foreman-dynflow-sidekiq-3.1.1.26-1.el7sat.noarch.rpm foreman-ec2-3.1.1.26-1.el7sat.noarch.rpm foreman-gce-3.1.1.26-1.el7sat.noarch.rpm foreman-journald-3.1.1.26-1.el7sat.noarch.rpm foreman-libvirt-3.1.1.26-1.el7sat.noarch.rpm foreman-openstack-3.1.1.26-1.el7sat.noarch.rpm foreman-ovirt-3.1.1.26-1.el7sat.noarch.rpm foreman-postgresql-3.1.1.26-1.el7sat.noarch.rpm foreman-service-3.1.1.26-1.el7sat.noarch.rpm foreman-telemetry-3.1.1.26-1.el7sat.noarch.rpm foreman-vmware-3.1.1.26-1.el7sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-6.11.5-1.el7sat.noarch.rpm satellite-cli-6.11.5-1.el7sat.noarch.rpm satellite-common-6.11.5-1.el7sat.noarch.rpm tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm tfm-rubygem-actioncable-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionmailbox-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionmailer-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionpack-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actiontext-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionview-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activejob-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activemodel-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activerecord-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activestorage-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activesupport-6.0.6-1.el7sat.noarch.rpm tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.noarch.rpm tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.noarch.rpm tfm-rubygem-katello-4.3.0.52-1.el7sat.noarch.rpm tfm-rubygem-rails-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-railties-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 7:
Source: foreman-3.1.1.26-1.el7sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm
noarch: foreman-debug-3.1.1.26-1.el7sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-capsule-6.11.5-1.el7sat.noarch.rpm satellite-common-6.11.5-1.el7sat.noarch.rpm tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 7:
Source: rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-clone-3.1.1-2.el7sat.src.rpm
noarch: rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-clone-3.1.1-2.el7sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 7:
Source: foreman-3.1.1.26-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm
noarch: foreman-cli-3.1.1.26-1.el7sat.noarch.rpm satellite-cli-6.11.5-1.el7sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 8:
Source: candlepin-4.1.19-1.el8sat.src.rpm foreman-3.1.1.26-1.el8sat.src.rpm python-naya-1.1.1-1.1.el8pc.src.rpm python-pulp-container-2.9.9-1.el8pc.src.rpm python-pulpcore-3.16.15-1.el8pc.src.rpm rubygem-actioncable-6.0.6-2.el8sat.src.rpm rubygem-actionmailbox-6.0.6-2.el8sat.src.rpm rubygem-actionmailer-6.0.6-2.el8sat.src.rpm rubygem-actionpack-6.0.6-2.el8sat.src.rpm rubygem-actiontext-6.0.6-2.el8sat.src.rpm rubygem-actionview-6.0.6-2.el8sat.src.rpm rubygem-activejob-6.0.6-2.el8sat.src.rpm rubygem-activemodel-6.0.6-2.el8sat.src.rpm rubygem-activerecord-6.0.6-2.el8sat.src.rpm rubygem-activestorage-6.0.6-2.el8sat.src.rpm rubygem-activesupport-6.0.6-1.el8sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm rubygem-foreman_rh_cloud-5.0.44-1.el8sat.src.rpm rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.src.rpm rubygem-katello-4.3.0.52-1.el8sat.src.rpm rubygem-rails-6.0.6-2.el8sat.src.rpm rubygem-railties-6.0.6-2.el8sat.src.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm
noarch: candlepin-4.1.19-1.el8sat.noarch.rpm candlepin-selinux-4.1.19-1.el8sat.noarch.rpm foreman-3.1.1.26-1.el8sat.noarch.rpm foreman-cli-3.1.1.26-1.el8sat.noarch.rpm foreman-debug-3.1.1.26-1.el8sat.noarch.rpm foreman-dynflow-sidekiq-3.1.1.26-1.el8sat.noarch.rpm foreman-ec2-3.1.1.26-1.el8sat.noarch.rpm foreman-gce-3.1.1.26-1.el8sat.noarch.rpm foreman-journald-3.1.1.26-1.el8sat.noarch.rpm foreman-libvirt-3.1.1.26-1.el8sat.noarch.rpm foreman-openstack-3.1.1.26-1.el8sat.noarch.rpm foreman-ovirt-3.1.1.26-1.el8sat.noarch.rpm foreman-postgresql-3.1.1.26-1.el8sat.noarch.rpm foreman-service-3.1.1.26-1.el8sat.noarch.rpm foreman-telemetry-3.1.1.26-1.el8sat.noarch.rpm foreman-vmware-3.1.1.26-1.el8sat.noarch.rpm python38-naya-1.1.1-1.1.el8pc.noarch.rpm python38-pulp-container-2.9.9-1.el8pc.noarch.rpm python38-pulpcore-3.16.15-1.el8pc.noarch.rpm rubygem-actioncable-6.0.6-2.el8sat.noarch.rpm rubygem-actionmailbox-6.0.6-2.el8sat.noarch.rpm rubygem-actionmailer-6.0.6-2.el8sat.noarch.rpm rubygem-actionpack-6.0.6-2.el8sat.noarch.rpm rubygem-actiontext-6.0.6-2.el8sat.noarch.rpm rubygem-actionview-6.0.6-2.el8sat.noarch.rpm rubygem-activejob-6.0.6-2.el8sat.noarch.rpm rubygem-activemodel-6.0.6-2.el8sat.noarch.rpm rubygem-activerecord-6.0.6-2.el8sat.noarch.rpm rubygem-activestorage-6.0.6-2.el8sat.noarch.rpm rubygem-activesupport-6.0.6-1.el8sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm rubygem-foreman_rh_cloud-5.0.44-1.el8sat.noarch.rpm rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.noarch.rpm rubygem-katello-4.3.0.52-1.el8sat.noarch.rpm rubygem-rails-6.0.6-2.el8sat.noarch.rpm rubygem-railties-6.0.6-2.el8sat.noarch.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm satellite-6.11.5-1.el8sat.noarch.rpm satellite-cli-6.11.5-1.el8sat.noarch.rpm satellite-common-6.11.5-1.el8sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 8:
Source: foreman-3.1.1.26-1.el8sat.src.rpm python-naya-1.1.1-1.1.el8pc.src.rpm python-pulp-container-2.9.9-1.el8pc.src.rpm python-pulpcore-3.16.15-1.el8pc.src.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm
noarch: foreman-debug-3.1.1.26-1.el8sat.noarch.rpm python38-naya-1.1.1-1.1.el8pc.noarch.rpm python38-pulp-container-2.9.9-1.el8pc.noarch.rpm python38-pulpcore-3.16.15-1.el8pc.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm satellite-capsule-6.11.5-1.el8sat.noarch.rpm satellite-common-6.11.5-1.el8sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 8:
Source: rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm satellite-clone-3.1.1-2.el8sat.src.rpm
noarch: rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm satellite-clone-3.1.1-2.el8sat.noarch.rpm
Red Hat Satellite 6.11 for RHEL 8:
Source: foreman-3.1.1.26-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm
noarch: foreman-cli-3.1.1.26-1.el8sat.noarch.rpm satellite-cli-6.11.5-1.el8sat.noarch.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


