Red Hat Security Advisory 2022-6582-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include buffer overflow and heap overflow vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2022:6582-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6582  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-2078 CVE-2022-34918  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time (v. 9) - x86_64  
Red Hat Enterprise Linux Real Time for NFV (v. 9) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: heap overflow in nft_set_elem_init() (CVE-2022-34918)

* kernel: vulnerability of buffer overflow in nft_set_desc_concat_parse()  
(CVE-2022-2078)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* kernel-rt: update RT source tree to the latest RHEL-9.0.z3 Batch  
(BZ#2119577)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2096178 - CVE-2022-2078 kernel: Vulnerability of buffer overflow in nft_set_desc_concat_parse()  
2104423 - CVE-2022-34918 kernel: heap overflow in nft_set_elem_init()

6. Package List:

Red Hat Enterprise Linux Real Time for NFV (v. 9):

Source:  
kernel-rt-5.14.0-70.26.1.rt21.98.el9_0.src.rpm

x86_64:  
kernel-rt-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-core-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-core-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-debuginfo-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-devel-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-kvm-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-modules-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-modules-extra-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debuginfo-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-devel-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-kvm-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-modules-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-modules-extra-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm

Red Hat Enterprise Linux Real Time (v. 9):

Source:  
kernel-rt-5.14.0-70.26.1.rt21.98.el9_0.src.rpm

x86_64:  
kernel-rt-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-core-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-core-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-debuginfo-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-devel-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-modules-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debug-modules-extra-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debuginfo-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-devel-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-modules-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm  
kernel-rt-modules-extra-5.14.0-70.26.1.rt21.98.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2078  
https://access.redhat.com/security/cve/CVE-2022-34918  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfyNzjgjWX9erEAQiaCQ/+LSCk2xopPqZvOEHYJI/HwMLQDUfTVExJ  
65aJpi03W1V91Aw5KXKDOMkSnUOUf+lnf7+dhR1xT+pFPcc/i0jrMUO8EexTIlnL  
W4grQyJYcTJWd9fR7RpjzRBN9i5uFYYOPlwShkoMVYdTu4A5U5xGdq5idMdJ9738  
WKAtcOkKW2AshVcC7HiDyG1UB8Mi8+RmO/vUbZyRifiXVyGAer5dr8jM5c7pJ4la  
vl+tv9JeqC0Sl47WjsBg4mSZEIFTVFzqDnWjg/TfrHxEQ2rdLfPU5C3EaWbaCTaC  
LidSXKu04a+y6lgh9FGgbdfZR7hSR086TIdwOx5EViTSvo7f0MtpajPZ89odijYt  
gOluS1yrdE8xsqUz7sFRtBL4+y/ymYlDueWNHBfnjUOaDM5MEh4fEut8ByZ4kW3P  
TNVtz1C/2baHMV0yhW53qW2Z5eQLCOb5Z9HmorIPxBTTmzpMjdo4IWqgijacg8QC  
0gjHgIFtmqnHuTe25kHdHCacbcuVTQedVeIhJsXp42T5i0tfCzaDc/sKiAWEHYzQ  
M7OWft1ti4n6Tr8t7JHU2dAaBBBvCZTAI744H8T7I2x7lYOHtOvybZ9hMwvm4U+i  
bHerMnYkRZe9IGUHLBVbk+r9kSiX3XUlPNmJmuQDYajhXyKbOzSsNCF839eNSzas  
JO23i7scm2U=KHwA  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6582-01

Red Hat Security Advisory 2022-6585-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a double free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: ruby security, bug fix, and enhancement update  
Advisory ID:       RHSA-2022:6585-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6585  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-28738 CVE-2022-28739  
====================================================================  
1. Summary:

An update for ruby is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - noarch  
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Ruby is an extensible, interpreted, object-oriented, scripting language. It  
has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version: ruby  
(3.0.4). (BZ#2109428)

Security Fix(es):

* Ruby: Double free in Regexp compilation (CVE-2022-28738)

* Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2075685 - CVE-2022-28738 Ruby: Double free in Regexp compilation  
2075687 - CVE-2022-28739 Ruby: Buffer overrun in String-to-Float conversion  
2109428 - ruby:3.0/ruby: Rebase to the latest Ruby 3.0 release [rhel-9] [rhel-9.0.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
ruby-3.0.4-160.el9_0.src.rpm

aarch64:  
ruby-3.0.4-160.el9_0.aarch64.rpm  
ruby-debuginfo-3.0.4-160.el9_0.aarch64.rpm  
ruby-debugsource-3.0.4-160.el9_0.aarch64.rpm  
ruby-devel-3.0.4-160.el9_0.aarch64.rpm  
ruby-libs-3.0.4-160.el9_0.aarch64.rpm  
ruby-libs-debuginfo-3.0.4-160.el9_0.aarch64.rpm  
rubygem-bigdecimal-3.0.0-160.el9_0.aarch64.rpm  
rubygem-bigdecimal-debuginfo-3.0.0-160.el9_0.aarch64.rpm  
rubygem-io-console-0.5.7-160.el9_0.aarch64.rpm  
rubygem-io-console-debuginfo-0.5.7-160.el9_0.aarch64.rpm  
rubygem-json-2.5.1-160.el9_0.aarch64.rpm  
rubygem-json-debuginfo-2.5.1-160.el9_0.aarch64.rpm  
rubygem-psych-3.3.2-160.el9_0.aarch64.rpm  
rubygem-psych-debuginfo-3.3.2-160.el9_0.aarch64.rpm

noarch:  
ruby-default-gems-3.0.4-160.el9_0.noarch.rpm  
rubygem-bundler-2.2.33-160.el9_0.noarch.rpm  
rubygem-irb-1.3.5-160.el9_0.noarch.rpm  
rubygem-minitest-5.14.2-160.el9_0.noarch.rpm  
rubygem-power_assert-1.2.0-160.el9_0.noarch.rpm  
rubygem-rake-13.0.3-160.el9_0.noarch.rpm  
rubygem-rbs-1.4.0-160.el9_0.noarch.rpm  
rubygem-rdoc-6.3.3-160.el9_0.noarch.rpm  
rubygem-rexml-3.2.5-160.el9_0.noarch.rpm  
rubygem-rss-0.2.9-160.el9_0.noarch.rpm  
rubygem-test-unit-3.3.7-160.el9_0.noarch.rpm  
rubygem-typeprof-0.15.2-160.el9_0.noarch.rpm  
rubygems-3.2.33-160.el9_0.noarch.rpm  
rubygems-devel-3.2.33-160.el9_0.noarch.rpm

ppc64le:  
ruby-3.0.4-160.el9_0.ppc64le.rpm  
ruby-debuginfo-3.0.4-160.el9_0.ppc64le.rpm  
ruby-debugsource-3.0.4-160.el9_0.ppc64le.rpm  
ruby-devel-3.0.4-160.el9_0.ppc64le.rpm  
ruby-libs-3.0.4-160.el9_0.ppc64le.rpm  
ruby-libs-debuginfo-3.0.4-160.el9_0.ppc64le.rpm  
rubygem-bigdecimal-3.0.0-160.el9_0.ppc64le.rpm  
rubygem-bigdecimal-debuginfo-3.0.0-160.el9_0.ppc64le.rpm  
rubygem-io-console-0.5.7-160.el9_0.ppc64le.rpm  
rubygem-io-console-debuginfo-0.5.7-160.el9_0.ppc64le.rpm  
rubygem-json-2.5.1-160.el9_0.ppc64le.rpm  
rubygem-json-debuginfo-2.5.1-160.el9_0.ppc64le.rpm  
rubygem-psych-3.3.2-160.el9_0.ppc64le.rpm  
rubygem-psych-debuginfo-3.3.2-160.el9_0.ppc64le.rpm

s390x:  
ruby-3.0.4-160.el9_0.s390x.rpm  
ruby-debuginfo-3.0.4-160.el9_0.s390x.rpm  
ruby-debugsource-3.0.4-160.el9_0.s390x.rpm  
ruby-devel-3.0.4-160.el9_0.s390x.rpm  
ruby-libs-3.0.4-160.el9_0.s390x.rpm  
ruby-libs-debuginfo-3.0.4-160.el9_0.s390x.rpm  
rubygem-bigdecimal-3.0.0-160.el9_0.s390x.rpm  
rubygem-bigdecimal-debuginfo-3.0.0-160.el9_0.s390x.rpm  
rubygem-io-console-0.5.7-160.el9_0.s390x.rpm  
rubygem-io-console-debuginfo-0.5.7-160.el9_0.s390x.rpm  
rubygem-json-2.5.1-160.el9_0.s390x.rpm  
rubygem-json-debuginfo-2.5.1-160.el9_0.s390x.rpm  
rubygem-psych-3.3.2-160.el9_0.s390x.rpm  
rubygem-psych-debuginfo-3.3.2-160.el9_0.s390x.rpm

