Red Hat Security Advisory 2023-5239-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.

Red Hat Security Advisory 2023-5239-01

Red Hat Security Advisory 2023-5264-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.

Red Hat Security Advisory 2023-5264-01

Red Hat Security Advisory 2023-5236-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include a buffer overflow vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: libwebp: critical security update  
Advisory ID:       RHSA-2023:5236-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5236  
Issue date:        2023-09-19  
CVE Names:         CVE-2023-4863   
=====================================================================

1. Summary:

An update for libwebp is now available for Red Hat Enterprise Linux 8.1  
Update  
Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of  
Important. A Common Vulnerability Scoring System (CVSS) base score, which  
give  
a detailed severity rating, is available for each vulnerability from the  
CVE  
link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - aarch64, ppc64le, s390x, x86_64

3. Description:

The libwebp packages provide a library and tools for the WebP graphics  
format. WebP is an image format with a lossy compression of digital  
photographic images. WebP consists of a codec based on the VP8 format, and  
a container based on the Resource Interchange File Format (RIFF).  
Webmasters, web developers and browser developers can use WebP to compress,  
archive, and distribute digital images more efficiently.

Security Fix(es):

* libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2238431 - CVE-2023-4863 libwebp: Heap buffer overflow in WebP Codec

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
libwebp-1.0.0-5.2.el8_1.1.src.rpm

aarch64:  
libwebp-1.0.0-5.2.el8_1.1.aarch64.rpm  
libwebp-debuginfo-1.0.0-5.2.el8_1.1.aarch64.rpm  
libwebp-debugsource-1.0.0-5.2.el8_1.1.aarch64.rpm  
libwebp-devel-1.0.0-5.2.el8_1.1.aarch64.rpm  
libwebp-java-debuginfo-1.0.0-5.2.el8_1.1.aarch64.rpm  
libwebp-tools-debuginfo-1.0.0-5.2.el8_1.1.aarch64.rpm

ppc64le:  
libwebp-1.0.0-5.2.el8_1.1.ppc64le.rpm  
libwebp-debuginfo-1.0.0-5.2.el8_1.1.ppc64le.rpm  
libwebp-debugsource-1.0.0-5.2.el8_1.1.ppc64le.rpm  
libwebp-devel-1.0.0-5.2.el8_1.1.ppc64le.rpm  
libwebp-java-debuginfo-1.0.0-5.2.el8_1.1.ppc64le.rpm  
libwebp-tools-debuginfo-1.0.0-5.2.el8_1.1.ppc64le.rpm

s390x:  
libwebp-1.0.0-5.2.el8_1.1.s390x.rpm  
libwebp-debuginfo-1.0.0-5.2.el8_1.1.s390x.rpm  
libwebp-debugsource-1.0.0-5.2.el8_1.1.s390x.rpm  
libwebp-devel-1.0.0-5.2.el8_1.1.s390x.rpm  
libwebp-java-debuginfo-1.0.0-5.2.el8_1.1.s390x.rpm  
libwebp-tools-debuginfo-1.0.0-5.2.el8_1.1.s390x.rpm

x86_64:  
libwebp-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-1.0.0-5.2.el8_1.1.x86_64.rpm  
libwebp-debuginfo-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-debuginfo-1.0.0-5.2.el8_1.1.x86_64.rpm  
libwebp-debugsource-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-debugsource-1.0.0-5.2.el8_1.1.x86_64.rpm  
libwebp-devel-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-devel-1.0.0-5.2.el8_1.1.x86_64.rpm  
libwebp-java-debuginfo-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-java-debuginfo-1.0.0-5.2.el8_1.1.x86_64.rpm  
libwebp-tools-debuginfo-1.0.0-5.2.el8_1.1.i686.rpm  
libwebp-tools-debuginfo-1.0.0-5.2.el8_1.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-4863  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlCb3OAAoJENzjgjWX9erE0jQP/3BcBXwNZSJKbvPOmBHvH51o  
ElnbFg4b6vAcaXToltZ+94+VD4iuM4w7W4pfHc4sNO8yGGOkri8ZNtVSduHBb4aa  
kBKTq0lvQj+/IeGjKeDQl4dWmLCnn8XvfjtlE2hhI+kN74CDsAe8KP3iu2uiQJgd  
BQD2AN+5qJkyiEcXui7qo1KR+WmhVuJ8neoE9/uDi14M+YMDtYk5QVSZunLU/iSe  
4OxIrMboetW2ujRk0W3zvNTk0p2qUN9tCkQ9GDkhECIO4jWYEVsXCCt1GFAzUcmv  
MyXU7TkoiKbbhp5hJ1xMDgWMcvbpRfKYxk/2UVmUAwzztBgf4Erfu/8kM3INeLus  
c5Xu/uramjJUiiaF/Og1VcSmppt+kwpNBFCoutNtOLqPA0QPXsbmXunxznWXiQGV  
5fpLG1ExOimnbRU06FboowGgUvI4avoLu/OveFIHJkrCK5xCJjsQeHIvmloOmcGq  
zmspJEztfDThIiSOyoSQyLgyfVg5eNN2dbszDQSL5l+YJ/iLH8gqTLbRpPL47qHU  
GKIbw4d1ZJLz+ku7JcOjklONt5gib+GKHuon7YcGnP7qPRBU1irrjudoxz3Bd2PP  
dx3GkrgdM1qbqLEgLdb3Ymb8xOIDozN9RfG/qUIjVgH/vmtZpF7Rx5/AG6nIozJv  
ivNRe6JwPAuGIekFmGOi  
=EJSJ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5236-01

Red Hat Security Advisory 2023-5245-01 - The linux-firmware packages contain all of the firmware files that are required by various devices to operate. Issues addressed include an information leakage vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: linux-firmware security update  
Advisory ID:       RHSA-2023:5245-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5245  
Issue date:        2023-09-19  
CVE Names:         CVE-2023-20593   
=====================================================================

1. Summary:

An update for linux-firmware is now available for Red Hat Enterprise Linux  
8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS (v. 8) - noarch

3. Description:

The linux-firmware packages contain all of the firmware files that are  
required by various devices to operate.

