Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 10 articles for you...
100
security advisorycriticalimportantSUSE: 2024:2035-1 Important: OpenSSL Critical SSL Fix CVE-2024-4741
* bsc#1225551 Cross-References: * CVE-2024-4741 . # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2035-1 Rating: important References: * bsc#1225551 Cross-References: * CVE-2024-4741 CVSS scores: * CVE-2024-4741 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers. (bsc#1225551) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2035=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2035=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2035=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2035=1 * SUSE Linux Enterprise Server forSAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2035=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2035=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2035=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2035=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2035=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2035=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.91.1 *libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) *libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Enterprise Storage 7.1 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.91.1 * SUSE Enterprise Storage 7.1 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.91.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.91.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 *openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libopenssl-1_1-devel-1.1.1d-150200.11.91.1 * openssl-1_1-debuginfo-1.1.1d-150200.11.91.1 * libopenssl1_1-1.1.1d-150200.11.91.1 * libopenssl1_1-hmac-1.1.1d-150200.11.91.1 * openssl-1_1-debugsource-1.1.1d-150200.11.91.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.91.1 * openssl-1_1-1.1.1d-150200.11.91.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4741.html * https://bugzilla.suse.com/show_bug.cgi?id=1225551 . Important patch issued for openssl-1_1 enhancing security for specific SUSE systems. Addresses CVE-2024-4741 with significant severity ratings.. SUSE Security Advisory,Openssl Patch,SSL Security Fix,Security Update. . Severity: Important. LinuxSecurity.com Team
Jun 17, 2024
•Important
SuSE
100
security advisorymoderatesecurity updateSUSE: CU-2023:2769-1 Moderate: OpenSSL DoS Fix Advisory
The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2769-1 Container Tags : bci/bci-base:15.4 , bci/bci-base:15.4.27.14.90 , suse/sle15:15.4 , suse/sle15:15.4.27.14.90 Container Release : 27.14.90 Severity : moderate Type : security References : 1201519 1204844 1213517 1213853 CVE-2023-3817 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3397-1 Released: Wed Aug 23 18:35:56 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213517,1213853,CVE-2023-3817 This update for openssl-1_1 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. (bsc#1213853) - Don't pass zero length input to EVP_Cipher because s390x assembler optimized AES cannot handle zero size. (bsc#1213517) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3410-1 Released: Thu Aug 24 06:56:32 2023 Summary: Recommended update for audit Type: recommended Severity: moderate References: 1201519,1204844 This update for audit fixes the following issues: - Create symbolic link from /sbin/audisp-syslog to /usr/sbin/audisp-syslog (bsc#1201519) - Fix rules not loaded when restarting auditd.service (bsc#1204844) The following package changes have been done: - libaudit1-3.0.6-150400.4.13.1 updated - libopenssl1_1-hmac-1.1.1l-150400.7.53.1 updated - libopenssl1_1-1.1.1l-150400.7.53.1 updated - openssl-1_1-1.1.1l-150400.7.53.1 updated . Keep updated on SUSE Container Update Notification for suse/sle15, covering security updatesand corrections released in August 2023.. SUSE Container Update, OpenSSL Fix, Audit Update. . LinuxSecurity.com Team
Aug 30, 2023
SuSE
100
security advisorymoderate severityopenssl fixSUSE: 2023:2548-1 Moderate: bci/dotnet-sdk DoS Security Issue
