Story Saver for Instragram - Video Downloader 1.0.6 for Android has an exposed component that provides a method to modify the SharedPreference file. An attacker can leverage this method to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. When an attacker injects too much data, the application will trigger an OOM error and crash at startup, resulting in a persistent denial of service.

CVE-2023-29748

Microsoft Outlook Denial of Service Vulnerability

CVE-2022-35742

A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.

CVE-2023-2985

CVE-2022-35748

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

CVE-2022-35747

Windows Local Security Authority (LSA) Denial of Service Vulnerability

CVE-2022-35759

An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2022-4304: A timing-based side channel exists in the OpenSSL RSA Decryption implementation, which could be sufficient to recover a ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption, an attacker would have to be able to send a very large number of trial messages for decryption. This issue affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP, and RSASVE.
* CVE-2022-4450: A double-free vulnerability was found in OpenSSL's PEM_read_bio_ex function. The function PEM_read_bio_ex() reads a PEM file from a BIO and parses and decodes the "name" (for example, "CERTIFICATE"), any header data, and the payload data. If the function succeeds, then the "name_out," "header," and "data" arguments are populated with pointers to buffers containing the relevant decoded data. The caller is responsible for freeing those buffers. Constructing a PEM file that results in 0 bytes of payload data is possible. In this case, PEM_read_bio_ex() will return a failure code but will populate the header argument with a pointer to a freed buffer. A double-free will occur if the caller also frees this buffer. This will most likely lead to a crash. This could be exploited by an attacker who can supply malicious PEM files for parsing to achieve a denial of service attack.
* CVE-2023-0215: A use-after-free vulnerability was found in OpenSSL's BIO_new_NDEF function. The public API function BIO_new_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally by OpenSSL to support the SMIME, CMS, and PKCS7 streaming capabilities, but it may also be called directly by end-user applications. The function receives a BIO from the caller, prepends a new BIO_f_asn1 filter BIO onto the front of it to form a BIO chain, and then returns the new head of the BIO chain to the caller. Under certain conditions. For example, if a CMS recipient public key is invalid, the new filter BIO is freed, and the function returns a NULL result indicating a failure. However, in this case, the BIO chain is not properly cleaned up, and the BIO passed by the caller still retains internal pointers to the previously freed filter BIO. If the caller then calls BIO_pop() on the BIO, a use-after-free will occur, possibly resulting in a crash.


**Synopsis**

Moderate: openssl security update

**Type/Severity**

Security Advisory: Moderate

**Red Hat Insights patch analysis**

Identify and remediate systems affected by this advisory.

View affected systems

**Topic**

An update for openssl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.  

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

**Description**

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.  

Security Fix(es):  

*   openssl: timing attack in RSA Decryption implementation (CVE-2022-4304)
*   openssl: double free after calling PEM\_read\_bio\_ex (CVE-2022-4450)
*   openssl: use-after-free following BIO\_new\_NDEF (CVE-2023-0215)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

**Solution**

For details on how to apply this update, which includes the changes described in this advisory, refer to:  

https://access.redhat.com/articles/11258

For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.

**Affected Products**

*   Red Hat Enterprise Linux for x86\_64 - Extended Update Support 8.6 x86\_64
*   Red Hat Enterprise Linux Server - AUS 8.6 x86\_64
*   Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
*   Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
*   Red Hat Enterprise Linux Server - TUS 8.6 x86\_64
*   Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
*   Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
*   Red Hat Enterprise Linux for x86\_64 - Update Services for SAP Solutions 8.6 x86\_64

**Fixes**

*   BZ - 2164487 - CVE-2022-4304 openssl: timing attack in RSA Decryption implementation
*   BZ - 2164492 - CVE-2023-0215 openssl: use-after-free following BIO\_new\_NDEF
*   BZ - 2164494 - CVE-2022-4450 openssl: double free after calling PEM\_read\_bio\_ex

**Red Hat Enterprise Linux for x86\_64 - Extended Update Support 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

x86\_64

openssl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 45af165fade232ce1dee1f40fa2a23f85d82bc8cee4f47fa25226bdd89b310cb

openssl-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: b61441473f9581e3fcd73f5e63b3b216fd8280d7f37be7c435441d9eef82e112

openssl-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 6095fb89678f723fd3b6eac4c70aec620c0be35672d9987e54505742a411ae15

openssl-debugsource-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 6bdc601538c032bc2ffad0faef241bd42c2b5b78ff8aeb4ff19cbf2342483306

openssl-debugsource-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 19aef1d43ccc628d73edc3d173035c25d4a09985570cbff7006dac9ca1c85b2b

