Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorycriticalRed Hat Satellite

Red Hat Satellite 6.11.5 Critical: RHSA-2023-1151-01 RCE Bug Fix

Updated Satellite 6.11 packages that fixes critical security bugs and several regular bugs are now available for Red Hat Satellite. 2. Relevant releases/architectures:. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Critical: Satellite 6.11.5 Async Security Update Advisory ID: RHSA-2023:1151-01 Product: Red Hat Satellite 6 Advisory URL: https://access.redhat.com/errata/RHSA-2023:1151 Issue date: 2023-03-07 CVE Names: CVE-2022-32224 ==================================================================== 1. Summary: Updated Satellite 6.11 packages that fixes critical security bugs and several regular bugs are now available for Red Hat Satellite. 2. Relevant releases/architectures: Red Hat Satellite 6.11 for RHEL 7 - noarch Red Hat Satellite 6.11 for RHEL 8 - noarch 3. Description: Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments. Security fix(es): tfm-rubygem-activerecord: activerecord: Possible RCE escalation bug with Serialized Columns in Active Record (CVE-2022-32224) This update fixes the following bugs: 2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link 2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!" 2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new 2166748 - Entitlement certificate is missing content section for a custom product 2166749 - Sync container images of existing docker type repositories fail with 404 - Not found 2166750 - Another deadlock issue when syncingrepos with high concurrency 2166756 - Inspecting an image with skopeo no longer works on Capsules 2166757 - Content view filter included errata not in the filter date range 2166759 - Content view filter will include module streams of other repos/arches if the errata contain rpms in different repos/arches. 2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata. 2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500 2166762 - Insights recommendation sync failing in Satelliite 2170874 - Satellite-clone not working if ansible-core 2.13 is installed Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2108997 - CVE-2022-32224 activerecord: Possible RCE escalation bug with Serialized Columns in Active Record 2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link 2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!" 2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new 2166748 - Entitlement certificate is missing content section for a custom product 2166749 - Sync container images of existing docker type repositories fail with 404 - Not found 2166750 - Another deadlock issue when syncing repos with high concurrency 2166756 - Inspecting an image with skopeo no longer works on Capsules 2166757 - Content view filter included errata not in the filter date range 2166759 - Content view filter will include module streams of other repos/arches if the erratacontain rpms in different repos/arches. 2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata. 2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500 2166762 - Insights recommendation sync failing in Satelliite 2170874 - Satellite-clone not working if ansible-core 2.13 is installed 6. Package List: Red Hat Satellite 6.11 for RHEL7: Source: candlepin-4.1.19-1.el7sat.src.rpm foreman-3.1.1.26-1.el7sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm tfm-rubygem-actioncable-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionmailbox-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionmailer-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionpack-6.0.6-2.el7sat.src.rpm tfm-rubygem-actiontext-6.0.6-2.el7sat.src.rpm tfm-rubygem-actionview-6.0.6-2.el7sat.src.rpm tfm-rubygem-activejob-6.0.6-2.el7sat.src.rpm tfm-rubygem-activemodel-6.0.6-2.el7sat.src.rpm tfm-rubygem-activerecord-6.0.6-2.el7sat.src.rpm tfm-rubygem-activestorage-6.0.6-2.el7sat.src.rpm tfm-rubygem-activesupport-6.0.6-1.el7sat.src.rpm tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.src.rpm tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.src.rpm tfm-rubygem-katello-4.3.0.52-1.el7sat.src.rpm tfm-rubygem-rails-6.0.6-2.el7sat.src.rpm tfm-rubygem-railties-6.0.6-2.el7sat.src.