Severity
Advisory ID: RHSA-2023:1151-01
Product: Red Hat Satellite 6
Advisory URL: https://access.redhat.com/errata/RHSA-2023:1151
Issued Date: : 2023-03-07
CVE Names: CVE-2022-32224

Topic

Updated Satellite 6.11 packages that fixes critical security bugs andseveralregular bugs are now available for Red Hat Satellite.


Topic


 

Relevant Releases Architectures

Red Hat Satellite 6.11 for RHEL 7 - noarch

Red Hat Satellite 6.11 for RHEL 8 - noarch


Bugs Fixed

2108997 - CVE-2022-32224 activerecord: Possible RCE escalation bug with Serialized Columns in Active Record

2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link

2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!"

2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new

2166748 - Entitlement certificate is missing content section for a custom product

2166749 - Sync container images of existing docker type repositories fail with 404 - Not found

2166750 - Another deadlock issue when syncing repos with high concurrency

2166756 - Inspecting an image with skopeo no longer works on Capsules

2166757 - Content view filter included errata not in the filter date range

2166759 - Content view filter will include module streams of other repos/arches if the errata contain rpms in different repos/arches.

2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata.

2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500

2166762 - Insights recommendation sync failing in Satelliite

2170874 - Satellite-clone not working if ansible-core 2.13 is installed


Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved