Red Hat Security Advisory 2023-0170-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0170-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0170  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.6) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.6):

Source:  
dpdk-21.11-2.el8_6.src.rpm

aarch64:  
dpdk-21.11-2.el8_6.aarch64.rpm  
dpdk-debuginfo-21.11-2.el8_6.aarch64.rpm  
dpdk-debugsource-21.11-2.el8_6.aarch64.rpm  
dpdk-devel-21.11-2.el8_6.aarch64.rpm  
dpdk-tools-21.11-2.el8_6.aarch64.rpm

noarch:  
dpdk-doc-21.11-2.el8_6.noarch.rpm

ppc64le:  
dpdk-21.11-2.el8_6.ppc64le.rpm  
dpdk-debuginfo-21.11-2.el8_6.ppc64le.rpm  
dpdk-debugsource-21.11-2.el8_6.ppc64le.rpm  
dpdk-devel-21.11-2.el8_6.ppc64le.rpm  
dpdk-tools-21.11-2.el8_6.ppc64le.rpm

x86_64:  
dpdk-21.11-2.el8_6.x86_64.rpm  
dpdk-debuginfo-21.11-2.el8_6.x86_64.rpm  
dpdk-debugsource-21.11-2.el8_6.x86_64.rpm  
dpdk-devel-21.11-2.el8_6.x86_64.rpm  
dpdk-tools-21.11-2.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoO9zjgjWX9erEAQguXQ/+NvbLX/ACdYycNzSnrwqAc1nRtyhfwaJn  
pLNALAOQ+LQOCxTMb7IlKAZJlxqDTnKi3Wqwh1QM/ea99U+pb2qjrvyT2+3TuVV+  
CVQCUG1qmCk4dpB+uFdJRQAukliL37lvMVhKsGkUQKfTIQGlX3ho6kWzwiF4n767  
AI8Zga5ApbUFsAVpYfPiCYBjuqg3qBeZWuTVuQwt0CK+H4ztwFf6kK1htSF0jtSU  
sYcAOs0GGMY3lL1uIxwFfTvaIgQVcp15S+aC0d4chuzwbbocgdzG3WhugAPp2eXe  
daO3xS40IZfwfgSqNKc5KSYUS0yxc5NQDIT81VPeQEmbk8PScBitbd/l+GKS+aCk  
NITMDNzeYnA2+FGmiUf0tmj6wj6hD4aJV+X8LDFsYQJ2UEG3U0emJXHuHkV1lOa0  
Pt7UG1yHVnlBPMUX88ssffWzv0T578pm2o2SiToUGrkk4O7CS74p8E14U1x0JGG3  
pfsIj6Brz9eub90u/zQrOcCs0SRy1QjOxMp5Ep2Quz3RrMtBZLBoeor9FbJSlJvc  
Yr7+bxV4h1ntbvJ1BtuAWA/UckXPND4TMx936cWzU92SK4s5XQtp6fOTB9BZo13Z  
Hu8LBFoAiWU/qPb+9wjhM3CAL2dS35Ius+AkuCGxBCvWKTfI2/zkAAzvtZ+appob  
yRnOLG/bu94=  
=Vh97  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0170-01