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm noarch: candlepin-4.1.19-1.el7sat.noarch.rpm candlepin-selinux-4.1.19-1.el7sat.noarch.rpm foreman-3.1.1.26-1.el7sat.noarch.rpm foreman-cli-3.1.1.26-1.el7sat.noarch.rpm foreman-debug-3.1.1.26-1.el7sat.noarch.rpm foreman-dynflow-sidekiq-3.1.1.26-1.el7sat.noarch.rpm foreman-ec2-3.1.1.26-1.el7sat.noarch.rpm foreman-gce-3.1.1.26-1.el7sat.noarch.rpm foreman-journald-3.1.1.26-1.el7sat.noarch.rpm foreman-libvirt-3.1.1.26-1.el7sat.noarch.rpm foreman-openstack-3.1.1.26-1.el7sat.noarch.rpm foreman-ovirt-3.1.1.26-1.el7sat.noarch.rpm foreman-postgresql-3.1.1.26-1.el7sat.noarch.rpm foreman-service-3.1.1.26-1.el7sat.noarch.rpm foreman-telemetry-3.1.1.26-1.el7sat.noarch.rpm foreman-vmware-3.1.1.26-1.el7sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-6.11.5-1.el7sat.noarch.rpm satellite-cli-6.11.5-1.el7sat.noarch.rpm satellite-common-6.11.5-1.el7sat.noarch.rpm tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm tfm-rubygem-actioncable-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionmailbox-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionmailer-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionpack-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actiontext-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-actionview-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activejob-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activemodel-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activerecord-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activestorage-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-activesupport-6.0.6-1.el7sat.noarch.rpm tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.noarch.rpm tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.noarch.rpm tfm-rubygem-katello-4.3.0.52-1.el7sat.noarch.rpm tfm-rubygem-rails-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-railties-6.0.6-2.el7sat.noarch.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm Red Hat Satellite 6.11 for RHEL 7: Source: foreman-3.1.1.26-1.el7sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm noarch: foreman-debug-3.1.1.26-1.el7sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-capsule-6.11.5-1.el7sat.noarch.rpm satellite-common-6.11.5-1.el7sat.noarch.rpm tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm Red Hat Satellite 6.11 for RHEL7: Source: rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm satellite-clone-3.1.1-2.el7sat.src.rpm noarch: rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm satellite-clone-3.1.1-2.el7sat.noarch.rpm Red Hat Satellite 6.11 for RHEL 7: Source: foreman-3.1.1.26-1.el7sat.src.rpm satellite-6.11.5-1.el7sat.src.rpm noarch: foreman-cli-3.1.1.26-1.el7sat.noarch.rpm satellite-cli-6.11.5-1.el7sat.noarch.rpm Red Hat Satellite 6.11 for RHEL8: Source: candlepin-4.1.19-1.el8sat.src.rpm foreman-3.1.1.26-1.el8sat.src.rpm python-naya-1.1.1-1.1.el8pc.src.rpm python-pulp-container-2.9.9-1.el8pc.src.rpm python-pulpcore-3.16.15-1.el8pc.src.rpm rubygem-actioncable-6.0.6-2.el8sat.src.rpm rubygem-actionmailbox-6.0.6-2.el8sat.src.rpm rubygem-actionmailer-6.0.6-2.el8sat.src.rpm rubygem-actionpack-6.0.6-2.el8sat.src.rpm rubygem-actiontext-6.0.6-2.el8sat.src.rpm rubygem-actionview-6.0.6-2.el8sat.src.rpm rubygem-activejob-6.0.6-2.el8sat.src.rpm rubygem-activemodel-6.0.6-2.el8sat.src.rpm rubygem-activerecord-6.0.6-2.el8sat.src.rpm rubygem-activestorage-6.0.6-2.el8sat.src.rpm rubygem-activesupport-6.0.6-1.el8sat.src.