Debian Linux Security Advisory 5320-1 - A logic error was discovered in the implementation of the "SafeSocks" option of Tor, a connection-based low-latency anonymous communication system, which did result in allowing unsafe SOCKS4 traffic to pass.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5320-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJanuary 16, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : torCVE ID         : CVE-2023-23589A logic error was discovered in the implementation of the "SafeSocks"option of Tor, a connection-based low-latency anonymous communicationsystem, which did result in allowing unsafe SOCKS4 traffic to pass.For the stable distribution (bullseye), this problem has been fixed inversion 0.4.5.16-1.We recommend that you upgrade your tor packages.For the detailed security status of tor please refer toits security tracker page at:https://security-tracker.debian.org/tracker/torFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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jzew-----END PGP SIGNATURE-----

Debian Security Advisory 5320-1

Red Hat Security Advisory 2023-0173-01 - The libxml2 library is a development toolbox providing the implementation of various XML standards. Issues addressed include an integer overflow vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: libxml2 security update  
Advisory ID:       RHSA-2023:0173-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0173  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-40303 CVE-2022-40304  
====================================================================  
1. Summary:

An update for libxml2 is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

The libxml2 library is a development toolbox providing the implementation  
of various XML standards.

Security Fix(es):

* libxml2: integer overflows with XML_PARSE_HUGE (CVE-2022-40303)

* libxml2: dict corruption caused by entity reference cycles  
(CVE-2022-40304)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The desktop must be restarted (log out, then log back in) for this update  
to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2136266 - CVE-2022-40303 libxml2: integer overflows with XML_PARSE_HUGE  
2136288 - CVE-2022-40304 libxml2: dict corruption caused by entity reference cycles

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

aarch64:  
libxml2-debuginfo-2.9.7-15.el8_7.1.aarch64.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.aarch64.rpm  
libxml2-devel-2.9.7-15.el8_7.1.aarch64.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.aarch64.rpm

ppc64le:  
libxml2-debuginfo-2.9.7-15.el8_7.1.ppc64le.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.ppc64le.rpm  
libxml2-devel-2.9.7-15.el8_7.1.ppc64le.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.ppc64le.rpm

s390x:  
libxml2-debuginfo-2.9.7-15.el8_7.1.s390x.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.s390x.rpm  
libxml2-devel-2.9.7-15.el8_7.1.s390x.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.s390x.rpm

x86_64:  
libxml2-debuginfo-2.9.7-15.el8_7.1.i686.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.x86_64.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.i686.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.x86_64.rpm  
libxml2-devel-2.9.7-15.el8_7.1.i686.rpm  
libxml2-devel-2.9.7-15.el8_7.1.x86_64.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.i686.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 8):

Source:  
libxml2-2.9.7-15.el8_7.1.src.rpm

aarch64:  
libxml2-2.9.7-15.el8_7.1.aarch64.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.aarch64.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.aarch64.rpm  
python3-libxml2-2.9.7-15.el8_7.1.aarch64.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.aarch64.rpm

ppc64le:  
libxml2-2.9.7-15.el8_7.1.ppc64le.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.ppc64le.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.ppc64le.rpm  
python3-libxml2-2.9.7-15.el8_7.1.ppc64le.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.ppc64le.rpm

s390x:  
libxml2-2.9.7-15.el8_7.1.s390x.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.s390x.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.s390x.rpm  
python3-libxml2-2.9.7-15.el8_7.1.s390x.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.s390x.rpm

x86_64:  
libxml2-2.9.7-15.el8_7.1.i686.rpm  
libxml2-2.9.7-15.el8_7.1.x86_64.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.i686.rpm  
libxml2-debuginfo-2.9.7-15.el8_7.1.x86_64.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.i686.rpm  
libxml2-debugsource-2.9.7-15.el8_7.1.x86_64.rpm  
python3-libxml2-2.9.7-15.el8_7.1.x86_64.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.i686.rpm  
python3-libxml2-debuginfo-2.9.7-15.el8_7.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40303  
https://access.redhat.com/security/cve/CVE-2022-40304  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoQ9zjgjWX9erEAQgOHQ/+Ns7MY8MsoyU3wlWkuTW5mCenVYaSQa90  
nHACMcvLgOKjM61s7FTXHnvV52TKj/+kZRToW2MCOTfuLsYnP0bZ+DFLkhDxoIGR  
wN6X2Mgh/vtBmdLGtW8bjclpJuYLoGrjfoigFOZgXbRrKBNYLZqLPNutHzcF1IB2  
hxdTDn7W+RNjCiP8+l+cTGYx0A9e1rYkCEx5B8qKfJY11/ojBTvxMf2jVnkFM9gz  
ZwVCDtUyO7S7B5l6OqvH9qcR8dBOMw5KpaE4wGc+RF9iYI3t68xJlB2bj21Eb1oW  
I4OwkkOh9i96f2XtusnTZIdJWVEMHJ3ZjM8a40nB7OzV0zSRRml61CLvLur6YAdo  
nxQ3bstsq2+NhK/J0pHLUaVLQxeePgvHICJBIBXRV/bFHZw3qADo08FmvcVh4y9t  
HSyYP6ZdofwxeR6elSke2cM57RWIcDVB8+o6ESUN4q5QMp6xjmA+82tHLmbguwyb  
RMTW46jCZ3tZOo5+zIXBGlwvMZGv5PDzzgjwEboxBoWTGegBdPJkNNmezj9pZcyB  
0l2Uh2LtC/uPbqBFzsPy94pyEd4VoRAY5/RBS+PgLCJm4o2qsaTN75jqHpSQXgw8  
CfZT3+0XnYvsYHBt8jtiVUpHJpbfh9vNNjXzcLO/JKCv8NW3So1MfV2A+mT/mDmh  
nCQ8kAI62fw=pLiQ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0173-01

Ubuntu Security Notice 5804-2 - It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service or possibly execute arbitrary code. Tamás Koczka discovered that the Bluetooth L2CAP handshake implementation in the Linux kernel contained multiple use-after-free vulnerabilities. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-5804-2  
January 13, 2023

linux-aws, linux-gcp-4.15 vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:  
- linux-aws: Linux kernel for Amazon Web Services (AWS) systems  
- linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems

Details:

It was discovered that the NFSD implementation in the Linux kernel did not  
properly handle some RPC messages, leading to a buffer overflow. A remote  
attacker could use this to cause a denial of service (system crash) or  
possibly execute arbitrary code. (CVE-2022-43945)

Tamás Koczka discovered that the Bluetooth L2CAP handshake implementation  
in the Linux kernel contained multiple use-after-free vulnerabilities. A  
physically proximate attacker could use this to cause a denial of service  
(system crash) or possibly execute arbitrary code. (CVE-2022-42896)

It was discovered that the Xen netback driver in the Linux kernel did not  
properly handle packets structured in certain ways. An attacker in a guest  
VM could possibly use this to cause a denial of service (host NIC  
availability). (CVE-2022-3643)

It was discovered that an integer overflow vulnerability existed in the  
Bluetooth subsystem in the Linux kernel. A physically proximate attacker  
could use this to cause a denial of service (system crash).  
(CVE-2022-45934)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 18.04 LTS:  
   linux-image-4.15.0-1143-gcp     4.15.0-1143.159  
   linux-image-4.15.0-1148-aws     4.15.0-1148.160  
   linux-image-aws-lts-18.04       4.15.0.1148.146  
   linux-image-gcp-lts-18.04       4.15.0.1143.157

After a standard system update you need to reboot your computer to make  
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have  
been given a new version number, which requires you to recompile and  
reinstall all third party kernel modules you might have installed.  
Unless you manually uninstalled the standard kernel metapackages  
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,  
linux-powerpc), a standard system upgrade will automatically perform  
this as well.

References:  
   https://ubuntu.com/security/notices/USN-5804-2  
   https://ubuntu.com/security/notices/USN-5804-1  
   CVE-2022-3643, CVE-2022-42896, CVE-2022-43945, CVE-2022-45934

Package Information:  
   https://launchpad.net/ubuntu/+source/linux-aws/4.15.0-1148.160  
   https://launchpad.net/ubuntu/+source/linux-gcp-4.15/4.15.0-1143.159

Ubuntu Security Notice USN-5804-2

Red Hat Security Advisory 2023-0168-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0168-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0168  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.1 Update  
Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
dpdk-18.11.2-5.el8_1.src.rpm

aarch64:  
dpdk-18.11.2-5.el8_1.aarch64.rpm  
dpdk-debuginfo-18.11.2-5.el8_1.aarch64.rpm  
dpdk-debugsource-18.11.2-5.el8_1.aarch64.rpm  
dpdk-devel-18.11.2-5.el8_1.aarch64.rpm  
dpdk-devel-debuginfo-18.11.2-5.el8_1.aarch64.rpm  
dpdk-tools-18.11.2-5.el8_1.aarch64.rpm

noarch:  
dpdk-doc-18.11.2-5.el8_1.noarch.rpm

ppc64le:  
dpdk-18.11.2-5.el8_1.ppc64le.rpm  
dpdk-debuginfo-18.11.2-5.el8_1.ppc64le.rpm  
dpdk-debugsource-18.11.2-5.el8_1.ppc64le.rpm  
dpdk-devel-18.11.2-5.el8_1.ppc64le.rpm  
dpdk-devel-debuginfo-18.11.2-5.el8_1.ppc64le.rpm  
dpdk-tools-18.11.2-5.el8_1.ppc64le.rpm

x86_64:  
dpdk-18.11.2-5.el8_1.x86_64.rpm  
dpdk-debuginfo-18.11.2-5.el8_1.x86_64.rpm  
dpdk-debugsource-18.11.2-5.el8_1.x86_64.rpm  
dpdk-devel-18.11.2-5.el8_1.x86_64.rpm  
dpdk-devel-debuginfo-18.11.2-5.el8_1.x86_64.rpm  
dpdk-tools-18.11.2-5.el8_1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoQNzjgjWX9erEAQhI2w//Rp5ODsEUvVZ1xJjSB9w2PMi+ha1gqLg+  
smBl+kBkHC0lxjyyS9QJ+yhzdW6vauLIdWlL5FX4lr2EiPgElBNoICJEVZ63i5Sp  
BliQTMDfYJnjVxc+QtkzL3/qGme9BnF2PmoP563La5ud7g1o5pYJrfePhEil56Mv  
KFQWAme6Yww/nNwnZCEtCFLHncpWAms2pLrPf/hLltb+D36+fc5ZhUY47mTQ/cXw  
8LRWOjRB08NXotWdKBopc57PN7Ik8zSW8ORnGOmhGOUmiQjyTddvU3MMa5h+M262  
1U27bwoPDnkAaQD8nzumEfHc05UnZCvu5+mxyLeNn8x1jcWFzYla1Y/wMY5SwXU7  
qWmN2WhxsW76HAp0KJ+2Np33rxiR2r4+s3ww0NBnuikfRT5QbU5cCd5T8hUmrxQU  
2y/ZnFAfDI0tii+CfVXKlHRHHV6TjiPwpG3JorTBz1CwoYjmL/xDvS9u1KHxnC6E  
mm0fJAkFwmDg8YqJ56JYLMGOOxnESjqRpb3/5FUnQYf8uglJ5pkc0ryRqE7Ki5/S  
PocJo3BBZ56WjawtsSnaQPn3Ex1HMqjNxDJhKaPSQ1o/KuNKT6CUVltzsD1Sn5Ny  
5n+1Peis7PIgF9QPQGgaie1pwuE1JDJiYNfqkPXU+BovZZHsAPDR1hW4jftHpQDN  
bgTT5U4dUxA=  
=4h8r  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0168-01

Debian Linux Security Advisory 5319-1 - Two vulnerabilities were discovered in the LLPD implementation of Open vSwitch, software-based Ethernet virtual switch, which could result in denial of service.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5319-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJanuary 13, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : openvswitchCVE ID         : CVE-2022-4337 CVE-2022-4338Debian Bug     : 1027273Two vulnerabilities were discovered in the LLPD implementation of OpenvSwitch, software-based Ethernet virtual switch, which could result indenial of service.For the stable distribution (bullseye), these problems have been fixed inversion 2.15.0+ds1-2+deb11u2.We recommend that you upgrade your openvswitch packages.For the detailed security status of openvswitch please refer toits security tracker page at:https://security-tracker.debian.org/tracker/openvswitchFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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a4Zt-----END PGP SIGNATURE-----

Debian Security Advisory 5319-1

Red Hat Security Advisory 2023-0167-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0167-01  
Product:           Red Hat Enterprise Linux Extras  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0167  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 7 Extras.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux 7 Extras - noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux 7 Extras:

Source:  
dpdk-18.11.8-2.el7_9.src.rpm

noarch:  
dpdk-doc-18.11.8-2.el7_9.noarch.rpm

ppc64le:  
dpdk-18.11.8-2.el7_9.ppc64le.rpm  
dpdk-debuginfo-18.11.8-2.el7_9.ppc64le.rpm  
dpdk-devel-18.11.8-2.el7_9.ppc64le.rpm  
dpdk-tools-18.11.8-2.el7_9.ppc64le.rpm

x86_64:  
dpdk-18.11.8-2.el7_9.x86_64.rpm  
dpdk-debuginfo-18.11.8-2.el7_9.x86_64.rpm  
dpdk-devel-18.11.8-2.el7_9.x86_64.rpm  
dpdk-tools-18.11.8-2.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoPtzjgjWX9erEAQh1Dw//UEDtp3cMPbD4oj4U7MLwoeDAlfu1waWD  
XM+IaeNQCAQh3/LAWLqIBWIYHnpH40KUx6eGq+wqgiHaT+P8wjWjSjHQ9LNOfToj  
g0QQtEw0ho4N8MoKOarAdCNG3SCNCWqYI7WzK5sbBehpnH6CTiT4HBDQjXQL17wj  
tEYwypx8BxqlYK4M+i+wSaHgQpm97rQbcuGtL8Kq3DitjrXtlLZcfS4OZ/05/jRa  
iFeEm1Crf6a3IIBgQpElFd0Geneb73XOWjcFDIBK/NMcJ7oO23NWKAyXMdeG46oo  
IhsoJ3mLWghvq2nOxsUXr+wDLA/dL7z85dvTaFG9FN/+TOj1cjgg/jQ+67UOPpJS  
+R3i3147B55NksxI4pBFqopJOwxi2TFCY1+1LAFpMSon+RWwDI/hEb7ZjOIz3KAZ  
z2+YDXAtpEUEKM0F50IsJsXJ+UxIddY4PjyXY1jooOOI5qsYLbrzazT1s/1oSl1N  
Zc+wVBwr4xvvd2wELOSomhZA8FqM9Phv8LXHYMCNtDjyOEA/VO8e7TXdJqs+exP7  
O+akEmp22LcogkcTBsABitvyHPdX2ne4z5u8a77FRsUDlqwk27SnWnxThSYDTDSP  
ivlIK941glqRvxXmUs52Iq+HlTXkJj34ZIxbs/cgsY2QyIGGOhHhNoc//CdZbwr5  
uyxula2OApU=  
=ycGV  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0167-01

Red Hat Security Advisory 2023-0170-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0170-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0170  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.6) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.6):

Source:  
dpdk-21.11-2.el8_6.src.rpm

aarch64:  
dpdk-21.11-2.el8_6.aarch64.rpm  
dpdk-debuginfo-21.11-2.el8_6.aarch64.rpm  
dpdk-debugsource-21.11-2.el8_6.aarch64.rpm  
dpdk-devel-21.11-2.el8_6.aarch64.rpm  
dpdk-tools-21.11-2.el8_6.aarch64.rpm

noarch:  
dpdk-doc-21.11-2.el8_6.noarch.rpm

ppc64le:  
dpdk-21.11-2.el8_6.ppc64le.rpm  
dpdk-debuginfo-21.11-2.el8_6.ppc64le.rpm  
dpdk-debugsource-21.11-2.el8_6.ppc64le.rpm  
dpdk-devel-21.11-2.el8_6.ppc64le.rpm  
dpdk-tools-21.11-2.el8_6.ppc64le.rpm

x86_64:  
dpdk-21.11-2.el8_6.x86_64.rpm  
dpdk-debuginfo-21.11-2.el8_6.x86_64.rpm  
dpdk-debugsource-21.11-2.el8_6.x86_64.rpm  
dpdk-devel-21.11-2.el8_6.x86_64.rpm  
dpdk-tools-21.11-2.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoO9zjgjWX9erEAQguXQ/+NvbLX/ACdYycNzSnrwqAc1nRtyhfwaJn  
pLNALAOQ+LQOCxTMb7IlKAZJlxqDTnKi3Wqwh1QM/ea99U+pb2qjrvyT2+3TuVV+  
CVQCUG1qmCk4dpB+uFdJRQAukliL37lvMVhKsGkUQKfTIQGlX3ho6kWzwiF4n767  
AI8Zga5ApbUFsAVpYfPiCYBjuqg3qBeZWuTVuQwt0CK+H4ztwFf6kK1htSF0jtSU  
sYcAOs0GGMY3lL1uIxwFfTvaIgQVcp15S+aC0d4chuzwbbocgdzG3WhugAPp2eXe  
daO3xS40IZfwfgSqNKc5KSYUS0yxc5NQDIT81VPeQEmbk8PScBitbd/l+GKS+aCk  
NITMDNzeYnA2+FGmiUf0tmj6wj6hD4aJV+X8LDFsYQJ2UEG3U0emJXHuHkV1lOa0  
Pt7UG1yHVnlBPMUX88ssffWzv0T578pm2o2SiToUGrkk4O7CS74p8E14U1x0JGG3  
pfsIj6Brz9eub90u/zQrOcCs0SRy1QjOxMp5Ep2Quz3RrMtBZLBoeor9FbJSlJvc  
Yr7+bxV4h1ntbvJ1BtuAWA/UckXPND4TMx936cWzU92SK4s5XQtp6fOTB9BZo13Z  
Hu8LBFoAiWU/qPb+9wjhM3CAL2dS35Ius+AkuCGxBCvWKTfI2/zkAAzvtZ+appob  
yRnOLG/bu94=  
=Vh97  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0170-01

Debian Linux Security Advisory 5318-1 - Igor Ponomarev discovered that LAVA, a continuous integration system for deploying operating systems onto physical and virtual hardware for running tests, was suspectible to denial of service via recursive XML entity expansion.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5318-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJanuary 13, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : lavaCVE ID         : CVE-2022-44641Debian Bug     : 1024429Igor Ponomarev discovered that LAVA, a continuous integration system fordeploying operating systems onto physical and virtual hardware forrunning tests, was suspectible to denial of service via recursive XMLentity expansion.For the stable distribution (bullseye), this problem has been fixed inversion 2020.12-5+deb11u2.We recommend that you upgrade your lava packages.For the detailed security status of lava please refer toits security tracker page at:https://security-tracker.debian.org/tracker/lavaFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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88Fg-----END PGP SIGNATURE-----

Debian Security Advisory 5318-1

Red Hat Security Advisory 2023-0166-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: dpdk security update  
Advisory ID:       RHSA-2023:0166-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0166  
Issue date:        2023-01-16  
CVE Names:         CVE-2022-2132   
=====================================================================

1. Summary:

An update for dpdk is now available for Red Hat Enterprise Linux 8.2  
Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications  
Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP  
Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream AUS (v. 8.2) - aarch64, noarch, ppc64le, x86_64  
Red Hat Enterprise Linux AppStream E4S (v. 8.2) - aarch64, noarch, ppc64le, x86_64  
Red Hat Enterprise Linux AppStream TUS (v. 8.2) - aarch64, noarch, ppc64le, x86_64

3. Description:

The dpdk packages provide the Data Plane Development Kit, which is a set of  
libraries and drivers for fast packet processing in the user space.

Security Fix(es):

* dpdk: DoS when a Vhost header crosses more than two descriptors and  
exhausts all mbufs (CVE-2022-2132)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2099475 - CVE-2022-2132 dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

6. Package List:

Red Hat Enterprise Linux AppStream AUS (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

Red Hat Enterprise Linux AppStream E4S (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

Red Hat Enterprise Linux AppStream TUS (v. 8.2):

Source:  
dpdk-19.11-6.el8_2.src.rpm

aarch64:  
dpdk-19.11-6.el8_2.aarch64.rpm  
dpdk-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-debugsource-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-19.11-6.el8_2.aarch64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.aarch64.rpm  
dpdk-tools-19.11-6.el8_2.aarch64.rpm

noarch:  
dpdk-doc-19.11-6.el8_2.noarch.rpm

ppc64le:  
dpdk-19.11-6.el8_2.ppc64le.rpm  
dpdk-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-debugsource-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-19.11-6.el8_2.ppc64le.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.ppc64le.rpm  
dpdk-tools-19.11-6.el8_2.ppc64le.rpm

x86_64:  
dpdk-19.11-6.el8_2.x86_64.rpm  
dpdk-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-debugsource-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-19.11-6.el8_2.x86_64.rpm  
dpdk-devel-debuginfo-19.11-6.el8_2.x86_64.rpm  
dpdk-tools-19.11-6.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2132  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY8UoONzjgjWX9erEAQiPUg//fJLYK3gpMa2os5l4ABXNOY9SivH2wva8  
q6DtUTk5Y5/gKesCvPKB+fOKLgutGp0yDMKku+5nHiSc2YYiVPeXvfRQi6BbmqWz  
Pc8bYdbgfp/OBvTIihNLu7RoxSAJRMhd+nOO5zBUsj151cEmZ9n76VT6PartLrNI  
7RT+YsfaSHMgcezQCd7iKDdz0yi0iW6vDJ41rkLt59rksHDFWXfBcypIMDMp1Abt  
6QPg7vUcNTzk4PGI+qLdSlkD0pdgewQ03AXKuPMuVF8Do4F+hSiLURx+urRPgKZ0  
0VWEsER/ZoVl5CSCHBiYi4Y/2xR0fWaVb8G9hIMUNcHnSv/VCAj7OV66yersmkoM  
ium3yU9NpuXfVLhYkt9VGb88hKhX/VqlVLGC/LvkvrsC9VKFaxjJRvnwF3QNvO9u  
UOGKb4RSVpsaFzzxPMPu51zk3oyjnlckFOv4sTBsfdMpT4+uAmtLsbzKNoj8wln7  
AZbN1uIIMF6KAQs32+IRx3QvagiDMOHVXAODgKkYG4zt9t72LL576j0nAb6YWuy5  
ODVu5lxigonmiwv4+TwC9WeOlTgEm6/XA6otiPu0aYZsjkT4hRBoTGHvsufD//B8  
Le8m2DIBPDn3uTMB5ctw1+FM49MMhjVKrMIB4vjuPT+cKZcGJvsrKaVF/uBjLsyE  
2uczwphtQj0=  
=BEkm  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0166-01

The Citrix Linux client emits its session credentials when starting a Citrix session. These credentials end up being recorded in the client's system log. Citrix does not consider this to be a security vulnerability. Citrix Workspace App for Linux versions 2212 is affected.