Debian Linux Security Advisory 5318-1 - Igor Ponomarev discovered that LAVA, a continuous integration system for deploying operating systems onto physical and virtual hardware for running tests, was suspectible to denial of service via recursive XML entity expansion.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5318-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJanuary 13, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : lavaCVE ID         : CVE-2022-44641Debian Bug     : 1024429Igor Ponomarev discovered that LAVA, a continuous integration system fordeploying operating systems onto physical and virtual hardware forrunning tests, was suspectible to denial of service via recursive XMLentity expansion.For the stable distribution (bullseye), this problem has been fixed inversion 2020.12-5+deb11u2.We recommend that you upgrade your lava packages.For the detailed security status of lava please refer toits security tracker page at:https://security-tracker.debian.org/tracker/lavaFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmPBriMACgkQEMKTtsN8Tjb+Lg/+IVAyMN6JpvfoVw2690mMigg4NeEhvy/+88hj8FbEpCdfORD3TOp2t6Asy+QIoE0ZAoOBN6JlHs4uK8k0PVzmHrho4Vp3LNB6RG4ppen4hyHRy5FOWJgXVicnqCYFOOGZk1M5LQq6nRpcl7iPK42jNwKEeJ5Z9vCPzoPfqeMN2ZsDKsKtGtcsu20sS4D9egjRiFl0VeGYx9DmKGZkgLBe1DdTq8IL3IDybqaXt6/CnqKj7TfUVvh0oX739WKZO9MgNiu/Aa8obumb/jbVvqxXo+3OfNeKtjcQKZhVRvUqt7CRpJwmmQpxkrxuFLhuz4nLy8Bu97CjMX8Jf+AEbhJ4PqBUinEIyQV1bICdWJw1rXjwPPHkXtnbtaMrAY/N0wJM4J4/Seu6x2P+I7Ftf/2/5Z4ltzmWIsPrLos81fFMKE5P/Objp1A8OEnHH1YeErae9HTZsvqr02DQErfR9mIaEJR6HryAIqxZsirXVzDFpL2cIbNVjCpiDsqAydCr30EvYIAmusdQ4egck0aN/1p1WAN7jcSQlw0Go4dutCJ1MYNbP8gB6tS+2xbZC+lGujr7Zmb1jpKl1ivZpOCXzqRYbWgBzgryf1g9GzH1a7r0pxCKvtTAzO9npEIusO0wPSQzpW9VmvAlPiAFj9EUF7ZWgfR/WdOkjJm9oT8dOANbGOg==88Fg-----END PGP SIGNATURE-----

Debian Security Advisory 5318-1

Red Hat Security Advisory 2023-0166-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0166-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0166  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.2  
Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications  
Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP  
Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream AUS (v. 8.2) - aarch64, noarch, ppc64le, x86_64  
Red Hat Enterprise Linux AppStream E4S (v. 8.2) - aarch64, noarch, ppc64le, x86_64  
Red Hat Enterprise Linux AppStream TUS (v. 8.2) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream AUS (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

Red Hat Enterprise Linux AppStream E4S (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

Red Hat Enterprise Linux AppStream TUS (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoONzjgjWX9erEAQiPUg//fJLYK3gpMa2os5l4ABXNOY9SivH2wva8  
q6DtUTk5Y5/gKesCvPKB+fOKLgutGp0yDMKku+5nHiSc2YYiVPeXvfRQi6BbmqWz  
Pc8bYdbgfp/OBvTIihNLu7RoxSAJRMhd+nOO5zBUsj151cEmZ9n76VT6PartLrNI  
7RT+YsfaSHMgcezQCd7iKDdz0yi0iW6vDJ41rkLt59rksHDFWXfBcypIMDMp1Abt  
6QPg7vUcNTzk4PGI+qLdSlkD0pdgewQ03AXKuPMuVF8Do4F+hSiLURx+urRPgKZ0  
0VWEsER/ZoVl5CSCHBiYi4Y/2xR0fWaVb8G9hIMUNcHnSv/VCAj7OV66yersmkoM  
ium3yU9NpuXfVLhYkt9VGb88hKhX/VqlVLGC/LvkvrsC9VKFaxjJRvnwF3QNvO9u  
UOGKb4RSVpsaFzzxPMPu51zk3oyjnlckFOv4sTBsfdMpT4+uAmtLsbzKNoj8wln7  
AZbN1uIIMF6KAQs32+IRx3QvagiDMOHVXAODgKkYG4zt9t72LL576j0nAb6YWuy5  
ODVu5lxigonmiwv4+TwC9WeOlTgEm6/XA6otiPu0aYZsjkT4hRBoTGHvsufD//B8  
Le8m2DIBPDn3uTMB5ctw1+FM49MMhjVKrMIB4vjuPT+cKZcGJvsrKaVF/uBjLsyE  
2uczwphtQj0=  
=BEkm  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0166-01

Red Hat Security Advisory 2023-0169-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0169-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0169  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.4):