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm rubygem-foreman_rh_cloud-5.0.44-1.el8sat.src.rpm rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.src.rpm rubygem-katello-4.3.0.52-1.el8sat.src.rpm rubygem-rails-6.0.6-2.el8sat.src.rpm rubygem-railties-6.0.6-2.el8sat.src.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm noarch: candlepin-4.1.19-1.el8sat.noarch.rpm candlepin-selinux-4.1.19-1.el8sat.noarch.rpm foreman-3.1.1.26-1.el8sat.noarch.rpm foreman-cli-3.1.1.26-1.el8sat.noarch.rpm foreman-debug-3.1.1.26-1.el8sat.noarch.rpm foreman-dynflow-sidekiq-3.1.1.26-1.el8sat.noarch.rpm foreman-ec2-3.1.1.26-1.el8sat.noarch.rpm foreman-gce-3.1.1.26-1.el8sat.noarch.rpm foreman-journald-3.1.1.26-1.el8sat.noarch.rpm foreman-libvirt-3.1.1.26-1.el8sat.noarch.rpm foreman-openstack-3.1.1.26-1.el8sat.noarch.rpm foreman-ovirt-3.1.1.26-1.el8sat.noarch.rpm foreman-postgresql-3.1.1.26-1.el8sat.noarch.rpm foreman-service-3.1.1.26-1.el8sat.noarch.rpm foreman-telemetry-3.1.1.26-1.el8sat.noarch.rpm foreman-vmware-3.1.1.26-1.el8sat.noarch.rpm python38-naya-1.1.1-1.1.el8pc.noarch.rpm python38-pulp-container-2.9.9-1.el8pc.noarch.rpm python38-pulpcore-3.16.15-1.el8pc.noarch.rpm rubygem-actioncable-6.0.6-2.el8sat.noarch.rpm rubygem-actionmailbox-6.0.6-2.el8sat.noarch.rpm rubygem-actionmailer-6.0.6-2.el8sat.noarch.rpm rubygem-actionpack-6.0.6-2.el8sat.noarch.rpm rubygem-actiontext-6.0.6-2.el8sat.noarch.rpm rubygem-actionview-6.0.6-2.el8sat.noarch.rpm rubygem-activejob-6.0.6-2.el8sat.noarch.rpm rubygem-activemodel-6.0.6-2.el8sat.noarch.rpm rubygem-activerecord-6.0.6-2.el8sat.noarch.rpm rubygem-activestorage-6.0.6-2.el8sat.noarch.rpm rubygem-activesupport-6.0.6-1.el8sat.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm rubygem-foreman_rh_cloud-5.0.44-1.el8sat.noarch.rpm rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.noarch.rpm rubygem-katello-4.3.0.52-1.el8sat.noarch.rpm rubygem-rails-6.0.6-2.el8sat.noarch.rpm rubygem-railties-6.0.6-2.el8sat.noarch.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm satellite-6.11.5-1.el8sat.noarch.rpm satellite-cli-6.11.5-1.el8sat.noarch.rpm satellite-common-6.11.5-1.el8sat.noarch.rpm Red Hat Satellite 6.11 for RHEL 8: Source: foreman-3.1.1.26-1.el8sat.src.rpm python-naya-1.1.1-1.1.el8pc.src.rpm python-pulp-container-2.9.9-1.el8pc.src.rpm python-pulpcore-3.16.15-1.el8pc.src.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm noarch: foreman-debug-3.1.1.26-1.el8sat.noarch.rpm python38-naya-1.1.1-1.1.el8pc.noarch.rpm python38-pulp-container-2.9.9-1.el8pc.noarch.rpm python38-pulpcore-3.16.15-1.el8pc.noarch.rpm rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm satellite-capsule-6.11.5-1.el8sat.noarch.rpm satellite-common-6.11.5-1.el8sat.noarch.rpm Red Hat Satellite 6.11 for RHEL 8: Source: rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm satellite-clone-3.1.1-2.el8sat.src.rpm noarch: rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm satellite-clone-3.1.1-2.el8sat.noarch.rpm Red Hat Satellite 6.11 for RHEL 8: Source: foreman-3.1.1.26-1.el8sat.src.rpm satellite-6.11.5-1.el8sat.src.rpm noarch: foreman-cli-3.1.1.26-1.el8sat.noarch.rpm satellite-cli-6.11.5-1.el8sat.noarch.rpm These packages are GPG signed by RedHat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-32224 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBZAiXO9zjgjWX9erEAQgLAQ/+Kn2RsaVk+79nqBuqFtskH6Rxw0hwBANE nwDxFYLrtBwY8lgFiuDZDFHXuxjg8/9iQntr+s/P5FLC/4t2Gt+VE+RT4IZ4gjFN