IBM Spectrum Scale Container Native Storage Access 

5.1.2.1 through 5.1.6.0

contains an unspecified vulnerability that could allow a local user to obtain root privileges.  IBM X-Force ID:  237810.

CVE-2022-41736: IBM Spectrum Scale Container Native Storage Access privilege escalation CVE-2022-41736 Vulnerability Report

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service as the server may crash when compiling a specially crafted SQL query using a LIMIT clause.  IBM X-Force ID:  247864.

  

**Summary**

IBM® Db2® is vulnerable to a denial of service as the server may crash when using a specially crafted SQL query using a LIMIT clause.

**Vulnerability Details**

**CVEID:**   CVE-2023-26021  
**DESCRIPTION:**   IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash when compiling a specially crafted SQL query using a LIMIT clause.  
CVSS Base score: 7.5  
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/247864 for the current score.  
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

**Affected Products and Versions**

All fix pack levels of IBM Db2  V11.1, and V11.5 server editions on all platforms are affected. 

IBM Db2 V10.5 is not affected.

  

**Remediation/Fixes**

Customers running any vulnerable fixpack level of an affected Program,  v11.1 and V11.5, can download the special build containing the interim fix for this issue from Fix Central. These special builds are available based on the most recent fixpack level for each impacted release:  V11.1.4 FP7, v11.5.7 and V11.5.8. They can be applied to any affected fixpack level of the appropriate release to remediate this vulnerability.

**Release**

**Fixed in fix pack**

**APAR**

**Download URL**

V11.1

TBD

DT160619

Special Build for V11.1.4 FP7:

AIX 64-bit  
Linux 32-bit, x86-32  
Linux 64-bit, x86-64  
Linux 64-bit, POWER™ little endian  
Linux 64-bit, System z®, System z9® or zSeries®  
Solaris 64-bit, SPARC  
Windows 32-bit, x86  
Windows 64-bit, x86

V11.5

TBD

DT160619

Special Build for V11.5.7:

AIX 64-bit  
Linux 32-bit, x86-32  
Linux 64-bit, x86-64  
Linux 64-bit, POWER™ little endian  
Linux 64-bit, System z®, System z9® or zSeries®  
Windows 32-bit, x86  
Windows 64-bit, x86

Special Build for V11.5.8:

AIX 64-bit  
Linux 32-bit, x86-32  
Linux 64-bit, x86-64  
Linux 64-bit, POWER™ little endian  
Linux 64-bit, System z®, System z9® or zSeries®  
Windows 32-bit, x86  
Windows 64-bit, x86

IBM does not disclose key Db2 functionality nor replication steps for a vulnerability to avoid providing too much information to any potential malicious attacker. IBM does not want to enable a malicious attacker with sufficient knowledge to craft an exploit of the vulnerability.

**Workarounds and Mitigations**

None

**References**

Off

**Change History**

24 Apr 2023: Initial Publication

\*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

**Disclaimer**

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES ""AS IS"" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY. In addition to other efforts to address potential vulnerabilities, IBM periodically updates the record of components contained in our product offerings. As part of that effort, if IBM identifies previously unidentified packages in a product/service inventory, we address relevant vulnerabilities regardless of CVE date. Inclusion of an older CVEID does not demonstrate that the referenced product has been used by IBM since that date, nor that IBM was aware of a vulnerability as of that date. We are making clients aware of relevant vulnerabilities as we become aware of them. "Affected Products and Versions" referenced in IBM Security Bulletins are intended to be only products and versions that are supported by IBM and have not passed their end-of-support or warranty date. Thus, failure to reference unsupported or extended-support products and versions in this Security Bulletin does not constitute a determination by IBM that they are unaffected by the vulnerability. Reference to one or more unsupported versions in this Security Bulletin shall not create an obligation for IBM to provide fixes for any unsupported or extended-support products or versions.

**Document Location**

Worldwide

\[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\\/TPS"},"Product":{"code":"SSEPGG","label":"Db2 for Linux, UNIX and Windows"},"Component":"","Platform":\[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"},{"code":"PF027","label":"Solaris"}\],"Version":"11.5,11.1","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}\]

CVE-2023-26021: IBM® Db2® is vulnerable to a denial of service as the server may crash when compiling a specially crafted SQL query using a LIMIT clause. (CVE-2023-26021)

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash when an Out of Memory occurs using the DBMS_OUTPUT module.  IBM X-Force ID:  247868.