Security Fix(es):

* hw: amd: Cross-Process Information Leak (CVE-2023-20593)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2217845 - CVE-2023-20593 hw: amd: Cross-Process Information Leak

6. Package List:

Red Hat Enterprise Linux BaseOS (v. 8):

Source:  
linux-firmware-20230404-117.git2e92a49f.el8_8.src.rpm

noarch:  
iwl100-firmware-39.31.5.1-117.el8_8.1.noarch.rpm  
iwl1000-firmware-39.31.5.1-117.el8_8.1.noarch.rpm  
iwl105-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl135-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl2000-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl2030-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl3160-firmware-25.30.13.0-117.el8_8.1.noarch.rpm  
iwl3945-firmware-15.32.2.9-117.el8_8.1.noarch.rpm  
iwl4965-firmware-228.61.2.24-117.el8_8.1.noarch.rpm  
iwl5000-firmware-8.83.5.1_1-117.el8_8.1.noarch.rpm  
iwl5150-firmware-8.24.2.2-117.el8_8.1.noarch.rpm  
iwl6000-firmware-9.221.4.1-117.el8_8.1.noarch.rpm  
iwl6000g2a-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl6000g2b-firmware-18.168.6.1-117.el8_8.1.noarch.rpm  
iwl6050-firmware-41.28.5.1-117.el8_8.1.noarch.rpm  
iwl7260-firmware-25.30.13.0-117.el8_8.1.noarch.rpm  
libertas-sd8686-firmware-20230404-117.git2e92a49f.el8_8.noarch.rpm  
libertas-sd8787-firmware-20230404-117.git2e92a49f.el8_8.noarch.rpm  
libertas-usb8388-firmware-20230404-117.git2e92a49f.el8_8.noarch.rpm  
libertas-usb8388-olpc-firmware-20230404-117.git2e92a49f.el8_8.noarch.rpm  
linux-firmware-20230404-117.git2e92a49f.el8_8.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-20593  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlCb3CAAoJENzjgjWX9erEG6YP/ixHmP1HOI8G/W4LZGBZH4bG  
RQEbX+d0DkLDHl9OauCIlz6QwQkXUl3vOES2eU+NnATYxyfe8E7AOi3b/Ncyx1Di  
Iht8/TtpAEJ0O5xHFzsfzH+9M4qCABPtmcDVD58Qnl9AuByJpUamt3aWi2DAxBOC  
HpmKwM/e8UNjvcJjCBLy/CwyV9VlH8mRkKz6RGEOTAkV2KcKuuvaaNrV2iHv0Hwu  
npx6PTPTvZIS6mlZRxoDIgTbloSasWozQEhTWMMxSnCGl5nmIr4oDISGQ4K5H53i  
JXoSFoL6tZslB7Jy1PpAgUK2cQTW9N0vqaZPjwTl094qj2XXOpJmGZ4rqPfraOhp  
EqawHOlSk33QNXjhZPvpMS879fkssoTPUvju8IG88zVl5h16GXrbOlnecTKggsjU  
UXtPWKlhxdwNsb5XBlXVOLmcNvgWccHR/rzoTDoG8FPPHlWi+EvynupRNC8qNz+/  
aUptJb4b0WC+ZGq07+q3ax0WscEb/1QNSM/uh8LyOeqs5HKv3EAqjN8MaO/xuUcQ  
DawrU43O/XHQHjEWEQmSklceOEw0goVNGWCvpazvPINMe83b6wOLQ5gLHC3tPwJ3  
1vj4Qtav8z4r1ntitdQLsQs7PeIRAfsgdiIkFRTMRrGqBhxOiOR7XHkioinRIidC  
eelFFuziP2dXbTX6cuhv  
=Kzcq  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5245-01

An XPC misconfiguration vulnerability in CoreCode MacUpdater before 2.3.8, and 3.x before 3.1.2, allows attackers to escalate privileges by crafting malicious .pkg files.

CVE-2023-41902: MacUpdater Version History

D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the popupId parameter in the H5/hi_block.asp function.

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

CVE-2023-43198: bug_submit/D-Link/DI-7200GV2/bug5.md at main · Archerber/bug_submit

D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the prev parameter in the H5/login.cgi function.

CVE-2023-43199: bug_submit/D-Link/DI-7200GV2/bug6.md at main · Archerber/bug_submit

D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the id parameter in the yyxz.data function.

CVE-2023-43200: bug_submit/D-Link/DI-7200GV2/bug3.md at main · Archerber/bug_submit

D-Link device DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the fn parameter in the tgfile.asp function.

CVE-2023-43197: bug_submit/D-Link/DI-7200GV2/bug1.md at main · Archerber/bug_submit

D-Link DI-7200GV2.E1 v21.04.09E1 was discovered to contain a stack overflow via the zn_jb parameter in the arp_sys.asp function.

Tag

#git