openssl-devel-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 14843be2fcaa07745c4a249c2c4c4622f6b07cfe0c396fce305929027c11fd53

openssl-devel-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 517b8ba885b5869b841fb55a68f00d35063a676b31eb935aeef7535a8de4585a

openssl-libs-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 960f4512af66f02d90460643923ceac9e18bf239c03ff4e665d6622e8784d1c1

openssl-libs-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 218b390ed038cf27278e6cd4c7c022be35339a4414a3094bc452eadf3e686048

openssl-libs-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 8052b333f7f0c02650299a0480c8ce9dc54c4a1124fd213866d8528568aec575

openssl-libs-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: d8f92911e8f69b64aaef2632631c285685542bf01b9c0ed4dac6e7d136be971d

openssl-perl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 5b6b5ce24036dca17852e533068b3fa6a9574de9b3bc9abe251aabe28f061181

**Red Hat Enterprise Linux Server - AUS 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

x86\_64

openssl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 45af165fade232ce1dee1f40fa2a23f85d82bc8cee4f47fa25226bdd89b310cb

openssl-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: b61441473f9581e3fcd73f5e63b3b216fd8280d7f37be7c435441d9eef82e112

openssl-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 6095fb89678f723fd3b6eac4c70aec620c0be35672d9987e54505742a411ae15

openssl-debugsource-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 6bdc601538c032bc2ffad0faef241bd42c2b5b78ff8aeb4ff19cbf2342483306

openssl-debugsource-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 19aef1d43ccc628d73edc3d173035c25d4a09985570cbff7006dac9ca1c85b2b

openssl-devel-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 14843be2fcaa07745c4a249c2c4c4622f6b07cfe0c396fce305929027c11fd53

openssl-devel-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 517b8ba885b5869b841fb55a68f00d35063a676b31eb935aeef7535a8de4585a

openssl-libs-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 960f4512af66f02d90460643923ceac9e18bf239c03ff4e665d6622e8784d1c1

openssl-libs-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 218b390ed038cf27278e6cd4c7c022be35339a4414a3094bc452eadf3e686048

openssl-libs-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 8052b333f7f0c02650299a0480c8ce9dc54c4a1124fd213866d8528568aec575

openssl-libs-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: d8f92911e8f69b64aaef2632631c285685542bf01b9c0ed4dac6e7d136be971d

openssl-perl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 5b6b5ce24036dca17852e533068b3fa6a9574de9b3bc9abe251aabe28f061181

**Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

s390x

openssl-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: 964774781a487d2e1953df2c360edc98389f50045390b8bf2833aa59eb05fb60

openssl-debuginfo-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: 2303f62e56e38197cd8c2a4c5b161a89418cbd04a42568028ba58ccfd0e8ba30

openssl-debugsource-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: be0359fd2e9001fd0bcf0d37e5b3fddd3c707cdc1626589529a180944f3c9760

openssl-devel-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: 2d8498edd06ae506f19bcf7e4273234d8f82cd785b95eb81664b36ac7d167fe4

openssl-libs-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: aa2b53c6296997658f8090a9b2b028fb77d6bacc7730e32f7a926b07d1b79ef8

openssl-libs-debuginfo-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: 515cd056d20ffafb5705dd4f82256366cd49b6cf0352f1ad635191ebafad64e2

openssl-perl-1.1.1k-9.el8\_6.s390x.rpm

SHA-256: a628452c4e80b5473b94489ec592ab595c20914c79361282df5c2a18fe97c73a

**Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

ppc64le

openssl-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: f52fbc17b87b279732f62a8c8c3a12410483926dc24e533d59c3dc1942ef359f

openssl-debuginfo-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: 7100ae33b73b182c5c834542c6c897e50f75a31aebf9ab60de403ce5276ccf68

openssl-debugsource-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: b55b3b57f8aac25352fdda50ecd73621037ddf3058a115b7a701a7132380b4f2

openssl-devel-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: d934db726df45deb814c70464501d987e4639ef9d7688305aeb4f885e96985ee

openssl-libs-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: 4b1bce7c435fb1535fd3289a583d00787db9a9c090d4e0ac49168d55c21ec295

openssl-libs-debuginfo-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: c8fa6cb0745c789d1783ae6326c3aa8de88f6f1b1600f711acf2ba8a4121166d

openssl-perl-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: ef5bb72af300b45d8bf232d60c6944dc11dd7f09836abe5d510777f32a3344ab