CVE-2023-26022: IBM Db2 denial of service CVE-2023-26022 Vulnerability Report

IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.  IBM X-Force ID:  249327.

  

**Summary**

IBM Maximo Asset Management is vulnerable to HTML injection.

**Vulnerability Details**

**CVEID:**   CVE-2023-27864  
**DESCRIPTION:**   IBM Maximo Asset Management is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.  
CVSS Base score: 5.4  
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/249327 for the current score.  
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)

**Affected Products and Versions**

This vulnerability affects the following versions of the IBM Maximo Asset Management core product.  The recommended action is to update to the latest version.

**Product versions affected:**

Affected Product(s)

Version(s)

IBM Maximo Asset Management

7.6.1.2

IBM Maximo Asset Management

7.6.1.3

\* To determine the core product version, log in and view System Information. The core product version is the "Tivoli's process automation engine" version. Please consult the Platform Matrix for a list of supported product combinations.

**Remediation/Fixes**

The recommended solution is to download the appropriate Interim Fix or Fix Pack from Fix Central (What is Fix Central?) and apply for each affected product as soon as possible. Please see below for information on the fixes available for each product, version, and release. Follow the installation instructions in the ‘readme’ documentation provided with each fix pack or interim fix.

**For Maximo Asset Management 7.6:**

**Workarounds and Mitigations**

None

**References**

Off

**Change History**

29 Mar 2023: Initial Publication

\*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

**Disclaimer**

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES ""AS IS"" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY. In addition to other efforts to address potential vulnerabilities, IBM periodically updates the record of components contained in our product offerings. As part of that effort, if IBM identifies previously unidentified packages in a product/service inventory, we address relevant vulnerabilities regardless of CVE date. Inclusion of an older CVEID does not demonstrate that the referenced product has been used by IBM since that date, nor that IBM was aware of a vulnerability as of that date. We are making clients aware of relevant vulnerabilities as we become aware of them. "Affected Products and Versions" referenced in IBM Security Bulletins are intended to be only products and versions that are supported by IBM and have not passed their end-of-support or warranty date. Thus, failure to reference unsupported or extended-support products and versions in this Security Bulletin does not constitute a determination by IBM that they are unaffected by the vulnerability. Reference to one or more unsupported versions in this Security Bulletin shall not create an obligation for IBM to provide fixes for any unsupported or extended-support products or versions.

**Document Location**

Worldwide

\[{"Type":"MASTER","Line of Business":{"code":"LOB59","label":"Sustainability Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLKT6","label":"IBM Maximo Asset Management"},"ARM Category":\[{"code":"a8m0z000000cvcNAAQ","label":"Security"}\],"Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.1"},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLLAM","label":"Maximo for Utilities"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.0.2, 7.6.0.1","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSG2D3","label":"Maximo Spatial Asset Management"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.0.5, 7.6.0.4, 7.6.0.3, 7.6.0.2","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Type":"MASTER","Line of Business":{"code":"LOB59","label":"Sustainability Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLKSJ","label":"Maximo Asset Configuration Manager"},"ARM Category":\[{"code":"a8m0z000000cvcNAAQ","label":"Security"}\],"Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.6;7.6.7"},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSWT9A","label":"IBM Control Desk"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.1.1, 7.6.1","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSKVFR","label":"IBM Maximo for Service Providers"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.3.3, 7.6.3.2, 7.6.3.1","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLL8M","label":"Maximo for Nuclear Power"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.1","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLL9G","label":"Maximo for Oil and Gas"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.1","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLL9Z","label":"Maximo for Transportation"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.2.5, 7.6.2.4, 7.6.2.3","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SS5RRF","label":"IBM Maximo for Aviation"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6.8, 7.6.7, 7.6.6","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}},{"Business Unit":{"code":"BU059","label":"IBM Software w\\/o TPS"},"Product":{"code":"SSLL84","label":"Maximo for Life Sciences"},"Component":"Security","Platform":\[{"code":"PF025","label":"Platform Independent"}\],"Version":"7.6","Edition":"","Line of Business":{"code":"LOB59","label":"Sustainability Software"}}\]

CVE-2023-27864: Security Bulletin: IBM Maximo Asset Management is vulnerable to HTML injection (CVE-2023-27864)

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 is vulnerable to a denial of service when attempting to use ACR client affinity for unfenced DRDA federation wrappers.  IBM X-Force ID:  249187.

  

**Summary**

IBM® Db2® is vulnerable to a denial of service as the server may crash when when attempting to use ACR client affinity for unfenced DRDA federation wrappers.

**Vulnerability Details**

**CVEID:**   CVE-2023-27555  
**DESCRIPTION:**   IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) is vulnerable to a denial of service when attempting to use ACR client affinity for unfenced DRDA federation wrappers.  
CVSS Base score: 5.1  
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/249187 for the current score.  
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

**Affected Products and Versions**

All fix pack levels of IBM Db2 V11.5 server editions on all platforms are affected. 

IBM Db2 V11.1 and 10.5 are not affected.

  

**Remediation/Fixes**

Customers running any vulnerable fixpack level of an affected Program,  V11.5, can download the special build containing the interim fix for this issue from Fix Central. These special builds are available based on the most recent fixpack level for each impacted release:  v11.5.7 and V11.5.8. They can be applied to any affected fixpack level of the appropriate release to remediate this vulnerability.

**Release**

**Fixed in fix pack**

**APAR**

**Download URL**

V11.5

TBD

DT188887

Special Build for V11.5.7:

AIX 64-bit  
Linux 32-bit, x86-32  
Linux 64-bit, x86-64  
Linux 64-bit, POWER™ little endian  
Linux 64-bit, System z®, System z9® or zSeries®  
Windows 32-bit, x86  
Windows 64-bit, x86

 Special Build for V11.5.8:

AIX 64-bit  
Linux 32-bit, x86-32  
Linux 64-bit, x86-64  
Linux 64-bit, POWER™ little endian  
Linux 64-bit, System z®, System z9® or zSeries®  
Windows 32-bit, x86  
Windows 64-bit, x86

IBM does not disclose key Db2 functionality nor replication steps for a vulnerability to avoid providing too much information to any potential malicious attacker. IBM does not want to enable a malicious attacker with sufficient knowledge to craft an exploit of the vulnerability.

**Workarounds and Mitigations**

Remove the unsupported options from the db2dsdriver.cfg configuration for the federated data source. If the configuration cannot be changed because it shared with other applications then provide a separate configuration for the federated data source.

**References**

Off

**Change History**

24 Apr 2023: Initial Publication

\*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

**Disclaimer**

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES ""AS IS"" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY. In addition to other efforts to address potential vulnerabilities, IBM periodically updates the record of components contained in our product offerings. As part of that effort, if IBM identifies previously unidentified packages in a product/service inventory, we address relevant vulnerabilities regardless of CVE date. Inclusion of an older CVEID does not demonstrate that the referenced product has been used by IBM since that date, nor that IBM was aware of a vulnerability as of that date. We are making clients aware of relevant vulnerabilities as we become aware of them. "Affected Products and Versions" referenced in IBM Security Bulletins are intended to be only products and versions that are supported by IBM and have not passed their end-of-support or warranty date. Thus, failure to reference unsupported or extended-support products and versions in this Security Bulletin does not constitute a determination by IBM that they are unaffected by the vulnerability. Reference to one or more unsupported versions in this Security Bulletin shall not create an obligation for IBM to provide fixes for any unsupported or extended-support products or versions.

**Document Location**

Worldwide

\[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\\/TPS"},"Product":{"code":"SSEPGG","label":"Db2 for Linux, UNIX and Windows"},"Component":"","Platform":\[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"},{"code":"PF027","label":"Solaris"}\],"Version":"11.5","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}\]

CVE-2023-27555: IBM® Db2® is vulnerable to a denial of service as the server may crash when when attempting to use ACR client affinity for unfenced DRDA federation wrappers. (CVE-2023-27555)

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.1, 11.1, and 11.5 is vulnerable to a denial of service.  Under rare conditions, setting a special register may cause the Db2 server to terminate abnormally.  IBM X-Force ID:  247862.