# Citrix Linux client credential leak

The Citrix Linux client emits its session credentials when starting a Citrix  
session. These credentials end up being recorded in the client's system log.

Citrix do not consider this to be a security vulnerability.

# Software affected

- Citrix Workspace App for Linux versions 2212.

Other versions are likely affected.

# Context

When connecting to a Citrix session via a web browser such as Firefox on Linux,  
typically you access a web application known as Citrix Storefront. This  
provides clickable icons for the applications and remote desktop sessions  
available to you.

When you click on one of these, your browser is instructed to open a URL of the  
form `receiver://.....` which is handled using `/opt/Citrix/ICAClient/util/ctxwebhelper`.  
`ctxwebhelper` parses the URL and uses the decoded information to make a HTTP  
GET request to the remote server for an 'ica' file, which contains the  
connection details necessary to launch the Citrix client software,  
`/opt/Citrix/ICAClient/wfica`.

The ICA file contains details such as the server hostname and temporary session  
credentials needed to authenticate the session.

# The issue

When making the GET request to retrieve the ICA file, `ctxwebhelper` echos the  
full HTTP response (headers & body) to standard output, which ends up feeding  
into journald and then into the system log files.

This can be demonstrated by connecting to a Citrix session and running:

    grep receiver\\.desktop.*LogonTicket= /var/log/syslog

which will produce output such as

    2023-01-12T11:15:46.816466+00:00 myhostname receiver.desktop[9999]: LogonTicket=1234567890ABCDEF1234567890ABCD

# Vendor response

Citrix responded to my report on 2023-01-05 to say they do not consider this a product vulnerability:

    Thank you for bearing with us. We have concluded the security  
    investigation into the reported issue and determined that the contents  
    of /var/log/syslog can only be read or written by root user, or a  
    syslog user or an adm group but not by an unprivileged user. As a  
    result, we do not consider this finding as a vulnerability in the  
    product.

    We would like to thank you for submitting the finding and helping to  
    keep Citrix customers safe.

    Best Regards,

    Citrix Security Response Team

This is short-sighted in my opinion - logs should not be considered safe places  
to store credentials, even temporary ones.

# Workaround

Since Citrix do not consider this a vulnerability it seems unlikely this behaviour will change.

You can work around this issue by replacing ctxwebhelper with a wrapper script  
that either discards or filters its output.

First, rename `ctxwebhelper`:

    mv /opt/Citrix/ICAClient/util/ctxwebhelper /opt/Citrix/ICAClient/util/ctxwebhelper.real

Next, place a script in its place, which first redirects stdout and stderr to /dev/null before executing the real `ctxwebhelper`:

    #!/bin/bash  
    set -eu  
    exec &>/dev/null  
    "$(dirname "$0")"/ctxwebhelper.real "$@"

Don't forget to `chmod +x /opt/Citrix/ICAClient/util/ctxwebhelper` after doing this.

This script is available from this repository - see `ctxwebhelper.wrapper`.

Note that this will be overwritten if the Citrix client is reinstalled.

# Timeline

2022-12-11: Issue disclosed to Citrix via email to secure@citrix.com

2022-12-13: Citrix acknowledges receipt of the report, assigns identifier `CASE-8324`.

2023-01-05: Citrix reponds to say they do not consider it a vulnerability.

2023-01-07: Reply to Citrix requesting they reconsider their assessment.

2023-01-14: Public disclosure.

# Author

Russell Howe. [Github](https://github.com/rhowe) [Twitter](https://twitter.com/rhowe212).

ctxwebhelper.wrapper:

#!/bin/bash

# Brexit flags  
set -eu

# Ensure stdout and stderr are discarded  
exec &>/dev/null

# Execute the real ctxwebhelper  
"$(dirname "$0")"/ctxwebhelper.real "$@"  
Footer

Tag

#linux