**Red Hat Enterprise Linux Server - TUS 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

x86\_64

openssl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 45af165fade232ce1dee1f40fa2a23f85d82bc8cee4f47fa25226bdd89b310cb

openssl-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: b61441473f9581e3fcd73f5e63b3b216fd8280d7f37be7c435441d9eef82e112

openssl-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 6095fb89678f723fd3b6eac4c70aec620c0be35672d9987e54505742a411ae15

openssl-debugsource-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 6bdc601538c032bc2ffad0faef241bd42c2b5b78ff8aeb4ff19cbf2342483306

openssl-debugsource-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 19aef1d43ccc628d73edc3d173035c25d4a09985570cbff7006dac9ca1c85b2b

openssl-devel-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 14843be2fcaa07745c4a249c2c4c4622f6b07cfe0c396fce305929027c11fd53

openssl-devel-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 517b8ba885b5869b841fb55a68f00d35063a676b31eb935aeef7535a8de4585a

openssl-libs-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 960f4512af66f02d90460643923ceac9e18bf239c03ff4e665d6622e8784d1c1

openssl-libs-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 218b390ed038cf27278e6cd4c7c022be35339a4414a3094bc452eadf3e686048

openssl-libs-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 8052b333f7f0c02650299a0480c8ce9dc54c4a1124fd213866d8528568aec575

openssl-libs-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: d8f92911e8f69b64aaef2632631c285685542bf01b9c0ed4dac6e7d136be971d

openssl-perl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 5b6b5ce24036dca17852e533068b3fa6a9574de9b3bc9abe251aabe28f061181

**Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

aarch64

openssl-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: 698e69c97e3d74fa3079ef1d5718700d6d4e23402565242fa93cd14da9bc5117

openssl-debuginfo-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: 4bef6bbc84ca8cb557aa287127a6f087e4145d01388002f45bf1ebd6366a86b6

openssl-debugsource-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: e18f0725309e8b4a11dcc2e915e65bc45d357909108bb5797833b323e8f251c6

openssl-devel-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: 7fbf3c89e670aa1565c28bc73bdb2fc328727896a49f47a257365d9bb479ef87

openssl-libs-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: 81ad26f1ce613e3670e009a275623403c00b3ca416a15c7ddfc82a5545e75de9

openssl-libs-debuginfo-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: a817e2005d34a6b1104d4a2c4aeaff0011cff49969b5b096d624812ce8ab33b6

openssl-perl-1.1.1k-9.el8\_6.aarch64.rpm

SHA-256: 011a7c0e868c99488c3da1d7df0614c7352ec83cb10416b420206fd1b8e24f5f

**Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

ppc64le

openssl-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: f52fbc17b87b279732f62a8c8c3a12410483926dc24e533d59c3dc1942ef359f

openssl-debuginfo-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: 7100ae33b73b182c5c834542c6c897e50f75a31aebf9ab60de403ce5276ccf68

openssl-debugsource-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: b55b3b57f8aac25352fdda50ecd73621037ddf3058a115b7a701a7132380b4f2

openssl-devel-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: d934db726df45deb814c70464501d987e4639ef9d7688305aeb4f885e96985ee

openssl-libs-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: 4b1bce7c435fb1535fd3289a583d00787db9a9c090d4e0ac49168d55c21ec295

openssl-libs-debuginfo-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: c8fa6cb0745c789d1783ae6326c3aa8de88f6f1b1600f711acf2ba8a4121166d

openssl-perl-1.1.1k-9.el8\_6.ppc64le.rpm

SHA-256: ef5bb72af300b45d8bf232d60c6944dc11dd7f09836abe5d510777f32a3344ab

**Red Hat Enterprise Linux for x86\_64 - Update Services for SAP Solutions 8.6**

SRPM

openssl-1.1.1k-9.el8\_6.src.rpm

SHA-256: 1304e95feab01cabe4f3140a5168f4e161daae4e1a65aab16de2c688cda85daf

x86\_64

openssl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 45af165fade232ce1dee1f40fa2a23f85d82bc8cee4f47fa25226bdd89b310cb

openssl-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: b61441473f9581e3fcd73f5e63b3b216fd8280d7f37be7c435441d9eef82e112

openssl-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 6095fb89678f723fd3b6eac4c70aec620c0be35672d9987e54505742a411ae15

openssl-debugsource-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 6bdc601538c032bc2ffad0faef241bd42c2b5b78ff8aeb4ff19cbf2342483306

openssl-debugsource-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 19aef1d43ccc628d73edc3d173035c25d4a09985570cbff7006dac9ca1c85b2b

openssl-devel-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 14843be2fcaa07745c4a249c2c4c4622f6b07cfe0c396fce305929027c11fd53

openssl-devel-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 517b8ba885b5869b841fb55a68f00d35063a676b31eb935aeef7535a8de4585a