x86_64:  
ruby-3.0.4-160.el9_0.i686.rpm  
ruby-3.0.4-160.el9_0.x86_64.rpm  
ruby-debuginfo-3.0.4-160.el9_0.i686.rpm  
ruby-debuginfo-3.0.4-160.el9_0.x86_64.rpm  
ruby-debugsource-3.0.4-160.el9_0.i686.rpm  
ruby-debugsource-3.0.4-160.el9_0.x86_64.rpm  
ruby-devel-3.0.4-160.el9_0.i686.rpm  
ruby-devel-3.0.4-160.el9_0.x86_64.rpm  
ruby-libs-3.0.4-160.el9_0.i686.rpm  
ruby-libs-3.0.4-160.el9_0.x86_64.rpm  
ruby-libs-debuginfo-3.0.4-160.el9_0.i686.rpm  
ruby-libs-debuginfo-3.0.4-160.el9_0.x86_64.rpm  
rubygem-bigdecimal-3.0.0-160.el9_0.x86_64.rpm  
rubygem-bigdecimal-debuginfo-3.0.0-160.el9_0.i686.rpm  
rubygem-bigdecimal-debuginfo-3.0.0-160.el9_0.x86_64.rpm  
rubygem-io-console-0.5.7-160.el9_0.x86_64.rpm  
rubygem-io-console-debuginfo-0.5.7-160.el9_0.i686.rpm  
rubygem-io-console-debuginfo-0.5.7-160.el9_0.x86_64.rpm  
rubygem-json-2.5.1-160.el9_0.x86_64.rpm  
rubygem-json-debuginfo-2.5.1-160.el9_0.i686.rpm  
rubygem-json-debuginfo-2.5.1-160.el9_0.x86_64.rpm  
rubygem-psych-3.3.2-160.el9_0.x86_64.rpm  
rubygem-psych-debuginfo-3.3.2-160.el9_0.i686.rpm  
rubygem-psych-debuginfo-3.3.2-160.el9_0.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

noarch:  
ruby-doc-3.0.4-160.el9_0.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-28738  
https://access.redhat.com/security/cve/CVE-2022-28739  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfvtzjgjWX9erEAQjaXQ/+LfzraWPwLDEBfxU87XekVmDQn/KHLw0Q  
TPgRpDtvfVkmSDDCEvYvvMOYSW3MdNmNJOwPhQyJT3cBrq0zHUog0ejoJO5jV3B1  
rOStJ/EfwskmCVaPehhJvGfrKVr2l6Uo8SH0zrLMKBtqd42/GrO2eiDs/xxhVq5U  
wvgecfUQY8lfpJ25ELa/081aAe4Cg4NN7WShf7DFJ2tw+f/IguCWi+CHZoavv3AQ  
T7So/dbIjFJmliaPcTkvW02m+JHxNGduXJfelMXB72eyJR7/jEK7OvfE89a18yZ8  
P38biUIPZFNaLW1SN62GnA8Qby6g9C/1x+pXssEQ6fo1qJPk/bW6qYfPWWM4Op5N  
VsTFDx7EAZRCQFnyczTcaUE7g9s4ZovK4qMqTZq9BhP25m9yisvV1jizNpSU6vMi  
h37/Mi0gcOOcjbtj8Nlbtx+QsHFJvOgTjDIiwPVllMpxygWjSRRnR+LBoTHCPlP2  
ZG5q8MGwZAIfzKSP9Fjg58rJoiWnzyJWFLEym38lfrrjch21CtgaKm28wrKQ18PC  
7GQ/A/rARWMfAKnFYEO4zF07kidgTwyVJI5RJv8b9x4vLo7/G80CVDXIYjEDP4FR  
7fNpEfc9/owximR5WpTds3GfzTDSKzNonHX/oNhIaJLkQ27RTSPXORzxtAsz2a6j  
jbIYxx9rQto=komJ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6585-01

Red Hat Security Advisory 2022-6595-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: nodejs and nodejs-nodemon security and bug fix update  
Advisory ID:       RHSA-2022:6595-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6595  
Issue date:        2022-09-20  
CVE Names:         CVE-2020-7788 CVE-2020-28469 CVE-2021-3807   
                   CVE-2021-33502 CVE-2022-29244 CVE-2022-32212   
                   CVE-2022-32213 CVE-2022-32214 CVE-2022-32215   
                   CVE-2022-33987   
=====================================================================

