Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
100
security advisorykernel updatesecurity fixSUSE: 2024:3563-1 important: Kernel Updates Address Security Threats
* bsc#1216223 * bsc#1223600 * bsc#1223958 * bsc#1225272 * bsc#1227487 . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:3563-1 Release Date: 2024-10-09T09:04:26Z Rating: important References: * bsc#1216223 * bsc#1223600 * bsc#1223958 * bsc#1225272 * bsc#1227487 * bsc#1229407 * bsc#1229633 * bsc#1229662 * bsc#1229947 * bsc#1230015 * bsc#1230398 * bsc#1230434 * bsc#1230507 * bsc#1230767 * bsc#1231016 Cross-References: * CVE-2022-48911 * CVE-2022-48923 * CVE-2022-48944 * CVE-2022-48945 * CVE-2024-42301 * CVE-2024-44946 * CVE-2024-45021 * CVE-2024-46674 * CVE-2024-46774 CVSS scores: * CVE-2022-48911 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48911 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48923 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2022-48923 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48923 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48944 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2022-48944 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48944 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42301 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42301 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-44946 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-44946 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-45021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-45021 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-46674 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-46674 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-46774 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves nine vulnerabilities and has six security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2022-48911: kabi: add __nf_queue_get_refs() for kabi compliance. (bsc#1229633). * CVE-2022-48923: btrfs: prevent copying too big compressed lzo segment (bsc#1229662) * CVE-2024-42301: Fix the array out-of-bounds risk (bsc#1229407). * CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015). * CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434). * CVE-2024-46674: usb: dwc3: st: fix probed platform device ref count on probe error path (bsc#1230507). The following non-security bugs were fixed: * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272 bsc#1231016). * blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600). * blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600). * kabi: add __nf_queue_get_refs() for kabi compliance. * scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223). * scsi: smartpqi: Expose SAS address for SATA drives (bsc#1223958). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3563=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2024-3563=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3563=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3563=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.97.1 * kernel-rt-debuginfo-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-source-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.3 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.97.1 * kernel-rt-debuginfo-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-source-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.97.1 * kernel-rt-debuginfo-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-source-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.4 (x86_64) * kernel-rt-debugsource-5.14.21-150400.15.97.1 * kernel-rt-debuginfo-5.14.21-150400.15.97.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-source-rt-5.14.21-150400.15.97.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48911.html * https://www.suse.com/security/cve/CVE-2022-48923.html * https://www.suse.com/security/cve/CVE-2022-48944.html * https://www.suse.com/security/cve/CVE-2022-48945.html * https://www.suse.com/security/cve/CVE-2024-42301.html * https://www.suse.com/security/cve/CVE-2024-44946.html * https://www.suse.com/security/cve/CVE-2024-45021.html * https://www.suse.com/security/cve/CVE-2024-46674.html * https://www.suse.com/security/cve/CVE-2024-46774.html * https://bugzilla.suse.com/show_bug.cgi?id=1216223 * https://bugzilla.suse.com/show_bug.cgi?id=1223600 * https://bugzilla.suse.com/show_bug.cgi?id=1223958 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1229407 * https://bugzilla.suse.com/show_bug.cgi?id=1229633 * https://bugzilla.suse.com/show_bug.cgi?id=1229662 * https://bugzilla.suse.com/show_bug.cgi?id=1229947 * https://bugzilla.suse.com/show_bug.cgi?id=1230015 * https://bugzilla.suse.com/show_bug.cgi?id=1230398 * https://bugzilla.suse.com/show_bug.cgi?id=1230434 * https://bugzilla.suse.com/show_bug.cgi?id=1230507 * https://bugzilla.suse.com/show_bug.cgi?id=1230767 * https://bugzilla.suse.com/show_bug.cgi?id=1231016 . The recent kernel upgrade from SUSE tackles significant vulnerabilities and boosts safety with an array of solutions for several dangers.. Linux kernel, SUSE updates, security patches, system vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Oct 09, 2024
•Important
SuSE
100
security advisorycriticalsoftware updateSUSE: 2024:1991-1 Important: Unbound Security Issues and Updates
* bsc#1202031 * bsc#1202033 * bsc#1203643 * bsc#1219823 * bsc#1219826 . # Security update for unbound Announcement ID: SUSE-SU-2024:1991-1 Rating: important References: * bsc#1202031 * bsc#1202033 * bsc#1203643 * bsc#1219823 * bsc#1219826 * jsc#PED-8333 Cross-References: * CVE-2022-30698 * CVE-2022-30699 * CVE-2022-3204 * CVE-2023-50387 * CVE-2023-50868 CVSS scores: * CVE-2022-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2022-30698 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-30699 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2022-30699 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-3204 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-3204 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50387 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50387 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50868 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSELinux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 * SUSE Package Hub 15 15-SP5 An update that solves five vulnerabilities and contains one feature can now be installed. ## Description: This update for unbound fixes the following issues: unbound was updated to 1.20.0: * A lot of bugfixes and added features. For a complete list take a look at the changelog located at: /usr/share/doc/packages/unbound/Changelog or https://www.nlnetlabs.nl/projects/unbound/download/ Some Noteworthy Changes: * Removed DLV. The DLV has been decommisioned since unbound 1.5.4 and has been advised to stop using it since. The use of dlv options displays a warning. * Remove EDNS lame procedure, do not re-query without EDNS after timeout. * Add DNS over HTTPS * libunbound has been upgraded to major version 8 Security Fixes: * CVE-2023-50387: DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers. [bsc#1219823] * CVE-2023-50868: NSEC3 closest encloser proof can exhaust CPU. [bsc#1219826] * CVE-2022-30698: Novel "ghost domain names" attack by introducing subdomain delegations. [bsc#1202033] * CVE-2022-30699: Novel "ghost domain names" attack by updating almost expired delegation information. [bsc#1202031] * CVE-2022-3204: NRDelegation attack leads to uncontrolled resource consumption (Non-Responsive Delegation Attack). [bsc#1203643] Packaging Changes: * Use prefixes instead of sudo in unbound.service * Remove no longer necessary BuildRequires: libfstrm-devel and libprotobuf-c- devel ## PatchInstructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1991=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1991=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1991=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1991=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1991=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1991=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1991=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1991=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1991=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1991=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1991=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1991=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1991=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1991=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1991=1 * SUSE Linux Enterprise Micro5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1991=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1991=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1991=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1991=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE LinuxEnterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Manager Proxy 4.3 (x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * unbound-python-debuginfo-1.20.0-150100.10.13.1 * unbound-1.20.0-150100.10.13.1 * unbound-python-1.20.0-150100.10.13.1 * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * openSUSE Leap 15.5 (noarch) * unbound-munin-1.20.0-150100.10.13.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * unbound-python-debuginfo-1.20.0-150100.10.13.1 * unbound-1.20.0-150100.10.13.1 * unbound-python-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libunbound8-1.20.0-150100.10.13.1 * unbound-devel-1.20.0-150100.10.13.1 * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-debuginfo-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 ## References: * https://www.suse.com/security/cve/CVE-2022-30698.html * https://www.suse.com/security/cve/CVE-2022-30699.html * https://www.suse.com/security/cve/CVE-2022-3204.html * https://www.suse.com/security/cve/CVE-2023-50387.html *https://www.suse.com/security/cve/CVE-2023-50868.html * https://bugzilla.suse.com/show_bug.cgi?id=1202031 * https://bugzilla.suse.com/show_bug.cgi?id=1202033 * https://bugzilla.suse.com/show_bug.cgi?id=1203643 * https://bugzilla.suse.com/show_bug.cgi?id=1219823 * https://bugzilla.suse.com/show_bug.cgi?id=1219826 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-8333&page_caps=&user_role= . SUSE releases crucial security notice for unbound tackling multiple severe vulnerabilities and providing update recommendations.. SUSE Updates, Unbound Security, DNS Security Advisory, SUSE Advisory 2024. . Severity: Important. LinuxSecurity.com Team
Jun 11, 2024
•Important
SuSE
98
security advisoryRed Hatsoftware updateRedHat Enterprise Linux: RHSA-2021-2350-01 Important ASP.NET Core DoS
An update for rh-dotnet31-dotnet is now available for .NET Core on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: .NET Core 3.1 on RHEL 7 security and bugfix update Advisory ID: RHSA-2021:2350-01 Product: .NET Core on Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2350 Issue date: 2021-06-08 CVE Names: CVE-2021-31957 ==================================================================== 1. Summary: An update for rh-dotnet31-dotnet is now available for .NET Core on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 .NET Core on Red Hat Enterprise Linux Server (v. 7) - x86_64 .NET Core on Red Hat Enterprise Linux Workstation (v. 7) - x86_64 3. Description: .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.116 and .NET Runtime 3.1.16. Security Fix(es): * dotnet: ASP.NET Core Client Disconnect Denial of Service (CVE-2021-31957) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update,which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1966990 - CVE-2021-31957 dotnet: ASP.NET Core Client Disconnect Denial of Service 6. Package List: .NET Core on Red Hat Enterprise Linux ComputeNode (v. 7): Source: rh-dotnet31-dotnet-3.1.116-1.el7_9.src.rpm x86_64: rh-dotnet31-aspnetcore-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-aspnetcore-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-apphost-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-debuginfo-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-host-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-hostfxr-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-sdk-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-templates-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-netstandard-targeting-pack-2.1-3.1.116-1.el7_9.x86_64.rpm .NET Core on Red Hat Enterprise Linux Server (v. 7): Source: rh-dotnet31-dotnet-3.1.116-1.el7_9.src.rpm x86_64: rh-dotnet31-aspnetcore-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-aspnetcore-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-apphost-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-debuginfo-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-host-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-hostfxr-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-sdk-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-templates-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-netstandard-targeting-pack-2.1-3.1.116-1.el7_9.x86_64.rpm .NET Core on Red Hat Enterprise Linux Workstation (v.7): Source: rh-dotnet31-dotnet-3.1.116-1.el7_9.src.rpm x86_64: rh-dotnet31-aspnetcore-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-aspnetcore-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-apphost-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-debuginfo-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-host-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-hostfxr-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-runtime-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-sdk-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-targeting-pack-3.1-3.1.16-1.el7_9.x86_64.rpm rh-dotnet31-dotnet-templates-3.1-3.1.116-1.el7_9.x86_64.rpm rh-dotnet31-netstandard-targeting-pack-2.1-3.1.116-1.el7_9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-31957 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYMAbx9zjgjWX9erEAQg0iA//ZMTDOkp9jyDMxC6VRisGHkU6yxWPFIEs 5xelU+7Pusp7mmYsFM9+c8dn7sWiRuuX7S9q+DhOTemcSmjfE8TCg2PIwDwJ4v4i AsPzx+x93ug0Jy6VWSJo/992tsdv+m809rQnqMItQy4BB7YrYaqsCtrsGxZHOP90 1LOyaiRSm7pg2OjUzvTg+k5WX4XCOvzRELiB2ErGpryR6CgU6zbCURf4fnczj2/d rNtbxXmsDSbmTUC0qt+7uKJHzoxKXUYAHDF+wyiJXSAe2eV29nINbPa9R8vx0koE BF2xcgVYd9MNPal3tsZ15jm6+hvk0tVMM+gPhAWQQczXl0aFMaWBSAmXPPJ/ZFXE +mdMXNKzuxaxK+9JsBcLS7gsTSOBfzq1Sm7oQRKGmQIPqSMdQZucs3C86sASXLGD ixQs99clPBeCFwUjvwIuHPkWQFHsxsM0LQJlGb6PHQJbVmRSc2PDgdu2BVjHJWSl c7VxLpXHwd7uiS/zw5KTpbcXpxzCAFwD2g9mZXvgRwv8xB/yMI1uim/mbdotTs5j C+Z8s0E1ggb6X9PkgFGMMwKIfZee3TiqbQevNjvZwqi3XbVEM4W2bDLLo0+I4Ly2 /1qPQc3r4ximd5loy9q3O/4kdkluuFsmznTg68Z0V1PCbhZ+JGpDi3ivdHV86LKa Y+qTXDnEhw8=kKm2 -----END PGPSIGNATURE----- -- RHSA-announce mailing list
Jun 08, 2021
•Important
Red Hat
98
security advisoryRed Hatbug fixRed Hat 8 RHSA-2021-1647-01 Moderate Samba Security Update
