Headline
RHSA-2023:1486: Red Hat Security Advisory: Red Hat Gluster Storage web-admin-build security update
An update is now available for Red Hat Gluster Storage 3.5 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Related CVEs:
- CVE-2022-24790: A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity.
- CVE-2022-30122: A denial of service flaw was found in ruby-rack. An attacker crafting multipart POST requests can cause Rack’s multipart parser to take much longer than expected, leading to a denial of service.
- CVE-2022-30123: A flaw was found in ruby gem-rack. This flaw allows a malicious actor to craft requests that can cause shell escape sequences to be written to the terminal via rack’s
Lint
middleware andCommonLogger
middleware. This issue can leverage these escape sequences to execute commands in the victim’s terminal. - CVE-2022-31129: A flaw was found in the Moment.js package. Users who pass user-provided strings without sanity length checks to the moment constructor are vulnerable to regular expression denial of service (ReDoS) attacks.
- CVE-2022-31163: A flaw was found in rubygem-tzinfo. When using the Timezone.get function, it fails to validate time zone identifiers correctly, allowing a new line character input within the identifier. This flaw allows an attacker to use the new line character and write any code, which will be executed within the Ruby process.
SRPM grafana-5.2.4-6.el7rhgs.src.rpm SHA-256: d8640733db675e15009b6d85092e180e739ab053bc4c65343011ffdf495b4b9c python-django-1.11.27-4.el7rhgs.src.rpm SHA-256: 47099ed0f1a12d210875c121cb55155ecf8b9311fbda157d08e65818a851173b ruby-2.4.9-94.el7rhgs.src.rpm SHA-256: 13f50717e2990600953f7122b4806ad8c3f2cb38f3c37bd151305620d19e8c8f rubygem-activemodel-5.2.0-1.el7rhgs.src.rpm SHA-256: 5e3206d66fa375f8b319a63219e9b261d9eea04c8648d618291fa7b4a6113884 rubygem-activesupport-5.2.0-1.el7rhgs.src.rpm SHA-256: 7265d2f03495851d124caa2c27a2fbd41b72004aac98069d75415dddeace70d9 rubygem-bcrypt-3.1.12-2.el7rhgs.src.rpm SHA-256: 174ea2e57d9bfa9fa17814645221bac48c135bd17db922e676df3820f983c350 rubygem-concurrent-ruby-1.1.9-1.el7rhgs.src.rpm SHA-256: f19d690dd6b8801f416b4b28f36a38d7e8b93a52efff1d34d673877f5a1ac228 rubygem-i18n-1.9.1-1.el7rhgs.src.rpm SHA-256: d23f116a952161da754e75dee9ab148163a8acbed245e0503b246a20f4411fff rubygem-mustermann-1.0.3-1.el7rhgs.src.rpm SHA-256: 02c95d51b9e5a4da6799db5af9f14f953f0872f54a17e44a844298419d9d9902 rubygem-nio4r-2.3.1-2.el7rhgs.src.rpm SHA-256: 39ba193db8a3b85e3089c6d3fdaa925be2851c409205d8b4e1e92259f7524099 rubygem-puma-4.3.12-1.el7rhgs.src.rpm SHA-256: cd98f2cc55870819b2e37bdc44c010d535833436e49f38b490c23f9a041e02c1 rubygem-rack-2.2.4-1.el7rhgs.src.rpm SHA-256: 939f876aa7fd20778e84ba0e0cf5ef17bc32e98f69c44d5767e4cc76ad571873 rubygem-rack-protection-2.2.0-1.el7rhgs.src.rpm SHA-256: 5da70a115885bc34512d8990c641d833472e9dfa5332cce3a101a003216c3be3 rubygem-sinatra-2.2.0-1.el7rhgs.src.rpm SHA-256: 0c2d325fead4b532656964d22ed7fd4948fc9edfe4ba73dc4fb36280bf0b6f3e rubygem-thread_safe-0.3.6-1.el7rhgs.src.rpm SHA-256: 01d1db02aed25d0caafd2bca90a6f35a7eebccdc960979491fc1e6362b3a7cb0 rubygem-tilt-2.0.11-1.el7rhgs.src.rpm SHA-256: 03183393ae02cd42c56b539260232146814ba227fb078a1b90d34c37085c3e54 rubygem-tzinfo-1.2.10-1.el7rhgs.src.rpm SHA-256: 8d3d7159c3813db6bbb3fc8641b1531fceb70a763379beb4370fe274eba47bcd x86_64 grafana-5.2.4-6.el7rhgs.x86_64.rpm SHA-256: 13eccd60453c107571ba82928225425ec54f24978495c01a8b7a3b3ac2d299fe python-django-bash-completion-1.11.27-4.el7rhgs.noarch.rpm SHA-256: 298992d589615745a38cd0911f4349bc21fb8be7647a3601d16def49f942b265 python2-django-1.11.27-4.el7rhgs.noarch.rpm SHA-256: d0737b5671cc2fa6d85b68622154e7dc53f87e867581d510d52129b98077c936 python2-django-doc-1.11.27-4.el7rhgs.noarch.rpm SHA-256: 2e34ebc8ec52bfcf7b0a379f7d1657d450fab29a9eecbb27952c6aceb4aecd68 ruby-2.4.9-94.el7rhgs.x86_64.rpm SHA-256: 8e1b726cd4c44464582e046ef16340230a6b699e158ef01d2a0c94ae479b2d75 ruby-debuginfo-2.4.9-94.el7rhgs.x86_64.rpm SHA-256: f9970787516bf2e9c3d21122986f532abfa8f22852ae348e3b599347e4d760ba ruby-devel-2.4.9-94.el7rhgs.x86_64.rpm SHA-256: d5cd12d6a51a730451944ddeb5a89da3a13d5edadaef85c1728151ea5fc7bc45 ruby-doc-2.4.9-94.el7rhgs.noarch.rpm SHA-256: a15f11f12062e15ecb8abd0838d61216197b0b3939c8f9c770340cbc7964f947 ruby-irb-2.4.9-94.el7rhgs.noarch.rpm SHA-256: b1108b884bc8c730b2b63deed5a0f100b80cb713420b6e8c03681a662a053a0f ruby-libs-2.4.9-94.el7rhgs.x86_64.rpm SHA-256: e7a2058c7db5c8d18083b9ae777cae29bddd491278540e7e536b6820d5e654b7 rubygem-activemodel-5.2.0-1.el7rhgs.noarch.rpm SHA-256: 3390eb051a1930cfa836c13103480acaa858b40f34eeba60fcc6833b8649a8a2 rubygem-activemodel-doc-5.2.0-1.el7rhgs.noarch.rpm SHA-256: 7fe07fe44fc99843a87674c0e7aab9756fe120df9ba658ca5af916974284a5ac rubygem-activesupport-5.2.0-1.el7rhgs.noarch.rpm SHA-256: 28d82d66d220b643d13b69ceeade1435419a63407cd9e79b301ef01642a31eaa rubygem-activesupport-doc-5.2.0-1.el7rhgs.noarch.rpm SHA-256: 10c695a7535c7dbd25a66f4684297b3f32fbc287908d948879937fb594ac0da4 