O+IMkUCINWW0mfS+IHDvoHe8KOkRFWqGGhcleywOitYnnEGdpFthiCFGfT4oiksE b0Arv/AiZp6WWuZtXPXOq86HDaepWfx4wvJhW43/6fF+YEz+nXkmtnenxEDaYy53 JGJL3Okuy06FaacvBzhU3Spg/F/lQvN3GVUHQTz/Umh/T7p9YDSa972TnDyWAoMT 591v5DemmWdpxOd44OXr3GxFpUgf2bKsSYMoqssUKgIP07U+Hp2PcpEO79LrR9n0 wXlD5Iea93gSfMHBFylWtcDGTeC2bKNp0AX8MeJ9rVixeUZ4ORFZ6AE/Og3scpNq 4gW+oQMsuMqJfIkc5Xsn5gHG9rxNV4kHam/E+yfgVa7WHklQHkUSKWoK98sIgW4K OZwOJ29GmpoDEZ+PRX0ksJY1WSX7BaiVtv+VVLYMBcypSEdZrEB3qrz5qIAnn1CO naXMaOlDAbBdRI7WcCnf0enpaBjhUpfVh98l853x42XD0jntmfYL91u4Klrisxnv 771mt74xJeenPTBDCnisoQ9lQhPH5fS4EgsfeMHuvx5QN+VQNSXQyYKzFrGNCUPm wNSho9tC/o8=QZVe -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Latest Satellite 6.11 addresses urgent security vulnerabilities; mandatory upgrade necessary for safeguarding and reliability. Learn more here.. Red Hat Satellite, Critical Security Update, Async Security Fix, RHEL Package Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 08, 2023 Critical Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatbug fix

Red Hat: RHSA-2022:1478 Important: Puppet Async Fix in Satellite 6.9.9

Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite. 2. Relevant releases/architectures: Red Hat Satellite 6.9 - noarch, x86_64. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: Satellite 6.9.9 Async Bug Fix Update Advisory ID: RHSA-2022:1478-01 Product: Red Hat Satellite 6 Advisory URL: https://access.redhat.com/errata/RHSA-2022:1478 Issue date: 2022-04-20 CVE Names: CVE-2021-27023 ==================================================================== 1. Summary: Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite. 2. Relevant releases/architectures: Red Hat Satellite 6.9 - noarch, x86_64 Red Hat Satellite Capsule 6.9 - noarch, x86_64 3. Description: Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments. Security Fix(es): 2023859 CVE-2021-27023 - puppet: unsafe HTTP redirect This update fixes the following bugs: 1929347 pulp3: Ensure migration plugin runs in FIPS mode and respects the ALLOWED_CONTENT_CHECKSUMS configuration 1992267 Incorrect puppet module count when a content view is added to the composite content view. 1998796 Pulp 3 migration failed with missing repositories. 2005392 If the migration plan is empty, all repositories get migrated. 2019563 Missing fields on MD5 repos in repomd.xml on a FIPS enabled satellite 2025804 Option "Verify Checksum" not listed under Advanced Sync Options 2027086 The katello:pulp3_migration" reports wrong failed component names if one or all pulp3 related services has failed to start during content-migration process 2027127 Pulp 2 to 3 migration failson certain repos during the upgrade with FileNotFoundError: [Errno 2] No such file or directory: in prepare_metadata_files 2027250 CVE-2021-27023 puppetserver: puppet: unsafe HTTP redirect [rhn_satellite_6.9] 2027253 CVE-2021-27023 puppet-agent: puppet: unsafe HTTP redirect [rhn_satellite_6.9] 2032843 pulp3: 2to3 migration fails with Katello::Errors::Pulp3Error: the cursor;_django_curs_XXXX_XXXX does not exist 2033951 [Pulp3] The pulp2-3 migration fails to migrate Alma Linux BaseOS repo with error Katello::Errors::Pulp3Error: No declared artifact with relative path images boot.iso 2038739 Extremely difficult to tell what repositories to Verify Checksum on when there are hundreds or thousands of packages listed as corrupted 2038742 pulp3 content migration failed with Katello::Errors::Pulp3Error: local variable item referenced before assignment 2039059 Pulp3: Migration fails with error Katello::Errors::Pulp3Error: Empty variable tag 2039112 pulp3 migration stats drastically underestimate migration times 2043742 foreman-rake katello:approve_corrupted_migration_content fails with services 2043933 The