An update for samba is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: samba security, bug fix, and enhancement update Advisory ID: RHSA-2021:1647-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:1647 Issue date: 2021-05-18 CVE Names: CVE-2020-1472 CVE-2020-14318 CVE-2020-14323 ==================================================================== 1. Summary: An update for samba is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba (4.13.3). (BZ#1878109) Security Fix(es): * samba: Netlogon elevation of privilege vulnerability (Zerologon) (CVE-2020-1472) * samba: Missing handle permissions check in SMB1/2/3 ChangeNotify (CVE-2020-14318) * samba: Unprivileged user can crashwinbind (CVE-2020-14323) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, the smb service will be restarted automatically. 5. Bugs fixed (https://bugzilla.redhat.com/): 1818038 - Improve FIPS compliance in Samba 1869702 - Malfunctioning %U substitution in valid users option 1872833 - RFE: Build winexe and offer it as a subpackage 1878109 - Rebase Samba to the the latest 4.13.x release 1879822 - CVE-2020-1472 samba: Netlogon elevation of privilege vulnerability (Zerologon) 1888990 - Update smb.conf man pages to include information about restarting smbd to implement changes 1891685 - CVE-2020-14323 samba: Unprivileged user can crash winbind 1892631 - CVE-2020-14318 samba: Missing handle permissions check in SMB1/2/3 ChangeNotify 1896736 - Make sure Samba is able to resolve FreeIPA users specified in different name formats 1898866 - Rebuild openchange against Samba rebase 1902198 - Document 'weak crypto' output of testparm in manpage 1904174 - 'net ads join' fails with "Failed to join domain: failed to connect to AD: Operations error" 1924571 - smb.service stops when samba rpms are updated 1924615 - smbd share mode double free crash - memcache_trim bug 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: openchange-2.3-27.el8.src.rpm aarch64: openchange-2.3-27.el8.aarch64.rpm openchange-client-debuginfo-2.3-27.el8.aarch64.rpm openchange-debuginfo-2.3-27.el8.aarch64.rpm openchange-debugsource-2.3-27.el8.aarch64.rpm ppc64le: openchange-2.3-27.el8.ppc64le.rpm openchange-client-debuginfo-2.3-27.el8.ppc64le.rpm openchange-debuginfo-2.3-27.el8.ppc64le.rpm openchange-debugsource-2.3-27.el8.ppc64le.rpm s390x: openchange-2.3-27.el8.s390x.rpm openchange-client-debuginfo-2.3-27.el8.s390x.rpm openchange-debuginfo-2.3-27.el8.s390x.rpm openchange-debugsource-2.3-27.el8.s390x.rpm x86_64: openchange-2.3-27.el8.i686.rpm openchange-2.3-27.el8.x86_64.rpm openchange-client-debuginfo-2.3-27.el8.i686.rpm openchange-client-debuginfo-2.3-27.el8.x86_64.rpm openchange-debuginfo-2.3-27.el8.i686.rpm openchange-debuginfo-2.3-27.el8.x86_64.rpm openchange-debugsource-2.3-27.el8.i686.rpm openchange-debugsource-2.3-27.el8.x86_64.rpm Red Hat Enterprise Linux BaseOS (v.8): Source: samba-4.13.3-3.el8.src.rpm aarch64: ctdb-4.13.3-3.el8.aarch64.rpm ctdb-debuginfo-4.13.3-3.el8.aarch64.rpm ctdb-tests-4.13.3-3.el8.aarch64.rpm ctdb-tests-debuginfo-4.13.3-3.el8.aarch64.rpm libsmbclient-4.13.3-3.el8.aarch64.rpm libsmbclient-debuginfo-4.13.3-3.el8.aarch64.rpm libwbclient-4.13.3-3.el8.aarch64.rpm libwbclient-debuginfo-4.13.3-3.el8.aarch64.rpm python3-samba-4.13.3-3.el8.aarch64.rpm python3-samba-debuginfo-4.13.3-3.el8.aarch64.rpm python3-samba-test-4.13.3-3.el8.aarch64.rpm samba-4.13.3-3.el8.aarch64.rpm samba-client-4.13.3-3.el8.aarch64.rpm samba-client-debuginfo-4.13.3-3.el8.aarch64.rpm samba-client-libs-4.13.3-3.el8.aarch64.rpm samba-client-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-common-libs-4.13.3-3.el8.aarch64.rpm samba-common-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-common-tools-4.13.3-3.el8.aarch64.rpm samba-common-tools-debuginfo-4.13.3-3.el8.aarch64.rpm samba-debuginfo-4.13.3-3.el8.aarch64.rpm samba-debugsource-4.13.3-3.el8.aarch64.rpm samba-krb5-printing-4.13.3-3.el8.aarch64.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.aarch64.rpm samba-libs-4.13.3-3.el8.aarch64.rpm samba-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-test-4.13.3-3.el8.aarch64.rpm samba-test-debuginfo-4.13.3-3.el8.aarch64.rpm samba-test-libs-4.13.3-3.el8.aarch64.rpm samba-test-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-4.13.3-3.el8.aarch64.rpm samba-winbind-clients-4.13.3-3.el8.aarch64.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-krb5-locator-4.13.3-3.el8.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-modules-4.13.3-3.el8.aarch64.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.aarch64.rpm noarch: samba-common-4.13.3-3.el8.noarch.rpm samba-pidl-4.13.3-3.el8.noarch.rpm ppc64le: ctdb-4.13.3-3.el8.ppc64le.rpm ctdb-debuginfo-4.13.3-3.el8.ppc64le.rpm ctdb-tests-4.13.3-3.el8.ppc64le.rpm ctdb-tests-debuginfo-4.13.3-3.el8.ppc64le.rpm libsmbclient-4.13.3-3.el8.ppc64le.rpm libsmbclient-debuginfo-4.13.3-3.el8.ppc64le.rpm libwbclient-4.13.3-3.el8.ppc64le.rpm libwbclient-debuginfo-4.13.3-3.el8.ppc64le.rpm python3-samba-4.13.3-3.el8.ppc64le.rpm python3-samba-debuginfo-4.13.3-3.el8.ppc64le.rpm python3-samba-test-4.13.3-3.el8.ppc64le.rpm samba-4.13.3-3.el8.ppc64le.rpm samba-client-4.13.3-3.el8.ppc64le.rpm samba-client-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-client-libs-4.13.3-3.el8.ppc64le.rpm samba-client-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-common-libs-4.13.3-3.el8.ppc64le.rpm samba-common-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-common-tools-4.13.3-3.el8.ppc64le.rpm samba-common-tools-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-debugsource-4.13.3-3.el8.ppc64le.rpm samba-krb5-printing-4.13.3-3.el8.ppc64le.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-libs-4.13.3-3.el8.ppc64le.rpm samba-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-test-4.13.3-3.el8.ppc64le.rpm samba-test-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-test-libs-4.13.3-3.el8.ppc64le.rpm samba-test-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-4.13.3-3.el8.ppc64le.rpm samba-winbind-clients-4.13.3-3.el8.ppc64le.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-krb5-locator-4.13.3-3.el8.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-modules-4.13.3-3.el8.ppc64le.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.ppc64le.rpm s390x: ctdb-4.13.3-3.el8.s390x.rpm ctdb-debuginfo-4.13.3-3.el8.s390x.rpm ctdb-tests-4.13.3-3.el8.s390x.rpm ctdb-tests-debuginfo-4.13.3-3.el8.s390x.rpm libsmbclient-4.13.3-3.el8.s390x.rpm libsmbclient-debuginfo-4.13.3-3.el8.s390x.rpm libwbclient-4.13.3-3.el8.s390x.rpm libwbclient-debuginfo-4.13.3-3.el8.s390x.rpm python3-samba-4.13.3-3.el8.s390x.rpm python3-samba-debuginfo-4.13.3-3.el8.s390x.rpm python3-samba-test-4.13.3-3.el8.s390x.rpm samba-4.13.3-3.el8.s390x.rpm samba-client-4.13.3-3.el8.s390x.rpm samba-client-debuginfo-4.13.3-3.el8.s390x.rpm samba-client-libs-4.13.3-3.el8.s390x.rpm samba-client-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-common-libs-4.13.3-3.el8.s390x.rpm samba-common-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-common-tools-4.13.3-3.el8.s390x.rpm samba-common-tools-debuginfo-4.13.3-3.el8.s390x.rpm samba-debuginfo-4.13.3-3.el8.s390x.rpm samba-debugsource-4.13.3-3.el8.s390x.rpm samba-krb5-printing-4.13.3-3.el8.s390x.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.s390x.rpm samba-libs-4.13.3-3.el8.s390x.rpm samba-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-test-4.13.3-3.el8.s390x.rpm samba-test-debuginfo-4.13.3-3.el8.s390x.rpm samba-test-libs-4.13.3-3.el8.s390x.rpm samba-test-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-4.13.3-3.el8.s390x.rpm samba-winbind-clients-4.13.3-3.el8.s390x.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-krb5-locator-4.13.3-3.el8.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-modules-4.13.3-3.el8.s390x.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.s390x.rpm x86_64: ctdb-4.13.3-3.el8.x86_64.rpm ctdb-debuginfo-4.13.3-3.el8.i686.rpm ctdb-debuginfo-4.13.3-3.el8.x86_64.rpm ctdb-tests-4.13.3-3.el8.x86_64.rpm ctdb-tests-debuginfo-4.13.3-3.el8.i686.rpm ctdb-tests-debuginfo-4.13.3-3.el8.x86_64.rpm libsmbclient-4.13.3-3.el8.i686.rpm libsmbclient-4.13.3-3.el8.x86_64.rpm libsmbclient-debuginfo-4.13.3-3.el8.i686.rpm libsmbclient-debuginfo-4.13.3-3.el8.x86_64.rpm libwbclient-4.13.3-3.el8.i686.rpm libwbclient-4.13.3-3.el8.x86_64.rpm libwbclient-debuginfo-4.13.3-3.el8.i686.rpm libwbclient-debuginfo-4.13.3-3.el8.x86_64.rpm python3-samba-4.13.3-3.el8.i686.rpm python3-samba-4.13.3-3.el8.x86_64.rpm python3-samba-debuginfo-4.13.3-3.el8.i686.rpm python3-samba-debuginfo-4.13.3-3.el8.x86_64.rpm python3-samba-test-4.13.3-3.el8.x86_64.rpm samba-4.13.3-3.el8.x86_64.rpm samba-client-4.13.3-3.el8.x86_64.rpm samba-client-debuginfo-4.13.3-3.el8.i686.rpm samba-client-debuginfo-4.13.3-3.el8.x86_64.rpm samba-client-libs-4.13.3-3.el8.i686.rpm samba-client-libs-4.13.3-3.el8.x86_64.rpm samba-client-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-client-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-common-libs-4.13.3-3.el8.x86_64.rpm samba-common-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-common-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-common-tools-4.13.3-3.el8.x86_64.rpm samba-common-tools-debuginfo-4.13.3-3.el8.i686.rpm samba-common-tools-debuginfo-4.13.3-3.el8.x86_64.rpm samba-debuginfo-4.13.3-3.el8.i686.rpm samba-debuginfo-4.13.3-3.el8.x86_64.rpm samba-debugsource-4.13.3-3.el8.i686.rpm samba-debugsource-4.13.3-3.el8.x86_64.rpm samba-krb5-printing-4.13.3-3.el8.x86_64.