openssl-libs-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 960f4512af66f02d90460643923ceac9e18bf239c03ff4e665d6622e8784d1c1

openssl-libs-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 218b390ed038cf27278e6cd4c7c022be35339a4414a3094bc452eadf3e686048

openssl-libs-debuginfo-1.1.1k-9.el8\_6.i686.rpm

SHA-256: 8052b333f7f0c02650299a0480c8ce9dc54c4a1124fd213866d8528568aec575

openssl-libs-debuginfo-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: d8f92911e8f69b64aaef2632631c285685542bf01b9c0ed4dac6e7d136be971d

openssl-perl-1.1.1k-9.el8\_6.x86\_64.rpm

SHA-256: 5b6b5ce24036dca17852e533068b3fa6a9574de9b3bc9abe251aabe28f061181

RHSA-2023:3408: Red Hat Security Advisory: openssl security update

Debian Linux Security Advisory 5417-1 - Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5417-1                   security@debian.org  
https://www.debian.org/security/                     Salvatore Bonaccorso  
May 31, 2023                          https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : openssl  
CVE ID         : CVE-2023-0464 CVE-2023-0465 CVE-2023-0466 CVE-2023-2650  
Debian Bug     : 1034720

Multiple vulnerabilities have been discovered in OpenSSL, a Secure  
Sockets Layer toolkit.

CVE-2023-0464

    David Benjamin reported a flaw related to the verification of X.509  
    certificate chains that include policy constraints, which may result  
    in denial of service.

CVE-2023-0465

    David Benjamin reported that invalid certificate policies in leaf  
    certificates are silently ignored. A malicious CA could take  
    advantage of this flaw to deliberately assert invalid certificate  
    policies in order to circumvent policy checking on the certificate  
    altogether.

CVE-2023-0466

    David Benjamin discovered that the implementation of the  
    X509_VERIFY_PARAM_add0_policy() function does not enable the check  
    which allows certificates with invalid or incorrect policies to pass  
    the certificate verification (contrary to its documentation).

CVE-2023-2650

    It was discovered that processing malformed ASN.1 object identifiers  
    or data may result in denial of service.

For the stable distribution (bullseye), these problems have been fixed in  
version 1.1.1n-0+deb11u5.

We recommend that you upgrade your openssl packages.

For the detailed security status of openssl please refer to its security  
tracker page at:  
https://security-tracker.debian.org/tracker/openssl

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmR3XbdfFIAAAAAALgAo  
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2  
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND  
z0Q57RAAnVKJS02ib/Uke98Kia//N7JAweY3jZ5IGluzGqms6di2Z9+1qW/qbjI+  
tGq2HdEd/ujN1+8hLciZN9U12Otkrt+Z//TvIJDBNd12sAiK6w5efVlIhESOW8z+  
nXxDBNsZv4ocqFcdWlXTaE1JQBd4MGULHsrItoczMwL1iiHfuvOxS7XqrttfGK2K  
WlnE3/uzmKJup77u4OnHxicTEaUGesV8fvv2uoI+gxkiQPZbEDLBINClDlhSgAae  
vMhrZrYLwS6vNZOG4fvDheHkd+3jO1YCv+742YeZbEfa6o3RXYGvLzSRNo5MhR/K  
N2/pxTHsRFaPlAxjys1UNGsZsIK7eZR0jyVRrF3PkbMgI4SVEyoqsI19i+viGoHY  
Ih6YkrSFxmQfK+1XDXS4RFOgVN900h4D/V/13udiswHShaFVsf4wu9SagmJtzR7X  
TzsphwZAbvxcqhaKdURgHoXaokMRxlO7vFijB1//Q+/uJJrkpLb+XTkN+SnujCSA  
48tAs3vnv9fki14+B6IQ9Tyg/Obhxk+z5Xb3W6H6xO1IfdmCibBvF77O8Q8uKIhD  
p3yhZeZY0VanKJMxquC3Yi0Ja6wbcJuww33/9/pqpTEdaoOnxb/wXNU0x2wIRBUL  
7IzNcmgVpQ1P3UhM58WZGOUS/0+IAtGfuEzZJiuWWKyV3hFvIEs=XKMH  
-----END PGP SIGNATURE-----

Debian Security Advisory 5417-1

Ubuntu Security Notice 6126-1 - It was discovered that libvirt incorrectly handled the nwfilter driver. A local attacker could possibly use this issue to cause libvirt to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. It was discovered that libvirt incorrectly handled queries for the SR-IOV PCI device capabilities. A local attacker could possibly use this issue to cause libvirt to consume resources, leading to a denial of service.