rubygem-bcrypt-3.1.12-2.el7rhgs.x86_64.rpm SHA-256: 932ef1cb599bedb256a3921eaaecf833e05e5b63e56fe6190758bf4ac2f54d7b rubygem-bcrypt-debuginfo-3.1.12-2.el7rhgs.x86_64.rpm SHA-256: e5b31c49cfe71638528fa2da6fea1e2d86d4edf92a385d9b6c65d552d7bbb7a8 rubygem-bcrypt-doc-3.1.12-2.el7rhgs.noarch.rpm SHA-256: 364ad93149dbf38e9657e9b2e7a6e9ae80095245dfc3d09386123c1c7dbdb109 rubygem-bigdecimal-1.3.2-94.el7rhgs.x86_64.rpm SHA-256: 779064eb71b5a10dbcfc741917a84d4c38a39c9e4c95c70c0cc1ea2761aa7410 rubygem-concurrent-ruby-1.1.9-1.el7rhgs.noarch.rpm SHA-256: bcdbe02870eaffabbb44fe817abe2feb24dd61e95003feaf02390cd8f613d7e9 rubygem-concurrent-ruby-doc-1.1.9-1.el7rhgs.noarch.rpm SHA-256: 720c3eb001ca84af55d4a5b552d5c7c7efacc813796348697f2007a636f23ae0 rubygem-did_you_mean-1.1.0-94.el7rhgs.x86_64.rpm SHA-256: 4beff476f495d55f535e7e4dd05d0d23f2bc5be22202aa6df90914a9822f86f1 rubygem-i18n-1.9.1-1.el7rhgs.noarch.rpm SHA-256: 12f0ead709c5759c1da6dec828b2dd78013ff05bd70b21f369d6fc2209982cb7 rubygem-i18n-doc-1.9.1-1.el7rhgs.noarch.rpm SHA-256: ec610635166cc7e1a373ab5e91482a3fbe0a1fd318f35ef486751f2693b79faa rubygem-io-console-0.4.6-94.el7rhgs.x86_64.rpm SHA-256: fd56b5faaebe66a53f0918c538b5d4bf3cfd28d0062b4a863cee97cba6cfd4a0 rubygem-json-2.0.4-94.el7rhgs.x86_64.rpm SHA-256: de1b605434ff8b5205f7cf87eb3703b830eb6dfc3006519b448acb67b3ffcfa4 rubygem-minitest-5.10.1-94.el7rhgs.noarch.rpm SHA-256: 370a847f6f67e90b72e2cdeb27cce7b85ba0b2f43c52730f17fc9c6760abe283 rubygem-mustermann-1.0.3-1.el7rhgs.noarch.rpm SHA-256: e88c82e432842ca31ae10b0f86848b7a8ef80719662fecfdb2f063ebc5f20829 rubygem-mustermann-doc-1.0.3-1.el7rhgs.noarch.rpm SHA-256: 4538e3bff7637049943da4e15ade438ae8fff2bedc8a920212b7b88684c4403a rubygem-net-telnet-0.1.1-94.el7rhgs.x86_64.rpm SHA-256: e1eb308a8987858772a994d59647913f573f2f4ba8d1050ea33e9537f84575a1 rubygem-nio4r-2.3.1-2.el7rhgs.x86_64.rpm SHA-256: 30b93bd58005bd701435093048cc5806c8995a49db1616dd9312f39fcf74b643 rubygem-nio4r-debuginfo-2.3.1-2.el7rhgs.x86_64.rpm SHA-256: 9421c6c3366b5a8b2c412746867c4a5755548d9e94e4d716f2c6e22ce1521d1e rubygem-nio4r-doc-2.3.1-2.el7rhgs.noarch.rpm SHA-256: 786c8579c84232ebe25cd4422069a0ed474e4f52392c83e21cc7a9f35e840532 rubygem-openssl-2.0.9-94.el7rhgs.x86_64.rpm SHA-256: 7133189ecbf9d46ac2eeb0d3d6c5e05b0f00cad1457c8ea31faafd279cb10665 rubygem-power_assert-0.4.1-94.el7rhgs.noarch.rpm SHA-256: 6d8ffcccbf5428accc1e1698400c85e61467d6e61a352487ebb068b6c09702b0 rubygem-psych-2.2.2-94.el7rhgs.x86_64.rpm SHA-256: 69f11ba6b159690396e3f9d81fe5f2a97d3ba5f61bf1000e7b94f536d2bc4af8 