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.i686.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.x86_64.rpm samba-libs-4.13.3-3.el8.i686.rpm samba-libs-4.13.3-3.el8.x86_64.rpm samba-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-test-4.13.3-3.el8.x86_64.rpm samba-test-debuginfo-4.13.3-3.el8.i686.rpm samba-test-debuginfo-4.13.3-3.el8.x86_64.rpm samba-test-libs-4.13.3-3.el8.x86_64.rpm samba-test-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-test-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-vfs-glusterfs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-4.13.3-3.el8.x86_64.rpm samba-winbind-clients-4.13.3-3.el8.x86_64.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-krb5-locator-4.13.3-3.el8.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-modules-4.13.3-3.el8.i686.rpm samba-winbind-modules-4.13.3-3.el8.x86_64.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winexe-4.13.3-3.el8.x86_64.rpm samba-winexe-debuginfo-4.13.3-3.el8.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: ctdb-debuginfo-4.13.3-3.el8.aarch64.rpm ctdb-tests-debuginfo-4.13.3-3.el8.aarch64.rpm libsmbclient-debuginfo-4.13.3-3.el8.aarch64.rpm libsmbclient-devel-4.13.3-3.el8.aarch64.rpm libwbclient-debuginfo-4.13.3-3.el8.aarch64.rpm libwbclient-devel-4.13.3-3.el8.aarch64.rpm python3-samba-debuginfo-4.13.3-3.el8.aarch64.rpm samba-client-debuginfo-4.13.3-3.el8.aarch64.rpm samba-client-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-common-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-common-tools-debuginfo-4.13.3-3.el8.aarch64.rpm samba-debuginfo-4.13.3-3.el8.aarch64.rpm samba-debugsource-4.13.3-3.el8.aarch64.rpm samba-devel-4.13.3-3.el8.aarch64.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.aarch64.rpm samba-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-test-debuginfo-4.13.3-3.el8.aarch64.rpm samba-test-libs-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.aarch64.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.aarch64.rpm ppc64le: ctdb-debuginfo-4.13.3-3.el8.ppc64le.rpm ctdb-tests-debuginfo-4.13.3-3.el8.ppc64le.rpm libsmbclient-debuginfo-4.13.3-3.el8.ppc64le.rpm libsmbclient-devel-4.13.3-3.el8.ppc64le.rpm libwbclient-debuginfo-4.13.3-3.el8.ppc64le.rpm libwbclient-devel-4.13.3-3.el8.ppc64le.rpm python3-samba-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-client-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-client-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-common-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-common-tools-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-debugsource-4.13.3-3.el8.ppc64le.rpm samba-devel-4.13.3-3.el8.ppc64le.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-test-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-test-libs-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.ppc64le.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.ppc64le.rpm s390x: ctdb-debuginfo-4.13.3-3.el8.s390x.rpm ctdb-tests-debuginfo-4.13.3-3.el8.s390x.rpm libsmbclient-debuginfo-4.13.3-3.el8.s390x.rpm libsmbclient-devel-4.13.3-3.el8.s390x.rpm libwbclient-debuginfo-4.13.3-3.el8.s390x.rpm libwbclient-devel-4.13.3-3.el8.s390x.rpm python3-samba-debuginfo-4.13.3-3.el8.s390x.rpm samba-client-debuginfo-4.13.3-3.el8.s390x.rpm samba-client-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-common-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-common-tools-debuginfo-4.13.3-3.el8.s390x.rpm samba-debuginfo-4.13.3-3.el8.s390x.rpm samba-debugsource-4.13.3-3.el8.s390x.rpm samba-devel-4.13.3-3.el8.s390x.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.s390x.rpm samba-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-test-debuginfo-4.13.3-3.el8.s390x.rpm samba-test-libs-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.s390x.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.s390x.rpm x86_64: ctdb-debuginfo-4.13.3-3.el8.i686.rpm ctdb-debuginfo-4.13.3-3.el8.x86_64.rpm ctdb-tests-debuginfo-4.13.3-3.el8.i686.rpm ctdb-tests-debuginfo-4.13.3-3.el8.x86_64.rpm libsmbclient-debuginfo-4.13.3-3.el8.i686.rpm libsmbclient-debuginfo-4.13.3-3.el8.x86_64.rpm libsmbclient-devel-4.13.3-3.el8.i686.rpm libsmbclient-devel-4.13.3-3.el8.x86_64.rpm libwbclient-debuginfo-4.13.3-3.el8.i686.rpm libwbclient-debuginfo-4.13.3-3.el8.x86_64.rpm libwbclient-devel-4.13.3-3.el8.i686.rpm libwbclient-devel-4.13.3-3.el8.x86_64.rpm python3-samba-debuginfo-4.13.3-3.el8.i686.rpm python3-samba-debuginfo-4.13.3-3.el8.x86_64.rpm samba-client-debuginfo-4.13.3-3.el8.i686.rpm samba-client-debuginfo-4.13.3-3.el8.x86_64.rpm samba-client-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-client-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-common-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-common-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-common-tools-debuginfo-4.13.3-3.el8.i686.rpm samba-common-tools-debuginfo-4.13.3-3.el8.x86_64.rpm samba-debuginfo-4.13.3-3.el8.i686.rpm samba-debuginfo-4.13.3-3.el8.x86_64.rpm samba-debugsource-4.13.3-3.el8.i686.rpm samba-debugsource-4.13.3-3.el8.x86_64.rpm samba-devel-4.13.3-3.el8.i686.rpm samba-devel-4.13.3-3.el8.x86_64.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.i686.rpm samba-krb5-printing-debuginfo-4.13.3-3.el8.x86_64.rpm samba-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-test-debuginfo-4.13.3-3.el8.i686.rpm samba-test-debuginfo-4.13.3-3.el8.x86_64.rpm samba-test-libs-debuginfo-4.13.3-3.el8.i686.rpm samba-test-libs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-vfs-glusterfs-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-clients-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-krb5-locator-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.i686.rpm samba-winbind-modules-debuginfo-4.13.3-3.el8.x86_64.rpm samba-winexe-debuginfo-4.13.3-3.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-1472 https://access.redhat.com/security/cve/CVE-2020-14318 https://access.redhat.com/security/cve/CVE-2020-14323 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/articles/5435971 https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYKPv5tzjgjWX9erEAQjycw//dxp1c55SMlcJXjhvarw2siY96Bu3qecS pdtxzUt8+dUpHSt6wAdAM5A2z6sDHsaC50j/OeGzTIjPjLrBdyMz6kmB2B8Z1Mbf eNtr6dkwNZrfJnlOg08A5Bq/d/79mtG0Al7CIRvfXB1m6IOTLGC2EIbytZ7ZXy3t gID+RKj9gxvec2XE5eLbyMzh5oO6WzJVN4v9DIvExCP2qAlrzjJErfKhsOwP67Tl /lfMJI/iYvSrFBW50SefDl09pyOUVDR2cvig4pGJK71wm6526zW+WgRI82LYuk9k 79aGYCSI+xH7Fa8Pg4D6DaZJfY6Zj8IMf8dZmZk2kWjoJgcrJAzLVPbq9+HnBTyD diI5eQLZZW1B/q/MGMj72O2n1SDx59eaZDoYQpwCys/Q3sLkXP2/riAA24nlNR43 W3giDi2hSYrnwfzUlOQtlucXXUDTmnRlmr9wnKjKCXaEoJ2ZzsdKUegrEXHvsCuQ rWtow4yXpTi6PpQLqRcA5dtVMJU1io0MgZGWdEnYVXV55WIXmI0M/XUCYViiVYn4 wr3Gr+rOQonEC9icFyjdMOVXr5Lpa/r+nWKjOm3UXtCkjABnUixp12WVl0OAppoR Q9lJotzQHj/3TrdSQEenFJ2D3s+mkAaZnTvOC46nbKXVg6SUdEPKBp+FsgcXYZca MdUfXjqVtgk=GBKF -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 18, 2021
Red Hat
98
security advisorymoderatesecurity updateRed Hat JBoss EAP 7.3: RHSA-2021-0873-01 Moderate Java Server Threats