pulp2-pulp3 migration should fail if not all the errata content has been migrated while upgrading to Satellite 6.10 2051970 pulp2to3 migration fails to migrate docker_blob content due to aggregate mongo 100M limit 2061715 Publication creation (during migration to pulp3 as well) can fail if pulp is NFS share Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For detailed instructions how to apply this update, refer to: https://docs.redhat.com/en/documentation/red_hat_satellite/6.9/html/upgrading_and_updating_red_hat_satellite/updating_satellite_server_capsule_server_and_content_hosts 5. Bugs fixed (https://bugzilla.redhat.com/): 1929347 - pulp3: Ensure migration plugin runs in FIPS mode and respects the ALLOWED_CONTENT_CHECKSUMSconfiguration 1992267 - Incorrect puppet module count when a content view is added to the composite content view. 1998796 - Pulp 3 migration failed with missing repositories. 2005392 - If the migration plan is empty, all repositories get migrated. 2019563 - Missing fields on MD5 repos in repomd.xml on a FIPS enabled satellite 2023859 - CVE-2021-27023 puppet: unsafe HTTP redirect 2025804 - Option "Verify Checksum" not listed under Advanced Sync Options 2027086 - The "katello:pulp3_migration" reports wrong failed component names if one or all pulp3 related services has failed to start during content-migration process 2027127 - Pulp 2 to 3 migration fails on certain repos during the upgrade with FileNotFoundError: [Errno 2] No such file or directory: ' in prepare_metadata_files 2032843 - pulp3: 2to3 migration fails with Katello::Errors::Pulp3Error: the cursor "_django_curs_XXXX_XXXX" does not exist 2033951 - [Pulp3] The pulp2-3 migration fails to migrate Alma Linux BaseOS repo with error Katello::Errors::Pulp3Error: No declared artifact with relative path "images/boot.iso" 2038739 - Extremely difficult to tell what repositories to Verify Checksum on when there are hundreds or thousands of packages listed as corrupted 2038742 - pulp3 content migration failed with "Katello::Errors::Pulp3Error: local variable 'item' referenced before assignment" 2039059 - Pulp3: Migration fails with error "Katello::Errors::Pulp3Error: Empty variable tag" 2039112 - pulp3 migration stats drastically underestimate migration times 2043742 - foreman-rake katello:approve_corrupted_migration_content fails with services 2043933 - The pulp2-pulp3 migration should fail if not all the errata content has been migrated while upgrading to Satellite 6.10 2051970 - pulp2to3 migration fails to migrate docker_blob content due to aggregate mongo 100M limit 2061715 - Publication creation (during migration to pulp3 as well) can fail if /var/lib/pulp is NFS share 6. Package List: Red Hat Satellite Capsule6.9: Source: foreman-installer-2.3.1.22-1.el7sat.src.rpm pulp-rpm-2.21.5.2-3.el7sat.src.rpm puppet-agent-6.26.0-1.el7sat.src.rpm puppetserver-6.18.0-1.el7sat.src.rpm satellite-6.9.9-1.el7sat.src.rpm noarch: foreman-installer-2.3.1.22-1.el7sat.noarch.rpm foreman-installer-katello-2.3.1.22-1.el7sat.noarch.rpm pulp-rpm-admin-extensions-2.21.5.2-3.el7sat.noarch.rpm pulp-rpm-plugins-2.21.5.2-3.el7sat.noarch.rpm puppetserver-6.18.0-1.el7sat.noarch.rpm python-pulp-integrity-2.21.5.2-3.el7sat.noarch.rpm python-pulp-rpm-common-2.21.5.2-3.el7sat.noarch.rpm satellite-capsule-6.9.9-1.el7sat.noarch.rpm satellite-common-6.9.9-1.el7sat.noarch.rpm satellite-debug-tools-6.9.9-1.el7sat.noarch.rpm x86_64: puppet-agent-6.26.0-1.el7sat.x86_64.rpm Red Hat Satellite 6.9: Source: foreman-installer-2.3.1.22-1.el7sat.src.rpm pulp-rpm-2.21.5.2-3.el7sat.src.rpm puppet-agent-6.26.0-1.el7sat.src.rpm puppetserver-6.18.0-1.el7sat.src.rpm python-pulp-rpm-3.11.4-1.el7pc.src.rpm python-pulp_2to3_migration-0.11.10-1.el7pc.src.rpm