Source:  
dpdk-20.11-4.el8_4.src.rpm

aarch64:  
dpdk-20.11-4.el8_4.aarch64.rpm  
dpdk-debuginfo-20.11-4.el8_4.aarch64.rpm  
dpdk-debugsource-20.11-4.el8_4.aarch64.rpm  
dpdk-devel-20.11-4.el8_4.aarch64.rpm  
dpdk-tools-20.11-4.el8_4.aarch64.rpm

noarch:  
dpdk-doc-20.11-4.el8_4.noarch.rpm

ppc64le:  
dpdk-20.11-4.el8_4.ppc64le.rpm  
dpdk-debuginfo-20.11-4.el8_4.ppc64le.rpm  
dpdk-debugsource-20.11-4.el8_4.ppc64le.rpm  
dpdk-devel-20.11-4.el8_4.ppc64le.rpm  
dpdk-tools-20.11-4.el8_4.ppc64le.rpm

x86_64:  
dpdk-20.11-4.el8_4.x86_64.rpm  
dpdk-debuginfo-20.11-4.el8_4.x86_64.rpm  
dpdk-debugsource-20.11-4.el8_4.x86_64.rpm  
dpdk-devel-20.11-4.el8_4.x86_64.rpm  
dpdk-tools-20.11-4.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoNtzjgjWX9erEAQhZiw/7BNxquW60ziguCCbiK96myof2Z8wxs3KH  
OTicfAnmntkyGKGbAcLh6SerQxVa8TrIjBygFlxw7OgO6DN3fpcgUzPMhcGTtIn0  
Xutiliib0tUIFsZ/LS9RNMt9FQzYgadbknCU1Xi+wNHNkRMVh0WY6KNUwP3jq+tp  
7+HH8irZr44YOz0ZGypqIGjtsBz6ETvRcuQZvF5A5dey1sH0+Wre/EY9v6L72ItP  
jmhnz3I7lNffB32jCA6ek5zp6Ttp2h2yHotsm/SHxZ6zooj2PTbN0i+EFUWvJFGH  
CaI/Jf7hZtboyEWE6wFrrCB2e6MczAve8fKpqty8EEGX1zcKh4Rzxefn5/ue/jBB  
P3p1Gib01QfgilfGZFWyfzYIzA67YojhlEw9JRDReQdE0vGR19x2e97S7uT/stt0  
cAzdm4S/qmlH+SDk8aHeLQgKdh9mMCNzIRd+/xS1d6ZBmY9ajmefMSwTd/Al70i9  
+28/NF0lhJbe0EqWa2cCIWRUidPrcoAFsTNlaZbH0VlHjwAGmGp7BlaV8F2PPP7k  
g431UwgFG2u/fcTYsSJ3WHIckTNc3f33sIyLvGivVx6xveILRzqjm+mkaMhY/+R4  
Ie0nYoB7XAk+orAQc0CXHH5iex2xeXKkrGph2tov21TrxC1rV6YB60dXLSNxHgmK  
bnremio5wsY=  
=Iw/w  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0169-01

Debian Linux Security Advisory 5317-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5317-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJanuary 13, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2023-0141 CVE-2023-0140 CVE-2023-0139 CVE-2023-0138                 CVE-2023-0137 CVE-2023-0136 CVE-2023-0135 CVE-2023-0134     CVE-2023-0133 CVE-2023-0132 CVE-2023-0131 CVE-2023-0130     CVE-2023-0129 CVE-2023-0128Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.For the stable distribution (bullseye), this problem has been fixed inversion 109.0.5414.74-2~deb11u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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11U3-----END PGP SIGNATURE-----

Debian Security Advisory 5317-1

Red Hat Security Advisory 2023-0171-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0171-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0171  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
dpdk-21.11-2.el8_7.src.rpm

aarch64:  
dpdk-21.11-2.el8_7.aarch64.rpm  
dpdk-debuginfo-21.11-2.el8_7.aarch64.rpm  
dpdk-debugsource-21.11-2.el8_7.aarch64.rpm  
dpdk-devel-21.11-2.el8_7.aarch64.rpm  
dpdk-tools-21.11-2.el8_7.aarch64.rpm

noarch:  
dpdk-doc-21.11-2.el8_7.noarch.rpm

ppc64le:  
dpdk-21.11-2.el8_7.ppc64le.rpm  
dpdk-debuginfo-21.11-2.el8_7.ppc64le.rpm  
dpdk-debugsource-21.11-2.el8_7.ppc64le.rpm  
dpdk-devel-21.11-2.el8_7.ppc64le.rpm  
dpdk-tools-21.11-2.el8_7.ppc64le.rpm