A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat JBoss Enterprise Application Platform 7.3.6 security update Advisory ID: RHSA-2021:0873-01 Product: Red Hat JBoss Enterprise Application Platform Advisory URL: https://access.redhat.com/errata/RHSA-2021:0873 Issue date: 2021-03-16 CVE Names: CVE-2020-8908 CVE-2020-10687 CVE-2020-28052 CVE-2020-35510 CVE-2021-20220 CVE-2021-20250 ==================================================================== 1. Summary: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat JBoss EAP 7.3 for RHEL 7 Server - noarch 3. Description: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.3.6 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.5, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.6 Release Notes for information about the most significant bug fixes and enhancements included in this release. Security Fix(es): * jboss-remoting: Threads hold up forever in the EJB server by suppressing the ack from an EJBclient (CVE-2020-35510) * bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible (CVE-2020-28052) * wildfly-undertow: undertow: Possible regression in fix for CVE-2020-10687 (CVE-2021-20220) * jboss-ejb-client: wildfly: Information disclosure due to publicly accessible privileged actions in JBoss EJB Client (CVE-2021-20250) * guava: local information disclosure via temporary directory created with unsafe permissions (CVE-2020-8908) 4. Solution: Before applying this update, ensure all previously released errata relevant to your system have been applied. For details about how to apply this update, see: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1905796 - CVE-2020-35510 jboss-remoting: Threads hold up forever in the EJB server by suppressing the ack from an EJB client 1906919 - CVE-2020-8908 guava: local information disclosure via temporary directory created with unsafe permissions 1912881 - CVE-2020-28052 bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible 1923133 - CVE-2021-20220 undertow: Possible regression in fix for CVE-2020-10687 1929479 - CVE-2021-20250 wildfly: Information disclosure due to publicly accessible privileged actions in JBoss EJB Client 6. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): JBEAP-20336 - (7.3.z) Upgrade Bouncy Castle from 1.65.0.redhat-00001 to 1.68.0.redhat-00001 JBEAP-20628 - [GSS] (7.3.z) Upgrade undertow from 2.0.33.SP2-redhat-00001 to 2.0.34.SP1-redhat-00001 JBEAP-20672 - [GSS](7.3.z) Upgrade Artemis from 2.9.0.redhat-00017 to 2.9.0.redhat-00019 JBEAP-20694 - (7.3.z) Upgrade WildFly Galleon Plugins from 4.2.8.Final to 4.2.10.Final JBEAP-20695 - (7.3.z) (WF-Core) Upgrade WildFly Galleon Plugins from 4.2.8.Final to 4.2.10.Final JBEAP-20716 - Tracker bug for the EAP 7.3.6 release for RHEL-7 JBEAP-20762 - [GSS](7.3.z) Upgrade jboss-ejb-client from 4.0.37.Final-redhat-00001 to 4.0.39.SP1-redhat-00001 JBEAP-20791 - (7.3.z) Upgrade WildFly Elytron from1.10.10.Final-redhat-00001 to 1.10.11.Final-redhat-00001 JBEAP-20795 - [GSS](7.3.z) Upgrade HAL from 3.2.12.Final-redhat-00001 to 3.2.13.Final-redhat-00001 JBEAP-20802 - (7.3.z) Upgrade Narayana from 5.9.10.Final-redhat-00001 to 5.9.11.Final-redhat-00001 JBEAP-20805 - (7.3.z) Upgrade guava from 25.0.redhat-1 to 30.1.0.redhat-00001 JBEAP-20815 - [GSS](7.3.z) Upgrade JBoss Remoting from 5.0.20.Final-redhat-00001 to 5.0.20.SP1-redhat-00001 JBEAP-20816 - [GSS](7.3.z) Upgrade wildfly-http-client from 1.0.24.Final-redhat-00001 to 1.0.25.Final-redhat-00001 JBEAP-20883 - [GSS](7.3.z) Upgrade wildfly-naming-client from 1.0.13.Final-redhat-00001 to 1.0.14.Final-redhat-00001 JBEAP-20887 - (7.3.z) Upgrade IronJacamar from 1.4.22.Final-redhat-00001 to 1.4.27.Final-redhat-00001 JBEAP-20908 - (7.3.z)(wf-core) Upgrade guava from 20.0 to 30.1.0.redhat-00001 JBEAP-20918 - (7.3.z) Upgrade jboss-logmanager from 2.1.17.Final-redhat-00001 to 2.1.18.Final-redhat-00001 JBEAP-20941 - (7.3.z)(wf-core) Upgrade Bouncy Castle from 1.65 to 1.68 7. Package List: Red Hat JBoss EAP 7.3 for RHEL 7Server: Source: eap7-activemq-artemis-2.9.0-9.redhat_00019.1.el7eap.src.rpm eap7-bouncycastle-1.68.0-1.redhat_00001.1.el7eap.src.rpm eap7-guava-failureaccess-1.0.1-1.redhat_00002.1.el7eap.src.rpm eap7-guava-libraries-30.1.0-1.redhat_00001.1.el7eap.src.rpm eap7-hal-console-3.2.13-1.Final_redhat_00001.1.el7eap.src.rpm eap7-ironjacamar-1.4.27-1.Final_redhat_00001.1.el7eap.src.rpm eap7-jboss-ejb-client-4.0.39-1.SP1_redhat_00001.1.el7eap.src.rpm eap7-jboss-logmanager-2.1.18-1.Final_redhat_00001.1.el7eap.src.rpm eap7-jboss-remoting-5.0.20-2.SP1_redhat_00001.1.el7eap.src.rpm eap7-jboss-server-migration-1.7.2-5.Final_redhat_00006.1.el7eap.src.rpm eap7-narayana-5.9.11-1.Final_redhat_00001.1.el7eap.src.rpm eap7-undertow-2.0.34-1.SP1_redhat_00001.1.el7eap.src.rpm eap7-wildfly-7.3.6-1.GA_redhat_00002.1.el7eap.src.rpm eap7-wildfly-elytron-1.10.11-1.Final_redhat_00001.1.el7eap.src.rpm eap7-wildfly-http-client-1.0.25-1.Final_redhat_00001.1.el7eap.src.rpm eap7-wildfly-naming-client-1.0.14-1.Final_redhat_00001.1.el7eap.src.rpm noarch: eap7-activemq-artemis-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-cli-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-commons-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-core-client-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-dto-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-hornetq-protocol-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-hqclient-protocol-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-jdbc-store-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-jms-client-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-jms-server-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-journal-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-ra-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-selector-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-server-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-service-extensions-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-activemq-artemis-tools-2.9.0-9.redhat_00019.1.el7eap.noarch.rpm eap7-bouncycastle-1.68.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-bouncycastle-mail-1.68.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-bouncycastle-pkix-1.68.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-bouncycastle-prov-1.68.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-guava-30.1.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-guava-failureaccess-1.0.1-1.redhat_00002.1.el7eap.noarch.rpm eap7-guava-libraries-30.1.0-1.redhat_00001.1.el7eap.noarch.rpm eap7-hal-console-3.2.13-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-common-api-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-common-impl-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-common-spi-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-core-api-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-core-impl-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-deployers-common-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-jdbc-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-ironjacamar-validator-1.4.27-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-jboss-ejb-client-4.0.39-1.SP1_redhat_00001.1.el7eap.noarch.rpm eap7-jboss-logmanager-2.1.18-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-jboss-remoting-5.0.20-2.SP1_redhat_00001.1.el7eap.noarch.rpm eap7-jboss-server-migration-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-cli-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-core-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap6.4-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap6.4-to-eap7.3-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap7.0-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap7.1-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap7.2-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap7.2-to-eap7.3-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-eap7.3-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly10.0-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly10.1-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly11.0-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly12.0-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly13.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly14.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly15.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly16.