Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

RedHat RHSA-2023-3374-01 Moderate Migration Toolkit Denial of Service

red hat
Calendar Grey June 3, 2023
Dist Redhat Esm H88
Recent security patch for Migration Toolkit for Runtimes addresses multiple concerns, notably denial-of-service vulnerabilities. Discover further details.
Migration Toolkit for Runtimes 1.1.0 release Red Hat Product Security has rated this update as having a security impact of Moderate

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Summary

Migration Toolkit for Runtimes 1.1.0 ZIP artifacts
Security Fix(es):
* loader-utils: Regular expression denial of service (CVE-2022-37603)
* codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS (CVE-2022-41881)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Topics%20covered

Topics Covered

security advisory security update Red Hat Denial of Service Moderate runtime security Migration Toolkit

References

https://access.redhat.com/security/cve/CVE-2022-37603 https://access.redhat.com/security/cve/CVE-2022-41881 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=migration.toolkit.runtimes&downloadType=distributions

Package List


Advisory ID: RHSA-2023:3374-01
Product: Migration Toolkit for Runtimes
Advisory URL: https://access.redhat.com/errata/RHSA-2023:3374
Issue date: 2023-05-31

Topic

Migration Toolkit for Runtimes 1.1.0 releaseRed Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory security update Red Hat Denial of Service Moderate runtime security Migration Toolkit

Relevant Releases Architectures

Bugs Fixed

2140597 - CVE-2022-37603 loader-utils:Regular expression denial of service

2153379 - CVE-2022-41881 codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here