CVE-2023-25930: IBM X-Force Exchange

Ubuntu Security Notice 6046-1 - It was discovered that OpenSSL-ibmca incorrectly handled certain RSA decryption. An attacker could possibly use this issue to expose sensitive information.

==========================================================================  
Ubuntu Security Notice USN-6046-1  
April 27, 2023

openssl-ibmca vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS  
- Ubuntu 16.04 ESM

Summary:

OpenSSL-ibmca could be made to expose sensitive information.

Software Description:  
- openssl-ibmca: libica based hardware acceleration engine for OpenSSL

Details:

It was discovered that OpenSSL-ibmca incorrectly handled certain RSA decryption.  
An attacker could possibly use this issue to expose sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.10:  
  openssl-ibmca                   2.3.0-0ubuntu1.1

Ubuntu 22.04 LTS:  
  openssl-ibmca                   2.2.3-0ubuntu1.1

Ubuntu 20.04 LTS:  
  openssl-ibmca                   2.1.0-0ubuntu1.20.04.2

Ubuntu 18.04 LTS:  
  openssl-ibmca                   1.4.1-0ubuntu1.2

Ubuntu 16.04 ESM:  
  openssl-ibmca                   1.3.0-0ubuntu2.16.04.3

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-6046-1  
  https://launchpad.net/bugs/2015454

Package Information:  
  https://launchpad.net/ubuntu/+source/openssl-ibmca/2.3.0-0ubuntu1.1  
  https://launchpad.net/ubuntu/+source/openssl-ibmca/2.2.3-0ubuntu1.1  
  https://launchpad.net/ubuntu/+source/openssl-ibmca/2.1.0-0ubuntu1.20.04.2  
  https://launchpad.net/ubuntu/+source/openssl-ibmca/1.4.1-0ubuntu1.2

Ubuntu Security Notice USN-6046-1

Ubuntu Security Notice 6047-1 - It was discovered that the Traffic-Control Index implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the TCINDEX classifier has been removed.