x86_64:  
dpdk-21.11-2.el8_7.x86_64.rpm  
dpdk-debuginfo-21.11-2.el8_7.x86_64.rpm  
dpdk-debugsource-21.11-2.el8_7.x86_64.rpm  
dpdk-devel-21.11-2.el8_7.x86_64.rpm  
dpdk-tools-21.11-2.el8_7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoM9zjgjWX9erEAQhx9g/9F3SAUKPo+ITUwnYIr1s5P3jP7dT64XnJ  
y0Ea1QbdgJkCjKqSlwvNWtLIxo3o4/8ByPkcmX3rsEE3KKjAF5dYktqb+OA51j9M  
v+bfMp0vksxeJbLsMB+a5L9GYcNzihYsqfir/v5d71w3KjMPq6DJVAobR6pxgYTe  
JTl/B23XARbXHeRgaFEzeiJKUku07w7857aqOPulfo9WgqwVuuJ+bPu2Ka+meJO9  
iNMgJNm1NGQBfkh73yqJpud0+UiQqSGiTTKWkx4l7yGA1ZfJjxLEG6/rV+lMkdG8  
j9WkUi9r7PqL8e2+tUUpJHf5MZt4nLot7Y2zwuZW1TGVjhHvKC/dkSWvIGQCgPAF  
I04waIPiIFB/CkF3nQN8dg+Ybjv5LAzAYX6RP4cQ65lwO4vy3elhNUv+K202cIN9  
El7sqfjI44M0lSrdGBp6UO1SRch4cRJSZwac6sRWGxLQra7Wb2cbaf2fYPeqxo+Q  
6f5nBUD4SnfuDRjOLRsMLyguG5CWv+BoLvM7xAvh7EM7j4Q3TPwvnNRwXit6cmgo  
kCzSeVKFxI+Funojbw4VzzAeQqlsK94xmOKLTuVCu0OXFEoUk+GbksJ2H8p57Q30  
x0uy39EgaYOGrSD7xwhSs87S+Fe/kvgT1BMYl7BWua6ujv4ekzkl/AHJpOE5hhOQ  
sqrzlyZmKqg=  
=4WKa  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0171-01

Red Hat Security Advisory 2023-0172-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0172-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0172  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 9.0  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.9.0) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.9.0):

Source:  
dpdk-21.11-2.el9_0.src.rpm

aarch64:  
dpdk-21.11-2.el9_0.aarch64.rpm  
dpdk-debuginfo-21.11-2.el9_0.aarch64.rpm  
dpdk-debugsource-21.11-2.el9_0.aarch64.rpm  
dpdk-devel-21.11-2.el9_0.aarch64.rpm  
dpdk-tools-21.11-2.el9_0.aarch64.rpm

noarch:  
dpdk-doc-21.11-2.el9_0.noarch.rpm

ppc64le:  
dpdk-21.11-2.el9_0.ppc64le.rpm  
dpdk-debuginfo-21.11-2.el9_0.ppc64le.rpm  
dpdk-debugsource-21.11-2.el9_0.ppc64le.rpm  
dpdk-devel-21.11-2.el9_0.ppc64le.rpm  
dpdk-tools-21.11-2.el9_0.ppc64le.rpm