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2548-1 Container Tags : bci/dotnet-sdk:6.0 , bci/dotnet-sdk:6.0-9.21 , bci/dotnet-sdk:6.0.20 , bci/dotnet-sdk:6.0.20-9.21 Container Release : 9.21 Severity : moderate Type : security References : 1213853 CVE-2023-3817 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3242-1 Released: Tue Aug 8 18:19:40 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213853,CVE-2023-3817 This update for openssl-1_1 fixes the following issues: - CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. (bsc#1213853) The following package changes have been done: - libopenssl1_1-1.1.1l-150500.17.15.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.15.1 updated - container:sles15-image-15.0.0-36.5.22 updated . Explore the latest SUSE Container Update Notice for bci/dotnet-sdk, highlighting recent patches and a significant OpenSSL fix categorized as moderate severity.. bci/dotnet-sdk, container update, OpenSSL security, SUSE advisory. . LinuxSecurity.com Team
Aug 10, 2023
SuSE
100
security advisorymoderateopenssl fixSUSE: 2023:2578-2 Moderate: bci/openjdk-devel Security Update
The container bci/openjdk-devel was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2467-1 Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-8.36 Container Release : 8.36 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - openssl-1_1-1.1.1l-150500.17.9.1 updated - container:bci-openjdk-11-15.5.11-9.17 updated . Essential Patches for bci/openjdk-devel and libxml2 within SUSE Container: Addressing Vulnerabilities.. SUSE Container, bci/openjdk-devel, security patch, openssl fix, libxml2 update. . LinuxSecurity.com Team
Jul 28, 2023
SuSE
100
security advisorymoderatesecurity updateSUSE: 2023:2457-1 Moderate: Toolbox Update for CVE-2023-3446
The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.4/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2457-1 Container Tags : suse/sle-micro/5.4/toolbox:12.1 , suse/sle-micro/5.4/toolbox:12.1-4.2.74 , suse/sle-micro/5.4/toolbox:latest Container Release : 4.2.74 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2962-1 Released: Tue Jul 25 09:34:53 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). The following package changes have been done: - libopenssl1_1-hmac-1.1.1l-150400.7.48.1 updated - libopenssl1_1-1.1.1l-150400.7.48.1 updated - openssl-1_1-1.1.1l-150400.7.48.1 updated - container:sles15-image-15.0.0-27.14.85 updated . Important SUSE Container Security Update Notification for toolbox responding to CVE-2023-3446 threat. Ensure safety with this patch.. SUSE Container Update, Toolbox Update, OpenSSL Fix. . LinuxSecurity.com Team
Jul 27, 2023
SuSE
100
security advisorymoderatesecurity patchSUSE 2023:2429-1 Moderate: bci/dotnet-aspnet Security Update
The container bci/dotnet-aspnet was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-aspnet ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2429-1 Container Tags : bci/dotnet-aspnet:6.0 , bci/dotnet-aspnet:6.0-10.16 , bci/dotnet-aspnet:6.0.20 , bci/dotnet-aspnet:6.0.20-10.16 Container Release : 10.16 Severity : moderate Type : security References : 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container bci/dotnet-aspnet was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - container:sles15-image-15.0.0-36.5.20 updated . SUSE Container Security Notice tackles vulnerabilities in bci/python and libcurl. Discover additional details about the patching process.. Container Updates, Dotnet Security, OpenSSL Fix, Libxml2 Patch. . LinuxSecurity.com Team
Jul 26, 2023
SuSE
100
security advisorydenial of servicesoftware updateSUSE: 2023:2130-0 Critical: bci/python3-devel Vulnerability Fix
The container bci/openjdk-devel was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2129-1 Container Tags : bci/openjdk-devel:17 , bci/openjdk-devel:17-8.13 , bci/openjdk-devel:latest Container Release : 8.13 Severity : important Type : security References : 1201627 1207534 1211430 CVE-2022-4304 CVE-2023-2650 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 29171 Released: Tue Jun 20 12:29:00 2023 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1201627,1207534,1211430,CVE-2022-4304,CVE-2023-2650 This update for openssl-1_1 fixes the following issues: - CVE-2023-2650: Fixed possible denial of service translating ASN.1 object identifiers (bsc#1211430). - CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption. The previous fix for this timing side channel turned out to cause a severe 2-3x performance regression in the typical use case (bsc#1207534). - Update further expiring certificates that affect tests (bsc#1201627) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2625-1 Released: Fri Jun 23 17:16:11 2023 Summary: Recommended update for gcc12 Type: recommended Severity: moderate References: This update for gcc12 fixes the following issues: - Update to GCC 12.3 release, 0c61aa720e62f1baf0bfd178e283, git1204 * includes regression and other bug fixes - Speed up builds with --enable-link-serialization. - Update embedded newlib to version 4.2.0 The following package changes have been done: - libgcc_s1-12.3.0+git1204-150000.1.10.1 updated -libstdc++6-12.3.0+git1204-150000.1.10.1 updated - libopenssl1_1-1.1.1l-150500.17.6.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.6.1 updated - openssl-1_1-1.1.1l-150500.17.6.1 updated - container:bci-openjdk-17-15.5.17-8.6 updated . SUSE Container Update Bulletin regarding bci/openjdk-devel incorporates critical security enhancements and fixes for known vulnerabilities.. bci/openjdk-devel update,SUSE Container Advisory,security update,OpenSSL fix,GCC performance. . Severity: Important. LinuxSecurity.com Team