satellite-6.9.9-1.el7sat.src.rpm tfm-rubygem-katello-3.18.1.53-1.el7sat.src.rpm noarch: foreman-installer-2.3.1.22-1.el7sat.noarch.rpm foreman-installer-katello-2.3.1.22-1.el7sat.noarch.rpm pulp-rpm-admin-extensions-2.21.5.2-3.el7sat.noarch.rpm pulp-rpm-plugins-2.21.5.2-3.el7sat.noarch.rpm puppetserver-6.18.0-1.el7sat.noarch.rpm python-pulp-integrity-2.21.5.2-3.el7sat.noarch.rpm python-pulp-rpm-common-2.21.5.2-3.el7sat.noarch.rpm python3-pulp-2to3-migration-0.11.10-1.el7pc.noarch.rpm python3-pulp-rpm-3.11.4-1.el7pc.noarch.rpm satellite-6.9.9-1.el7sat.noarch.rpm satellite-cli-6.9.9-1.el7sat.noarch.rpm satellite-common-6.9.9-1.el7sat.noarch.rpm satellite-debug-tools-6.9.9-1.el7sat.noarch.rpm tfm-rubygem-katello-3.18.1.53-1.el7sat.noarch.rpm x86_64: puppet-agent-6.26.0-1.el7sat.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2021-27023 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYmCHQdzjgjWX9erEAQg06g//WMKg6Me2RkXg3/ZAjVl3eTZe1vniYmJY j/Wn2WdYOi60eYomjRYNNB3EPhOk6GmL7ZBEBPxO1wsUyvX5KFQHtY1/BTtRBy8V RqODwC3dZMKuVd8hK1LR8TZjuZ0VHl/1ZOKk9XFlZZAkhjuWE6SOzwFuEVeyR0Rz cYAmfJKn2XhMEaJOhwCtav+vJfFl0STCUoZegV8X/Um8s9Ts4ylzr9aYEfmo/Oo+ OPTCsYXROxV4WkMd7yYKCkjGpZe/gT/Wq2ySNxwnLzdIxhOHQJBxQjsYaUXcYlXg Rq9OcYVCyKeu78LYQ1tqw2kYYV9n5hIL+rWYNnbtI1WsswBm9pNSijdu/s+gCcl2 0HLE7raMwqrtXWKN2XkYWC2Kybp4dkQt+spVGmCKxeSjC/KeIt80FEgOxWwuJskR d1mY7Mu9KzrTHP5VNBxlI2l3UGtHTL+5Yr9bSZ1U2pji7LdmTX+rETqpKRHRPY4c G7UKAnE07lYwZTEPsD0G4/mzcrisdazgsy2jnVRrx5cnxcOFlHl8nrIBww2+FJ0o RHQ/PkeqM4WrXOGXghVKEukaOdL7aOsfljTVkmlRue9DxrfDRPS1C+mhIvie7EEU j3U4n1Kp9v0WZjLL+WD/vBGHRst87yJpwkkOOfHa8lAEpD82PfoqRIwDZ5S/PGmw 3mZCA+ye4Bw=owZH -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . Recent Satellite 6.9 updates address vital vulnerabilities and enhance security measures for Red Hat clients. Prompt installation recommended.. Red Hat Satellite, system management, security patches, async updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 20, 2022 Important Red Hat
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatbug fix

Red Hat OCS 3.11.z Update: RHSA-2020:4143-01 Moderate Security Flaw

Updated OpenShift Container Storage packages fixing various security issues and other bugs are now available for Red Hat OpenShift Container Storage with 3.11.z Async update. Red Hat Product Security has rated this update as having a security impact. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OCS 3.11.z async security, bug fix, and enhancement update Advisory ID: RHSA-2020:4143-01 Product: Red Hat Gluster Storage Advisory URL: https://access.redhat.com/errata/RHSA-2020:4143 Issue date: 2020-09-30 CVE Names: CVE-2020-10762 CVE-2020-10763 ==================================================================== 1. Summary: Updated OpenShift Container Storage packages fixing various security issues and other bugs are now available for Red Hat OpenShift Container Storage with 3.11.z Async update. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Gluster Storage Server 3.5 on RHEL-7 - x86_64 Red Hat Storage Native Client for Red Hat Enterprise Linux 7 - x86_64 3. Description: Red Hat OpenShift Container Storage(OCS) is a provider of agnostic persistent storage for OpenShift Container Platform either in-house or in a hybrid cloud. As a Red Hat storage solution, OCS is completely integrated with OpenShift Container Platform for deployment, management, and monitoring. Security Fix(es): * gluster-block: information disclosure through world-readable gluster-block log files (CVE-2020-10762) * heketi: gluster-block volume password details available in logs (CVE-2020-10763) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, andother related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Earlier, the