x86_64:  
dpdk-21.11-2.el9_0.x86_64.rpm  
dpdk-debuginfo-21.11-2.el9_0.x86_64.rpm  
dpdk-debugsource-21.11-2.el9_0.x86_64.rpm  
dpdk-devel-21.11-2.el9_0.x86_64.rpm  
dpdk-tools-21.11-2.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoMNzjgjWX9erEAQj64A/9FKP6Tln09aEeBRjlzNUHTQATD8SVws1b  
BytqCQ3LP6hmd8LDJ4OF7LBJQKuS7AS216SyL/V0oyqyz+YwKklJD6dX0rV+EMeA  
BDR1zw/DOHTOD+TNNbcs8LSJANp4WNXzq3h1+VWX4l2QuREpwfhT/PeYVFe17cOa  
p3V4jBaciGjQ+qUmzqYJcaLkFWicOLtx4QOctG623V8KNuLMiqTWXtKHmotx3poO  
e6i4Ld3j7quwz3T6h+j33d/5dzzzoJSuEOZxt1M7QuyUYeTfEseKfzusdYuSihNA  
svNLzQouLsyve73NCRW4JJ4pR1S4p+RlKRc9LEAAJ/WuXojjedhdyaEC+DKzoNC/  
D4OideGh3DAPs0rX3B7vpJ7ivY5l6EMshQfxky/BUUuYgafPNuZR+C5l5wElxbqW  
kuGQQshkF8f0smQ8C8bbC0mBneeROlTi8Yc8u1QA0GjBNfTrx1utokA1Vggpy1uB  
GsTdnk/sFUuOuRIz/7XFj4c44oDnBIJ7FZ5VfGVJIPCJ0pM3158gucWT1k0zRB7r  
uFnFkxUuk5E6bg7lEEtxwxaX6KfuK0PpcgPEZrgfcLyaijNADIepHLvKvUxv716K  
0Rcot8/SU7KKehWM0SjtSE0HYd4c0bgS0lI7bUeHNv8Uu4nho4Xrr5mfan055hJJ  
ddsYqcuL5O4=  
=nIkf  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0172-01

Active debug code exists in OMRON CP1L-EL20DR-D all versions, which may lead to a command that is not specified in FINS protocol being executed without authentication. A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of-service (DoS) condition, and/or arbitrary code execution.

Published:2023/01/11  Last Updated:2023/01/11

**Overview**

OMRON CP1L-EL20DR-D contains a vulnerability where active debug code is available.

**Products Affected**

*   Programmable Logic Controller (PLC) CP1L Series
    *   CP1L-EL20DR-D all versions

To check the product names and versions, refer to the manual "CP Series CP1L-EL/EM CPU Unit User's Manual (SBCA-406)" provided by the developer.

**Description**

Active debug code (**CWE-489**) exists in CP1L-EL20DR-D provided by OMRON Corporation, which may lead to a command that is not specified in FINS protocol being executed without authentication.

**Impact**

A remote unauthenticated attacker may read/write in arbitrary area of the device memory, which may lead to overwriting the firmware, causing a denial-of-service (DoS) condition, and/or arbitrary code execution.

**Solution**

**Update the product and enable ”Extend protection password” function**  
Update the product to the below product/version where UM read protection and task read protection are implemented, and enable “Extend protection password” function.

*   The programmable controller (PLC) CP1L Series Ver.1.1 or later
*   CX-Programmer Ver.9.6 or later

For more information, refer to the information provided by the developer under \[Vendor Status\] section's \[Status (Vulnerable)\] page.

**Apply Workarounds**  
Applying the workarounds may mitigate the impacts of this vulnerability.  
For more information, refer to the information provided by the developer under \[Vendor Status\] section's \[Status (Vulnerable)\] page.

**Vendor Status**

Vendor

Status

Last Update

Vendor Notes

OMRON Corporation

Vulnerable

2023/01/11

**References**

**JPCERT/CC Addendum**

**Vulnerability Analysis by JPCERT/CC**

CVSS v3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Attack Vector(AV)

Physical (P)

Local (L)

Adjacent (A)

Network (N)

Attack Complexity(AC)

High (H)

Low (L)

Privileges Required(PR)

High (H)

Low (L)

None (N)

User Interaction(UI)

Required (R)

None (N)

Scope(S)

Unchanged (U)

Changed (C)

Confidentiality Impact(C)

None (N)

Low (L)

High (H)

Integrity Impact(I)

None (N)

Low (L)

High (H)

Availability Impact(A)

None (N)

Low (L)

High (H)

**Credit**

Georgy Kiguradze of Positive Technologies reported this vulnerability to JPCERT/CC.  
JPCERT/CC coordinated with the developer.

**Other Information**

JPCERT Alert

  

JPCERT Reports

  

CERT Advisory

  

CPNI Advisory

  

TRnotes

  

CVE

CVE-2023-22357  

JVN iPedia

CVE-2023-22357: Active debug code vulnerability in OMRON CP1L-EL20DR-D

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released several Industrial Control Systems (ICS) advisories warning of critical security flaws affecting products from Sewio, InHand Networks, Sauter Controls, and Siemens.
The most severe of the flaws relate to Sewio's RTLS Studio, which could be exploited by an attacker to "obtain unauthorized access to the server, alter

Industrial Control Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released several Industrial Control Systems (ICS) advisories warning of critical security flaws affecting products from Sewio, InHand Networks, Sauter Controls, and Siemens.