rubygem-puma-4.3.12-1.el7rhgs.x86_64.rpm SHA-256: 0849590b8db9b3b08401f617c11b34df0336c9d438808948ae512b83b40b8e9d rubygem-puma-debuginfo-4.3.12-1.el7rhgs.x86_64.rpm SHA-256: 1dc9177302bb7d4a15e52d6fce492c2515b7f7dca464b4358f2077ea903737c4 rubygem-puma-doc-4.3.12-1.el7rhgs.noarch.rpm SHA-256: eef55cde0d671a2c37a8f9ffa8742e0a5e3f1a7912ab23a0f3b384601fedb178 rubygem-rack-2.2.4-1.el7rhgs.noarch.rpm SHA-256: 656155d9b7f90a7a0e07b781202923b7d7c3331514d73a3278f58abda260f864 rubygem-rack-doc-2.2.4-1.el7rhgs.noarch.rpm SHA-256: 1af610b70e0e541641d4775115a8e7fca3c223b68aaf3038a29fdd2a84f3c4f4 rubygem-rack-protection-2.2.0-1.el7rhgs.noarch.rpm SHA-256: f2010c75212fe317635255796d56ebabcf3c89d686f03410a08ce680cf04e639 rubygem-rack-protection-doc-2.2.0-1.el7rhgs.noarch.rpm SHA-256: e0e5e279246201df74aad6d3e04fbf6d8625ef6d80864ed8736b51b0178a7daf rubygem-rake-12.0.0-94.el7rhgs.noarch.rpm SHA-256: 955cc7a86ab017789dc3ba5bf5a934a5354878396163a310f95303c0fea5f810 rubygem-rdoc-5.0.1-94.el7rhgs.noarch.rpm SHA-256: 0710baec29e8119dce704dcfa94a3d7b800fab5ddd306d03f80e93318e77d926 rubygem-sinatra-2.2.0-1.el7rhgs.noarch.rpm SHA-256: 98f67d9d5fe59f90aee29d49da8562b0d1785d22add673cf663a8ed85c271226 rubygem-sinatra-doc-2.2.0-1.el7rhgs.noarch.rpm SHA-256: 50fdaab1aed6a63616ede69f04f4040a98fc350b48edae195df51bd1d9e95a32 rubygem-test-unit-3.2.3-94.el7rhgs.noarch.rpm SHA-256: ed2f042ceed1610d87a5ce9a0201c8932f42fbdec68ccef6716bb1b8f6fb02ac rubygem-thread_safe-0.3.6-1.el7rhgs.noarch.rpm SHA-256: fb3464da7f325a1b5ac38d0cfee7b4fa654d66161a951348b128995d74fd3b04 rubygem-thread_safe-doc-0.3.6-1.el7rhgs.noarch.rpm SHA-256: 58faab96417f4f0ed748db38327e63f7d3f74d9958f0db4a4a2452471fada280 rubygem-tilt-2.0.11-1.el7rhgs.noarch.rpm SHA-256: e0963152facb2cd5669870940cbfe6f017501ea3b3b60dc248481ccb891b6e7a rubygem-tilt-doc-2.0.11-1.el7rhgs.noarch.rpm SHA-256: af8ac44a130fe59a47add5a271585b3c950ed241fafa381ed5de4870e4af2f37 rubygem-tzinfo-1.2.10-1.el7rhgs.noarch.rpm SHA-256: 0956a1f386235da5ae6bf10f77899d4643991172261c7c7aefb755130b3f17b3 rubygem-tzinfo-doc-1.2.10-1.el7rhgs.noarch.rpm SHA-256: ed99dedbe3d84f9908a07c96ce7058b7d232f9ae016410a729fd9b9583c7f467 rubygem-xmlrpc-0.2.1-94.el7rhgs.noarch.rpm SHA-256: cb18ce712a9284a6210e2176f91aa86df483b5eed9aaabd42e7db331e4a4f657 rubygems-2.6.14.4-94.el7rhgs.noarch.rpm SHA-256: d862d2693acf0bb87c7a8a40765c7d496872f5b6f7263945d3d2ceab761fd633 rubygems-devel-2.6.14.4-94.el7rhgs.noarch.rpm SHA-256: d9fe40fdfeae9bcac3c4a4292384b8d58121aea9d510b80cbf9ddcc7ea055aba