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly17.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly18.0-server-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly8.2-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-jboss-server-migration-wildfly9.0-1.7.2-5.Final_redhat_00006.1.el7eap.noarch.rpm eap7-narayana-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-compensations-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-jbosstxbridge-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-jbossxts-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-jts-idlj-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-jts-integration-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-restat-api-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-restat-bridge-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-restat-integration-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-restat-util-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-narayana-txframework-5.9.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-undertow-2.0.34-1.SP1_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-7.3.6-1.GA_redhat_00002.1.el7eap.noarch.rpm eap7-wildfly-elytron-1.10.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-elytron-tool-1.10.11-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-http-client-common-1.0.25-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-http-ejb-client-1.0.25-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-http-naming-client-1.0.25-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-http-transaction-client-1.0.25-1.Final_redhat_00001.1.el7eap.noarch.rpm eap7-wildfly-java-jdk11-7.3.6-1.GA_redhat_00002.1.el7eap.noarch.rpm eap7-wildfly-java-jdk8-7.3.6-1.GA_redhat_00002.1.el7eap.noarch.rpm eap7-wildfly-javadocs-7.3.6-1.GA_redhat_00002.1.el7eap.noarch.rpm eap7-wildfly-modules-7.3.6-1.GA_redhat_00002.1.el7eap.noarch.rpm eap7-wildfly-naming-client-1.0.14-1.Final_redhat_00001.1.el7eap.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 8. References: https://access.redhat.com/security/cve/CVE-2020-8908 https://access.redhat.com/security/cve/CVE-2020-10687 https://access.redhat.com/security/cve/CVE-2020-28052 https://access.redhat.com/security/cve/CVE-2020-35510 https://access.redhat.com/security/cve/CVE-2021-20220 https://access.redhat.com/security/cve/CVE-2021-20250 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3 https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/index 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGPSIGNATURE----- Version: GnuPG v1 iQIVAwUBYFC6PNzjgjWX9erEAQhwXw/+IcftYvV0k1bn5cPiB200OQaDYIqoqaf7 10hvauMXgYTx6CqYHVhBfJ9GGp0u+3RyhQroGQ0KX4/98D2SDcMduCMI+2MrMXlP Lh0/9BSfpeMha0ofuTeBr1Ut/YUthuC7hb6bmHmIu7WgVbllg5JdoSvczz8ssnMs h8JIlBh+3iLHAvE2HVEHiwEVTpuNpw7hJWnIOAyVZrInpWWKTtDs9DVodcopIOY1 tug3wDP7eVAFB5HY8eEjg8IzWXyDAD2/jH/KdlycbWUaddCQ1MHEfkpCoBqt3UPa TsIMyOiUx2dlF1vX62W3rJsGS4YMVWPpcgOqY6nFCpQngjZg2FN1lvwpeVlbUWH6 JCKTpyIOxUJnyQ0WC6CCn/K21trGj7VpeO5uyYBs9e1oel2ZvJjFdk+5Xu4SpO/u QucA/sz2yzMmGGMvQFnVyfLHZsb9yWh7ZXawmaGk4Pjl1UKkpgw+xqUbjf/x0oWi pjC+00IqXC+Sbq1ymcV+tBWMeBVYzoCY2ZMGQ7EV45EXniWM28M2+DJspp50c5HP QlYBHjdZxgvvKmrZHXOqqLNweVsOm/2vQVW097WTGH4LTDf3fTgWF6EuYuZu1cV1 hToZXAiaXQCP8F5ul44VWAw7ANraKzs1/gNWTCZvJFxX2m4AxrtBF+FRQ5lecpg6 OzFY6V140vk=Q4ys -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 16, 2021
Red Hat
98
security advisorysecurity updateRed HatRed Hat 8: RHSA-2020:5567-01 Important: PostgreSQL 10 DoS
An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: postgresql:10 security update Advisory ID: RHSA-2020:5567-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:5567 Issue date: 2020-12-16 CVE Names: CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 ==================================================================== 1. Summary: An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a later upstream version: postgresql (10.15). Security Fix(es): * postgresql: Reconnection can downgrade connection security settings (CVE-2020-25694) * postgresql: Multiple features escape "security restricted operation" sandbox (CVE-2020-25695) * postgresql: psql's \gset allows overwriting specially treated variables (CVE-2020-25696) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory,refer to: https://access.redhat.com/articles/11258 If the postgresql service is running, it will be automatically restarted after installing this update. 5. Bugs fixed (https://bugzilla.redhat.com/): 1894423 - CVE-2020-25694 postgresql: Reconnection can downgrade connection security settings 1894425 - CVE-2020-25695 postgresql: Multiple features escape "security restricted operation" sandbox 1894430 - CVE-2020-25696 postgresql: psql's \gset allows overwriting specially treated variables 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: postgresql-10.15-1.module+el8.3.0+8944+1ca16b1f.src.rpm aarch64: postgresql-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-contrib-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-contrib-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-debugsource-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-docs-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-docs-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-plperl-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-plperl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-plpython3-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-plpython3-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-pltcl-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-pltcl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-server-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-server-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-server-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-server-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-static-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-test-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-test-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-test-rpm-macros-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-upgrade-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-upgrade-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-upgrade-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm postgresql-upgrade-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.aarch64.rpm ppc64le: postgresql-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-contrib-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-contrib-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-debugsource-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-docs-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-docs-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-plperl-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-plperl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-plpython3-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-plpython3-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-pltcl-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-pltcl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-server-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-server-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-server-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-server-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-static-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-test-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-test-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-test-rpm-macros-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-upgrade-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-upgrade-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-upgrade-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm postgresql-upgrade-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.ppc64le.rpm s390x: postgresql-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-contrib-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-contrib-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-debugsource-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-docs-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-docs-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-plperl-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-plperl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-plpython3-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-plpython3-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-pltcl-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-pltcl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-server-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-server-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-server-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-server-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-static-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-test-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-test-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-test-rpm-macros-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-upgrade-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-upgrade-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-upgrade-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm postgresql-upgrade-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.s390x.rpm x86_64: postgresql-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-contrib-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-contrib-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-debugsource-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-docs-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-docs-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-plperl-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-plperl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-plpython3-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-plpython3-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-pltcl-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-pltcl-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-server-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-server-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-server-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-server-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-static-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-test-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-test-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-test-rpm-macros-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-upgrade-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-upgrade-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-upgrade-devel-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm postgresql-upgrade-devel-debuginfo-10.15-1.module+el8.3.0+8944+1ca16b1f.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-25694 https://access.redhat.com/security/cve/CVE-2020-25695 https://access.redhat.com/security/cve/CVE-2020-25696 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX9nEqtzjgjWX9erEAQiYPQ/+PLzn2TatIDCie7JOQ4ghB7Ruf65S2tIL WPnAVyd8WBYwCHdL60uwQauJZHS6z9dMqHFDiYWoMShMJUK+HuO+/gV4zKt5m9zR 7ZDfTZJ9TuFtML8KORf/4mKJfCZ2J2eM3luU+eQp/NnwlZ26BXdGvXigHV+eDxty 4H+MpOoZLyX3mcZjHPOAOn9224JS8xPv6VZdMfHVhvs1Q/7V/YcY8aRr3f0IrzLz M7gxqf7qjx+raNU8WCCT/QdBfOOU5vDh8ENM7MWQPi/grUslDvANfGLLZwZVVVJ+ jzKv+OkR1PvFOhnkHFTVoqap/F/md0V6suj+EIF0wP+4kVrdLORiY8QD9pxHT1jT 2vCfYSF5XFHkEHll7SSU0pE2csjBA90boPqcc8XQeKbRQAiu44eaxWNfcsVzsjVG gNcmbMpjIxnaDXZAx1qJS4O2n8aYLGxed0LGx3o3gpx4X3+RuuzS6aYASt0KXhYE cgB3gX/iHXnwbryCivTQ+9s/J3DVq2LvGQwffqgMIBkalXRO5RmmQstPXG/Nt2CV EPnn15VOMxZ6Cskd742QLpLLNr7vfzzIkqS1HupnM/L9Gfegxn3Aytg470wAPnN7 /ctm1K6CXKKmFaz9vAPVIH6hGCTjB2G9BLSgqWGcNisVo3PvNfRwBZeTfwr4r053 98mVZ6CDZvQ=uPHP -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 16, 2020
•Important
Red Hat
98
security advisorybuffer overflowRed Hat Enterprise LinuxRed Hat Enterprise Linux: RHSA-2020-1970-01 Important: Chromium Update
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: chromium-browser security update Advisory ID: RHSA-2020:1970-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://access.redhat.com/errata/RHSA-2020:1970 Issue date: 2020-04-29 CVE Names: CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 ==================================================================== 1. Summary: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, i686, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - i686, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, i686, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, i686, x86_64 3. Description: Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 81.0.4044.122. Security Fix(es): * chromium-browser: Out of bounds read and write in PDFium (CVE-2020-6458) * chromium-browser: Use after free in payments (CVE-2020-6459) * chromium-browser: Insufficient data validation in URL formatting (CVE-2020-6460) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s)listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Chromium must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1827379 - CVE-2020-6459 chromium-browser: Use after free in payments 1827380 - CVE-2020-6460 chromium-browser: Insufficient data validation in URL formatting 1827381 - CVE-2020-6458 chromium-browser: Out of bounds read and write in PDFium 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm i686: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm x86_64: chromium-browser-81.0.4044.122-1.el6_10.x86_64.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.x86_64.rpm Red Hat Enterprise Linux HPC Node Supplementary (v. 6): i686: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm x86_64: chromium-browser-81.0.4044.122-1.el6_10.x86_64.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm i686: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm x86_64: chromium-browser-81.0.4044.122-1.el6_10.x86_64.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v.6): i386: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm i686: chromium-browser-81.0.4044.122-1.el6_10.i686.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.i686.rpm x86_64: chromium-browser-81.0.4044.122-1.el6_10.x86_64.rpm chromium-browser-debuginfo-81.0.4044.122-1.el6_10.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-6458 https://access.redhat.com/security/cve/CVE-2020-6459 https://access.redhat.com/security/cve/CVE-2020-6460 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXqmfltzjgjWX9erEAQh6UhAAh6Ti/k10lH6jMdpcHI4JqL63ojDuh0aB UtoE1JYZoLw+mDBX1bs7k4HrbeuPAsZSirfQk9apwvJ1v+zq+l4a1eIyhWHVzvkg Z7JJCrl3t2qH9ISPquySmRkLrL5Td662bXUZvxh2J5/poM3mmGzCbxerwJihuEGu qqfuSt5kav1MT63L89cI7sf/9H1w75eQTHSlCoWYE7OVGtxP8/9KEblZQhVggqk0 d0hRBZOuStL73I65CPGdgNmTyzqA/OG0dazreJHa4/ycvfB3MGQftgPqvm26Ip3/ 6ucERlzArkRKDdLjl1CUeU6LbTG43trkDBoSRxP9ftsPBoIA9vLPrNhFrfOiL4UU /1oEKBos5giFvQMVc1Cj/2g284zSP0/5OfgTdwK/b1Ino8uu7Q1h290WZ/dJaawS y5GhP8QNPelF8kSNMiNVn5O0KEC7772VYCnT3w4hnkC87h3qxDBtCW6FQob+8Zs+ 9+IL5VtjW69jApH7mZ4CqZcWeTNFiOiZw19WV3O6jxuGzC4SEgUQUhb13zR3Xt9E /EBs31suQXEuBWPGjhNlw8axXmQqDiSCqt/XeRs11ZRLdzO0w+wG5mvcgX0wh/1W ThEwUVU7Rv0WK/B0m340IWAXWji/5SKGg5YGfcSBIphKQcYPgLn0A4mZdkIW7ZAM oEPid2oeQGw=h7un -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 29, 2020
•Important
Red Hat
98
security advisorydenial of servicekernel updateRed Hat Enterprise Linux 6.7 RHSA-2018:2925 Critical Kernel Security Update