The most severe of the flaws relate to Sewio's RTLS Studio, which could be exploited by an attacker to "obtain unauthorized access to the server, alter information, create a denial-of-service condition, gain escalated privileges, and execute arbitrary code," according to CISA.

This includes CVE-2022-45444 (CVSS score: 10.0), a case of hard-coded passwords for select users in the application's database that potentially grant remote adversaries unrestricted access.

Also notable are two command injection flaws (CVE-2022-47911 and CVE-2022-43483, CVSS scores: 9.1) and an out-of-bounds write vulnerability (CVE-2022-41989, CVSS score: 9.1) that could result in denial-of-service condition or code execution.

The vulnerabilities impact RTLS Studio version 2.0.0 up to and including version 2.6.2. Users are recommended to update to version 3.0.0 or later.

CISA, in a second alert, highlighted a set of five security defects in InHand Networks InRouter 302 and InRouter 615, including CVE-2023-22600 (CVSS score: 10.0), that could lead to command injection, information disclosure, and code execution.

"If properly chained, these vulnerabilities could result in an unauthorized remote user fully compromising every cloud-managed InHand Networks device reachable by the cloud," the agency said.

All firmware versions of InRouter 302 prior to IR302 V3.5.56 and InRouter 615 before InRouter6XX-S-V2.3.0.r5542 are susceptible to bugs.

Security vulnerabilities have also been disclosed in Sauter Controls Nova 220, Nova 230, Nova 106, and moduNet300 that could allow unauthorized visibility to sensitive information (CVE-2023-0053, CVSS score: 7.5) and remote code execution (CVE-2023-0052, CVSS score: 9.8).

The Swiss-based automation company, however, does not plan to release fixes for the identified issues owing to the fact that the product line is no longer supported.

Lastly, the security agency detailed a cross-site scripting (XSS) flaw in Siemens Mendix SAML equipment (CVE-2022-46823, CVSS score: 9.3) that could permit a threat actor to gain sensitive information by tricking users into clicking a specially crafted link.

Users are advised to enable multi-factor authentication and update Mendix SAML to versions 2.3.4 (Mendix 8), 3.3.8 (Mendix 9, Upgrade Track), or 3.3.9 (Mendix 9, New Track) to mitigate potential risks.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

CISA Warns for Flaws Affecting Industrial Control Systems from Major Manufacturers

Mercedes-Benz XENTRY Retail Data Storage 7.8.1 allows remote attackers to cause a denial of service (device restart) via an unauthenticated API request. The attacker must be on the same network as the device.

XENTRY Retail Data Storage is affected by denial of service (DoS). To exploit the vulnerability, the unauthorized author must be on the same network as the Retail Data Storage and send commands to restart the device through the api which does not validate the authorization.

When performing an authenticated test on Retail Data Storage, I could see that the ‘About the device’ tab has some functions available for storage management. One of these functions is the restart option, although the function is only available on the authenticated screen, it is possible to send a request through the API for the storage to be restarted, as the API does not validate authorization, allowing anyone, as long as is on the same network as the storage, can restart the device unrestrictedly.

Image 1 — Restart function on authenticated screen.

When intercepting the restart request, it is possible to notice that a request is sent via API and that there is no Authorization header or that uses some type of authentication to validate the authorization to perform this type of action. It is possible to notice that the result of the request is 200 OK, which indicates that the action was performed successfully.

Image 2 — The 200 OK indicates that the action was performed successfully.

Analyzing the activity responses through ping, it is possible to notice that the device stops responding to requests for a certain period and then returns to respond, which indicates that it was unavailable for a period (restarting).

Image 3 — Device stopping responding for a time interval.

The impact of this vulnerability is the interruption of the operation, since this attack can be enhanced and performed intermittently, effectively generating a denial of service.

> _The device’s IP address was censored due to belonging to a real scenario and in production, even if it is a local address, for security reasons I decided to preserve it._

Tag

#dos