tcmu-runner did not give details about the file operations stuck at the backend glusterfs block hosting volume. With this change, the tcmu-runner is now able to log details about the file operations stuck at the backend glusterfs block hosting volume and this will help identify the root cause of the input/output errors easily. (BZ#1850361) * Earlier, there was no log rotation with gluster-block logs. With this release, log rotation is possible for gluster-block and tcmu-runner relevant logs. (BZ#1850365) * Earlier, heketi did not track all the changes made to volumes as part of device remove operation. With this release, heketi’s device remove operation is fully tracked and is based on a series of brick evict operations making the operation more reliable. (BZ#1850072) * An access flaw CVE-2020-13867 was found in targetcli due to which the files under ‘/etc/target’ and '/etc/target/backup' directory were widely accessible. With this release, the access flaw is fixed as a workaround in gluster-block to protect these files from any potential attacks for accessing sensitive information, until the flaw is resolved and made available in targetcli.(BZ#1850077) All Red Hat OpenShift Container Storage users are advised to upgrade to these updated packages. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1845067 - CVE-2020-10762 gluster-block: information disclosure through world-readable gluster-block log files 1845387 - CVE-2020-10763 heketi: gluster-block volume password details available in logs 1850072 - Improve the reliability of device remove 1850077 - targetcli: weak permissions config files 1850361 - tcmu-runner: Log timed out commands 1855178 - brickEvict/deviceRemove is not working when node is unreachable 6. PackageList: Red Hat Gluster Storage Server 3.5 on RHEL-7: Source: gluster-block-0.2.1-36.2.el7rhgs.src.rpm heketi-9.0.0-9.5.el7rhgs.src.rpm tcmu-runner-1.2.0-32.2.el7rhgs.src.rpm x86_64: gluster-block-0.2.1-36.2.el7rhgs.x86_64.rpm gluster-block-debuginfo-0.2.1-36.2.el7rhgs.x86_64.rpm heketi-9.0.0-9.5.el7rhgs.x86_64.rpm heketi-client-9.0.0-9.5.el7rhgs.x86_64.rpm libtcmu-1.2.0-32.2.el7rhgs.x86_64.rpm libtcmu-devel-1.2.0-32.2.el7rhgs.x86_64.rpm python-heketi-9.0.0-9.5.el7rhgs.x86_64.rpm tcmu-runner-1.2.0-32.2.el7rhgs.x86_64.rpm tcmu-runner-debuginfo-1.2.0-32.2.el7rhgs.x86_64.rpm Red Hat Storage Native Client for Red Hat Enterprise Linux 7: Source: heketi-9.0.0-9.5.el7rhgs.src.rpm x86_64: heketi-client-9.0.0-9.5.el7rhgs.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-10762 https://access.redhat.com/security/cve/CVE-2020-10763 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX3Shu9zjgjWX9erEAQglrw//X5tdsUOsOzZHeq807sm8mdNk12bTcPvM hM2goQzcIMs7XlUkUvdg3wRmfbAyZuveHtNN3O+vg+hgNAc33FGq+JeZ5RdV+ivb KwaNHtjxrOafa8WsG8li8xtEm4uU5v/6kV5hu1OJ7wmrwaD6UXHjkmE8Qlyob7Bc jYBZncQkk74e/r8YsGMe4prboSobd6uLDox8/HJc59Hj7GM+j+sUv6g6N9SLk/YJ WM3N62+uPYzzrb65mwx4d6PLkV6hVQZdmogandjjmaFRTay+kRFITtloSJJnFm6V bYcYwtFWIcaUn0w8iP42zPAgF1W3OpGQzkJKjBJcU8N74sotDEEF/+ysE9PmumrV h69mPjWg5gVovMooRn1sOcr4ehOUxdN2/SRD8cy3mEBs0bb1lKV6H21XwpaNvFM4 68iKJfczV3wM9T57gebfmEGssRZj2mNSrRscuykup7esRnzkVSJudmNw1ihe9F1G 63m0S7XntIoMvH+1eYgngLiE/i//f0Iace4DC8WOPM5Q9DcDEIgzW/7Xmgu6gwL6 VssQdgQQcU/VaWxTvuEj4GheJVf+N4+j1rwx4/YtOfjtGZrl6SHg2a0xyMB3moHn V98eMNjCYg3Sk8WkUvXxAiKo9D3FY6ZMISwLQxiKkRWQhb91e6CO+XFJhWpfJKwy JCqa3TI5yDY=fsTt -----END PGPSIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest patch for Red Hat OCS 3.11.z tackles security vulnerabilities and resolves various bugs impacting overall efficiency.. Red Hat OCS Update, OpenShift Storage, Security Advisory. . LinuxSecurity.com Team

Calendar 2 Sep 30, 2020 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here