An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2018:2925-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:2925 Issue date: 2018-10-16 CVE Names: CVE-2018-5391 CVE-2018-10675 CVE-2018-14634 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux HPC Node EUS (v. 6.7) - noarch, x86_64 Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7) - x86_64 Red Hat Enterprise Linux Server EUS (v. 6.7) - i386, noarch, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 6.7) - i386, ppc64, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive fragment reassembly algorithm by sending specially crafted packets which could lead to a CPU saturation and hence a denial of service on the system. (CVE-2018-5391) * kernel: mm: use-after-free in do_get_mempolicy functionallows local DoS or other unspecified impact (CVE-2018-10675) * kernel: Integer overflow in Linux's create_elf_tables function (CVE-2018-14634) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Juha-Matti Tilli (Aalto University - Department of Communications and Networking and Nokia Bell Labs) for reporting CVE-2018-5391 and Qualys Research Labs for reporting CVE-2018-14634. Bug Fix(es): * Previously, the kernel source code lacked support to report the Speculative Store Bypass Disable (SSBD) vulnerability status on IBM Power Systems. As a consequence, the /sys/devices/system/cpu/vulnerabilities/spec_store_bypass file incorrectly reported "Not affected". This fix updates the kernel source code to properly report the SSBD status either as "Vulnerable" or "Mitigation: Kernel entry/exit barrier (TYPE)", where TYPE is one of "eieio", "hwsync", "fallback", or "unknown". (BZ#1615873) * After updating the system to prevent the L1 Terminal Fault (L1TF) vulnerability, only one thread was detected on systems that offer processing of two threads on a single processor core. With this update, the "__max_smt_threads()" function has been fixed. As a result, both threads are now detected correctly in the described situation. (BZ#1625335) * Previously, a kernel panic occurred when the kernel tried to make an out of bound access to the array that describes the L1 Terminal Fault (L1TF) mitigation state on systems without Extended Page Tables (EPT) support. This update extends the array of mitigation states to cover all the states, which effectively prevents out of bound array access. Also, this update enables rejecting invalid, irrelevant values, that might be erroneously provided by the userspace. As a result, the kernel no longer panics in the described scenario. (BZ#1629634) 4. Solution: For details on how to apply this update, which includes the changes described in thisadvisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1575065 - CVE-2018-10675 kernel: mm: use-after-free in do_get_mempolicy function allows local DoS or other unspecified impact 1609664 - CVE-2018-5391 kernel: IP fragments with random offsets allow a remote denial of service (FragmentSmack) 1624498 - CVE-2018-14634 kernel: Integer overflow in Linux's create_elf_tables function 6. Package List: Red Hat Enterprise Linux HPC Node EUS (v. 6.7): Source: kernel-2.6.32-573.65.2.el6.src.rpm noarch: kernel-abi-whitelists-2.6.32-573.65.2.el6.noarch.rpm kernel-doc-2.6.32-573.65.2.el6.noarch.rpm kernel-firmware-2.6.32-573.65.2.el6.noarch.rpm x86_64: kernel-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-573.65.2.el6.i686.rpm kernel-debug-devel-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6.x86_64.rpm kernel-devel-2.6.32-573.65.2.el6.x86_64.rpm kernel-headers-2.6.32-573.65.2.el6.x86_64.rpm perf-2.6.32-573.65.2.el6.x86_64.rpm perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7): x86_64: kernel-debug-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6.x86_64.rpm perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm python-perf-2.6.32-573.65.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm Red Hat Enterprise Linux Server EUS (v.6.7): Source: kernel-2.6.32-573.65.2.el6.src.rpm i386: kernel-2.6.32-573.65.2.el6.i686.rpm kernel-debug-2.6.32-573.65.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debug-devel-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-573.65.2.el6.i686.rpm kernel-devel-2.6.32-573.65.2.el6.i686.rpm kernel-headers-2.6.32-573.65.2.el6.i686.rpm perf-2.6.32-573.65.2.el6.i686.rpm perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm noarch: kernel-abi-whitelists-2.6.32-573.65.2.el6.noarch.rpm kernel-doc-2.6.32-573.65.2.el6.noarch.rpm kernel-firmware-2.6.32-573.65.2.el6.noarch.rpm ppc64: kernel-2.6.32-573.65.2.el6.ppc64.rpm kernel-bootwrapper-2.6.32-573.65.2.el6.ppc64.rpm kernel-debug-2.6.32-573.65.2.el6.ppc64.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm kernel-debug-devel-2.6.32-573.65.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-573.65.2.el6.ppc64.rpm kernel-devel-2.6.32-573.65.2.el6.ppc64.rpm kernel-headers-2.6.32-573.65.2.el6.ppc64.rpm perf-2.6.32-573.65.2.el6.ppc64.rpm perf-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm s390x: kernel-2.6.32-573.65.2.el6.s390x.rpm kernel-debug-2.6.32-573.65.2.el6.s390x.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.s390x.rpm kernel-debug-devel-2.6.32-573.65.2.el6.s390x.rpm kernel-debuginfo-2.6.32-573.65.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-573.65.2.el6.s390x.rpm kernel-devel-2.6.32-573.65.2.el6.s390x.rpm kernel-headers-2.6.32-573.65.2.el6.s390x.rpm kernel-kdump-2.6.32-573.65.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-573.65.2.el6.s390x.rpm kernel-kdump-devel-2.6.32-573.65.2.el6.s390x.rpm perf-2.6.32-573.65.2.el6.s390x.rpm perf-debuginfo-2.6.32-573.65.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.s390x.rpm x86_64: kernel-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-573.65.2.el6.i686.rpm kernel-debug-devel-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6.x86_64.rpm kernel-devel-2.6.32-573.65.2.el6.x86_64.rpm kernel-headers-2.6.32-573.65.2.el6.x86_64.rpm perf-2.6.32-573.65.2.el6.x86_64.rpm perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm Red Hat Enterprise Linux Server Optional EUS (v.6.7): i386: kernel-debug-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-2.6.32-573.65.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-573.65.2.el6.i686.rpm perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm python-perf-2.6.32-573.65.2.el6.i686.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.i686.rpm ppc64: kernel-debug-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-573.65.2.el6.ppc64.rpm perf-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm python-perf-2.6.32-573.65.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.ppc64.rpm s390x: kernel-debug-debuginfo-2.6.32-573.65.2.el6.s390x.rpm kernel-debuginfo-2.6.32-573.65.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-573.65.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-573.65.2.el6.s390x.rpm perf-debuginfo-2.6.32-573.65.2.el6.s390x.rpm python-perf-2.6.32-573.65.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.s390x.rpm x86_64: kernel-debug-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6.x86_64.rpm perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm python-perf-2.6.32-573.65.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-573.65.2.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-5391 https://access.redhat.com/security/cve/CVE-2018-10675 https://access.redhat.com/security/cve/CVE-2018-14634 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/articles/3553061 https://access.redhat.com/security/vulnerabilities/mutagen-astronomy 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBW8Z6itzjgjWX9erEAQihmg/+ONhYRMfXI8p2Ej4My0OG2tlpgkFtWNaV 6mO9pCv/pNf93U7/F1Dp2SHMdTfTk4lvhI86dYGohvRTD0jqeLfi6zxBtPcD61wO gn1jLlTdN8a7/zbT3QxD6fnqBqsu7uftoV48PRwvf18NoiSBHkmTCAFqNO/J/etW Tsm8Wii+vdg727QDrWvfmYL4iIPIynrEvfTpFzksxyK/wqCaBduxp6LgLVGEQPkH 68zy7uXbzyNFvlOjmAdql/T5jWrJ9l4sfCkioPGYV0/2+6v+RT82plYJYAYNQc+f Zf7nlLaGI2Gxh207R0JpTdyLR7IM5mThLXm2Xjf0rm3XkYQN6/vEyG44RJWb1eEY yBRvY7Cm2G3+F2+pV5POLTjpzUr3kGjD5YkTTiYjby0i38/o8UWSwH+QJGkMv+wL tMOMH9AsQkE3srG0TQEVoyBYOcnYb5YFv/oy//uOHqX2E1DksVgV9CskQgOhyHuE X3pEdCAv6ai/r3nJxhoQuIj1kgUrBYa5zXkC/MDCUz4lhSOWNcjQXksRL3T4JQz/ rA44XSBvX5EB5YVtcLhYmMYBc+LBcTcJgR3iQtXgkiAnfEWAu6GznXQGjZANmrE+ oxbaxYtidRGbkhVayFUju44heYE3+Hh0hw3BoXICXkihE1BNI0WiBcBmzmsSNuUR ed0pFxszsPc=dvOf -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 16, 2018
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!