Jun 26, 2023
•Important
SuSE
98
security advisoryimportant updateopenssl fixRHEL 7, 8, 9: RHSA-2023:3420 Important: JBoss Web Server Security Update
An update is now available for Red Hat JBoss Web Server 5.7.3 on Red Hat Enterprise Linux versions 7, 8, and 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: Red Hat JBoss Web Server 5.7.3 release and security update Advisory ID: RHSA-2023:3420-02 Product: Red Hat JBoss Web Server Advisory URL: https://access.redhat.com/errata/RHSA-2023:3420 Issue date: 2023-06-05 CVE Names: CVE-2022-4304 CVE-2022-4450 CVE-2023-0215 CVE-2023-0286 ==================================================================== 1. Summary: An update is now available for Red Hat JBoss Web Server 5.7.3 on Red Hat Enterprise Linux versions 7, 8, and 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat JBoss Web Server 5.7 for RHEL 7 Server - x86_64 Red Hat JBoss Web Server 5.7 for RHEL 8 - x86_64 Red Hat JBoss Web Server 5.7 for RHEL 9 - x86_64 3. Description: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.7.3 serves as a replacement for Red Hat JBoss Web Server 5.7.2. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References. Security Fix(es): * openssl: X.400 addresstype confusion in X.509 GeneralName (CVE-2023-0286) * openssl: timing attack in RSA Decryption implementation (CVE-2022-4304) * openssl: double free after calling PEM_read_bio_ex (CVE-2022-4450) * openssl: use-after-free following BIO_new_NDEF (CVE-2023-0215) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2164440 - CVE-2023-0286 openssl: X.400 address type confusion in X.509 GeneralName 2164487 - CVE-2022-4304 openssl: timing attack in RSA Decryption implementation 2164492 - CVE-2023-0215 openssl: use-after-free following BIO_new_NDEF 2164494 - CVE-2022-4450 openssl: double free after calling PEM_read_bio_ex 6. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): JWS-2933 - Update openssl from JBCS to versions from 2.4.51-SP2 7. Package List: Red Hat JBoss Web Server 5.7 for RHEL 7 Server: Source: jws5-tomcat-native-1.2.31-14.redhat_14.el7jws.src.rpm x86_64: jws5-tomcat-native-1.2.31-14.redhat_14.el7jws.x86_64.rpm jws5-tomcat-native-debuginfo-1.2.31-14.redhat_14.el7jws.x86_64.rpm Red Hat JBoss Web Server 5.7 for RHEL 8: Source: jws5-tomcat-native-1.2.31-14.redhat_14.el8jws.src.rpm x86_64: jws5-tomcat-native-1.2.31-14.redhat_14.el8jws.x86_64.rpm jws5-tomcat-native-debuginfo-1.2.31-14.redhat_14.el8jws.x86_64.rpm Red Hat JBoss Web Server 5.7 for RHEL 9: Source: jws5-tomcat-native-1.2.31-14.redhat_14.el9jws.src.rpm x86_64: jws5-tomcat-native-1.2.31-14.redhat_14.el9jws.x86_64.rpm jws5-tomcat-native-debuginfo-1.2.31-14.redhat_14.el9jws.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key 8. References: https://access.redhat.com/security/cve/CVE-2022-4304 https://access.redhat.com/security/cve/CVE-2022-4450 https://access.redhat.com/security/cve/CVE-2023-0215 https://access.redhat.com/security/cve/CVE-2023-0286 https://access.redhat.com/security/updates/classification#important 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBZH4i09zjgjWX9erEAQgxWA//Wm7ZnR6U0VS8NJjng/k9uyDc7YjCkrdT DrC1ULyCzfEOUDohfiondRtrb5N+yt7hzFvN2qEknVW5C3qn1qG2srr3Zh12nIsk kd/0MHuGflfTjCylWDE6tWgnkivfBTFGGJXocB+pIPaRoAnNFLs0Q5tfNMJ26EwH oG9MS5J5RT2RzjNmBxxor/LdZFkQwFdodeJT5ho1fLTLEnJeMaRGXGCQWJeTOg/e h7de4Tw3kg1bLY+AiGx+wWY6pGjnCqJdm7L8bMZneshX5E5+EPYuBeCp0PtJzdSZ bD35+uj608W1lexOgU5A3GRm25Wwun1A6Fx13DLqpYibWZ/D6b4rhVaWcvk1b/BN Yq+VutOzJ6JHz7kuYbsM/Xyq5rVgxcs0JyZK/hO4PleboV5OsibJKjCPBgdu7Rnr b6s2CrYC4tS1IZ1vV5aomSRVRRXmtluXKjDm4fn/TanvGXzb2yrsdXkdrDsCuQsQ jok3JoLpWIVeo4diOYd1NvHQqMWLHIv7zOAMoF8QRBonPi1uKdQL+pP9RcW9AaMv bl7EhfUigvd/VUFq1d+GEiero3BNcjqccsyqWfz+EIlAx2lOUtoWUaXb9e/06Ua8 PsEehSd8VmW++IxzQzR56HVUUDZS8IpeBB/AY0aDLgkH+xLJkvJMni83IwRa924P fxULyWvtSak=Dqds -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 05, 2023
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!