    ==========================================================================Ubuntu Security Notice USN-6047-1April 27, 2023linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-4.15,linux-azure-5.4, linux-gcp, linux-gcp-4.15, linux-gcp-5.4, linux-gke,linux-gkeop, linux-hwe, linux-hwe-5.4, linux-ibm, linux-kvm, linux-oracle,linux-oracle-5.4 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS- Ubuntu 16.04 ESM- Ubuntu 14.04 ESMSummary:The system could be made to run programs as an administrator.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems- linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems- linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-gcp-5.4: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe-5.4: Linux hardware enablement (HWE) kernel- linux-oracle-5.4: Linux kernel for Oracle Cloud systems- linux-hwe: Linux hardware enablement (HWE) kernelDetails:It was discovered that the Traffic-Control Index (TCINDEX) implementationin the Linux kernel did not properly perform filter deactivation in somesituations. A local attacker could possibly use this to gain elevatedprivileges. Please note that with the fix for this CVE, kernel support forthe TCINDEX classifier has been removed.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:   linux-image-5.4.0-1048-ibm      5.4.0-1048.53   linux-image-5.4.0-1068-gkeop    5.4.0-1068.72   linux-image-5.4.0-1090-kvm      5.4.0-1090.96   linux-image-5.4.0-1098-gke      5.4.0-1098.105   linux-image-5.4.0-1100-oracle   5.4.0-1100.109   linux-image-5.4.0-1101-aws      5.4.0-1101.109   linux-image-5.4.0-1104-gcp      5.4.0-1104.113   linux-image-5.4.0-1107-azure    5.4.0-1107.113   linux-image-5.4.0-148-generic   5.4.0-148.165   linux-image-5.4.0-148-generic-lpae  5.4.0-148.165   linux-image-5.4.0-148-lowlatency  5.4.0-148.165   linux-image-aws-lts-20.04       5.4.0.1101.98   linux-image-azure-lts-20.04     5.4.0.1107.100   linux-image-gcp-lts-20.04       5.4.0.1104.106   linux-image-generic             5.4.0.148.146   linux-image-generic-hwe-18.04   5.4.0.148.146   linux-image-generic-hwe-18.04-edge  5.4.0.148.146   linux-image-generic-lpae        5.4.0.148.146   linux-image-generic-lpae-hwe-18.04  5.4.0.148.146   linux-image-generic-lpae-hwe-18.04-edge  5.4.0.148.146   linux-image-gke                 5.4.0.1098.103   linux-image-gke-5.4             5.4.0.1098.103   linux-image-gkeop               5.4.0.1068.66   linux-image-gkeop-5.4           5.4.0.1068.66   linux-image-ibm                 5.4.0.1048.74   linux-image-ibm-lts-20.04       5.4.0.1048.74   linux-image-kvm                 5.4.0.1090.84   linux-image-lowlatency          5.4.0.148.146   linux-image-oem                 5.4.0.148.146   linux-image-oem-osp1            5.4.0.148.146   linux-image-oracle-lts-20.04    5.4.0.1100.93   linux-image-virtual             5.4.0.148.146Ubuntu 18.04 LTS:   linux-image-4.15.0-1118-oracle  4.15.0-1118.129   linux-image-4.15.0-1139-kvm     4.15.0-1139.144   linux-image-4.15.0-1149-gcp     4.15.0-1149.165   linux-image-4.15.0-1164-azure   4.15.0-1164.179   linux-image-4.15.0-210-generic  4.15.0-210.221   linux-image-4.15.0-210-generic-lpae  4.15.0-210.221   linux-image-4.15.0-210-lowlatency  4.15.0-210.221   linux-image-5.4.0-1100-oracle   5.4.0-1100.109~18.04.1   linux-image-5.4.0-1101-aws      5.4.0-1101.109~18.04.1   linux-image-5.4.0-1104-gcp      5.4.0-1104.113~18.04.1   linux-image-5.4.0-1107-azure    5.4.0-1107.113~18.04.1   linux-image-5.4.0-148-generic   5.4.0-148.165~18.04.1   linux-image-5.4.0-148-generic-lpae  5.4.0-148.165~18.04.1   linux-image-5.4.0-148-lowlatency  5.4.0-148.165~18.04.1   linux-image-aws                 5.4.0.1101.79   linux-image-azure               5.4.0.1107.80   linux-image-azure-lts-18.04     4.15.0.1164.132   linux-image-gcp                 5.4.0.1104.80   linux-image-gcp-lts-18.04       4.15.0.1149.163   linux-image-generic             4.15.0.210.193   linux-image-generic-hwe-18.04   5.4.0.148.165~18.04.119   linux-image-generic-lpae        4.15.0.210.193   linux-image-generic-lpae-hwe-18.04  5.4.0.148.165~18.04.119   linux-image-kvm                 4.15.0.1139.130   linux-image-lowlatency          4.15.0.210.193   linux-image-lowlatency-hwe-18.04  5.4.0.148.165~18.04.119   linux-image-oem                 5.4.0.148.165~18.04.119   linux-image-oem-osp1            5.4.0.148.165~18.04.119   linux-image-oracle              5.4.0.1100.109~18.04.72   linux-image-oracle-lts-18.04    4.15.0.1118.123   linux-image-snapdragon-hwe-18.04  5.4.0.148.165~18.04.119   linux-image-virtual             4.15.0.210.193   linux-image-virtual-hwe-18.04   5.4.0.148.165~18.04.119Ubuntu 16.04 ESM:   linux-image-4.15.0-1118-oracle  4.15.0-1118.129~16.04.1   linux-image-4.15.0-1149-gcp     4.15.0-1149.165~16.04.1   linux-image-4.15.0-1164-azure   4.15.0-1164.179~16.04.1   linux-image-4.15.0-210-generic  4.15.0-210.221~16.04.1   linux-image-4.15.0-210-lowlatency  4.15.0-210.221~16.04.1   linux-image-azure               4.15.0.1164.148   linux-image-gcp                 4.15.0.1149.139   linux-image-generic-hwe-16.04   4.15.0.210.195   linux-image-gke                 4.15.0.1149.139   linux-image-lowlatency-hwe-16.04  4.15.0.210.195   linux-image-oem                 4.15.0.210.195   linux-image-oracle              4.15.0.1118.99   linux-image-virtual-hwe-16.04   4.15.0.210.195Ubuntu 14.04 ESM:   linux-image-4.15.0-1164-azure   4.15.0-1164.179~14.04.1   linux-image-azure               4.15.0.1164.130After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6047-1   CVE-2023-1829Package Information:   https://launchpad.net/ubuntu/+source/linux/5.4.0-148.165   https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1101.109   https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1107.113   https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1104.113   https://launchpad.net/ubuntu/+source/linux-gke/5.4.0-1098.105   https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1068.72   https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1048.53   https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1090.96   https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1100.109   https://launchpad.net/ubuntu/+source/linux/4.15.0-210.221   https://launchpad.net/ubuntu/+source/linux-aws-5.4/5.4.0-1101.109~18.04.1   https://launchpad.net/ubuntu/+source/linux-azure-4.15/4.15.0-1164.179   https://launchpad.net/ubuntu/+source/linux-azure-5.4/5.4.0-1107.113~18.04.1   https://launchpad.net/ubuntu/+source/linux-gcp-4.15/4.15.0-1149.165   https://launchpad.net/ubuntu/+source/linux-gcp-5.4/5.4.0-1104.113~18.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.4/5.4.0-148.165~18.04.1   https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1139.144   https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1118.129   https://launchpad.net/ubuntu/+source/linux-oracle-5.4/5.4.0-1100.109~18.04.1