==========================================================================  
Ubuntu Security Notice USN-6126-1  
May 31, 2023

libvirt vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.04  
- Ubuntu 22.10  
- Ubuntu 22.04 LTS

Summary:

Several security issues were fixed in libvirt.

Software Description:  
- libvirt: Libvirt virtualization toolkit

Details:

It was discovered that libvirt incorrectly handled the nwfilter driver. A  
local attacker could possibly use this issue to cause libvirt to crash,  
resulting in a denial of service. This issue only affected Ubuntu 22.04  
LTS. (CVE-2022-0897)

It was discovered that libvirt incorrectly handled queries for the SR-IOV  
PCI device capabilities. A local attacker could possibly use this issue to  
cause libvirt to consume resources, leading to a denial of service.  
(CVE-2023-2700)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.04:  
   libvirt-daemon                  9.0.0-2ubuntu1.1  
   libvirt-daemon-system           9.0.0-2ubuntu1.1  
   libvirt0                        9.0.0-2ubuntu1.1

Ubuntu 22.10:  
   libvirt-daemon                  8.6.0-0ubuntu3.2  
   libvirt-daemon-system           8.6.0-0ubuntu3.2  
   libvirt0                        8.6.0-0ubuntu3.2

Ubuntu 22.04 LTS:  
   libvirt-daemon                  8.0.0-1ubuntu7.5  
   libvirt-daemon-system           8.0.0-1ubuntu7.5  
   libvirt0                        8.0.0-1ubuntu7.5

After a standard system update you need to reboot your computer to make all  
the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6126-1  
   CVE-2022-0897, CVE-2023-2700

Package Information:  
   https://launchpad.net/ubuntu/+source/libvirt/9.0.0-2ubuntu1.1  
   https://launchpad.net/ubuntu/+source/libvirt/8.6.0-0ubuntu3.2  
   https://launchpad.net/ubuntu/+source/libvirt/8.0.0-1ubuntu7.5

Ubuntu Security Notice USN-6126-1

Ubuntu Security Notice 6117-1 - It was discovered that Apache Batik incorrectly handled certain inputs. An attacker could possibly use this to perform a cross site request forgery attack. It was discovered that Apache Batik incorrectly handled Jar URLs in some situations. A remote attacker could use this issue to access files on the server. It was discovered that Apache Batik allowed running untrusted Java code from an SVG. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code.

    =========================================================================Ubuntu Security Notice USN-6117-1May 30, 2023batik vulnerabilities=========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.10- Ubuntu 22.04 LTS- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS- Ubuntu 16.04 LTS (Available with Ubuntu Pro)- Ubuntu 14.04 LTS (Available with Ubuntu Pro)Summary:Several security issues were fixed in Apache Batik.Software Description:- batik: SVG LibraryDetails:It was discovered that Apache Batik incorrectly handled certain inputs. Anattacker could possibly use this to perform a cross site request forgeryattack. (CVE-2019-17566, CVE-2020-11987, CVE-2022-38398, CVE-2022-38648)It was discovered that Apache Batik incorrectly handled Jar URLs in somesituations. A remote attacker could use this issue to access files on theserver. (CVE-2022-40146)It was discovered that Apache Batik allowed running untrusted Java code froman SVG. An attacker could use this issue to cause a denial of service,or possibly execute arbitrary code. (CVE-2022-41704, CVE-2022-42890)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.10:  libbatik-java                   1.14-2ubuntu0.1Ubuntu 22.04 LTS:  libbatik-java                   1.14-1ubuntu0.2Ubuntu 20.04 LTS:  libbatik-java                   1.12-1ubuntu0.1Ubuntu 18.04 LTS:  libbatik-java                   1.10-2~18.04.1Ubuntu 16.04 LTS (Available with Ubuntu Pro):  libbatik-java                   1.8-3ubuntu1+esm1Ubuntu 14.04 LTS (Available with Ubuntu Pro):  libbatik-java                   1.7.ubuntu-8ubuntu2.14.04.3+esm1In general, a standard system update will make all the necessary changes.References:  https://ubuntu.com/security/notices/USN-6117-1  CVE-2019-17566, CVE-2020-11987, CVE-2022-38398, CVE-2022-38648,  CVE-2022-40146, CVE-2022-41704, CVE-2022-42890Package Information:  https://launchpad.net/ubuntu/+source/batik/1.14-2ubuntu0.1  https://launchpad.net/ubuntu/+source/batik/1.14-1ubuntu0.2  https://launchpad.net/ubuntu/+source/batik/1.12-1ubuntu0.1  https://launchpad.net/ubuntu/+source/batik/1.10-2~18.04.1

Tag

#dos