Ubuntu Security Notice USN-6047-1

Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash and unresponsiveness) because some inputs cause a segfault in the Transaction class for some configurations.

**Security Resources****Software Updates**

We are announcing the release of ModSecurity version 3.0.9 (libModSecurity). This version contains a mixture of enhancements and bug fixes.

**Security issue**

*   Add some member variable inits in Transaction class (possible segfault)  
    \[Issue #2886 - @GNU-Plus-Windows-User, @airween , @mdounin, @martinhsv\]

In some configurations with certain inputs, this bug could result in a segfault and a resultant crash of a worker process. A large volume of such requests sent very quickly could lead to the server becoming slow or unresponsive to legitimate requests. This item has been assigned CVE-2023-28882.

**Enhancements and bug fixes**

*   Fix: possible segfault on reload if duplicate ip+CIDR in ip match list  
    \[Issue #2877, #2890 - @tomsommer, @martinhsv\]
*   Resolve memory leak on reload (bison-generated variable)  
    \[Issue #2876 - @martinhsv\]
*   Support equals sign in XPath expressions  
    \[Issue #2328 - @dennus, @martinhsv\]
*   Encode two special chars in error.log output  
    \[Issue #2854 - @airween, @martinhsv\]
*   Add JIT support for PCRE2  
    \[Issue #2791 - @wfjsw, @airween, @FireBurn, @martinhsv\]
*   Support comments in ipMatchFromFile file via '#' token  
    \[Issue #2554 - @tomsommer, @martinhsv\]
*   Use name package name libmaxminddb with pkg-config  
    \[Issue #2595, #2596 - @frankvanbever, @ffontaine, @arnout\]
*   Fix: FILES\_TMP\_CONTENT collection key should use part name  
    \[Issue #2831 - @airween\]
*   Use AS\_HELP\_STRING instead of obsolete AC\_HELP\_STRING macro  
    \[Issue #2806 - @hughmcmaster\]
*   During configure, do not check for pcre if pcre2 specified  
    \[Issue #2750 - @dvershinin, @martinhsv\]
*   Use pkg-config to find libxml2 first  
    \[Issue #2714 - @hughmcmaster\]
*   Fix two rule-reload memory leak issues  
    \[Issue #2801 - @Abce, @martinhsv\]
*   Correct whitespace handling for Include directive  
    \[Issue #2800 - @877509395, @martinhsv\]

Additional information on the release, including the source (and hashes/signatures), is available at: https://github.com/SpiderLabs/ModSecurity/releases/tag/v3.0.9

The list of open issues is available on GitHub: https://github.com/SpiderLabs/ModSecurity/issues

Thanks to everybody who helped in this process: reporting issues, making comments and suggestions, sending patches, etc.

CVE-2023-28882: Announcing ModSecurity version 3.0.9

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands.  IBM X-Force ID:  251207.

Tag

#ibm