1. Summary:

An update for nodejs and nodejs-nodemon is now available for Red Hat  
Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The following packages have been upgraded to a later upstream version:  
nodejs (16.16.0), nodejs-nodemon (2.0.19). (BZ#2124230, BZ#2124233)

Security Fix(es):

* nodejs-ini: Prototype pollution via malicious INI file (CVE-2020-7788)

* nodejs-glob-parent: Regular expression denial of service (CVE-2020-28469)

* nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching  
ANSI escape codes (CVE-2021-3807)

* normalize-url: ReDoS for data URLs (CVE-2021-33502)

* nodejs: npm pack ignores root-level .gitignore and .npmignore file  
exclusion directives when run in a workspace (CVE-2022-29244)

* nodejs: DNS rebinding in --inspect via invalid IP addresses  
(CVE-2022-32212)

* nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding  
(CVE-2022-32213)

* nodejs: HTTP request smuggling due to improper delimiting of header  
fields (CVE-2022-32214)

* nodejs: HTTP request smuggling due to incorrect parsing of multi-line  
Transfer-Encoding (CVE-2022-32215)

* got: missing verification of requested URLs allows redirects to UNIX  
sockets (CVE-2022-33987)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* nodejs:16/nodejs: Rebase to the latest Nodejs 16 release [rhel-9]  
(BZ#2121019)

* nodejs: Specify --with-default-icu-data-dir when using bootstrap build  
(BZ#2124299)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1907444 - CVE-2020-7788 nodejs-ini: Prototype pollution via malicious INI file  
1945459 - CVE-2020-28469 nodejs-glob-parent: Regular expression denial of service  
1964461 - CVE-2021-33502 nodejs-normalize-url: ReDoS for data URLs  
2007557 - CVE-2021-3807 nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes  
2098556 - CVE-2022-29244 nodejs: npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace  
2102001 - CVE-2022-33987 nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets  
2105422 - CVE-2022-32212 nodejs: DNS rebinding in --inspect via invalid IP addresses  
2105426 - CVE-2022-32215 nodejs: HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding  
2105428 - CVE-2022-32214 nodejs: HTTP request smuggling due to improper delimiting of header fields  
2105430 - CVE-2022-32213 nodejs: HTTP request smuggling due to flawed parsing of Transfer-Encoding  
2121019 - nodejs:16/nodejs: Rebase to the latest Nodejs 16 release [rhel-9] [rhel-9.0.0.z]  
2124299 - nodejs: Specify --with-default-icu-data-dir when using bootstrap build [rhel-9.0.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
nodejs-16.16.0-1.el9_0.src.rpm  
nodejs-nodemon-2.0.19-1.el9_0.src.rpm

aarch64:  
nodejs-16.16.0-1.el9_0.aarch64.rpm  
nodejs-debuginfo-16.16.0-1.el9_0.aarch64.rpm  
nodejs-debugsource-16.16.0-1.el9_0.aarch64.rpm  
nodejs-full-i18n-16.16.0-1.el9_0.aarch64.rpm  
nodejs-libs-16.16.0-1.el9_0.aarch64.rpm  
nodejs-libs-debuginfo-16.16.0-1.el9_0.aarch64.rpm  
npm-8.11.0-1.16.16.0.1.el9_0.aarch64.rpm

noarch:  
nodejs-docs-16.16.0-1.el9_0.noarch.rpm  
nodejs-nodemon-2.0.19-1.el9_0.noarch.rpm

ppc64le:  
nodejs-16.16.0-1.el9_0.ppc64le.rpm  
nodejs-debuginfo-16.16.0-1.el9_0.ppc64le.rpm  
nodejs-debugsource-16.16.0-1.el9_0.ppc64le.rpm  
nodejs-full-i18n-16.16.0-1.el9_0.ppc64le.rpm  
nodejs-libs-16.16.0-1.el9_0.ppc64le.rpm  
nodejs-libs-debuginfo-16.16.0-1.el9_0.ppc64le.rpm  
npm-8.11.0-1.16.16.0.1.el9_0.ppc64le.rpm

s390x:  
nodejs-16.16.0-1.el9_0.s390x.rpm  
nodejs-debuginfo-16.16.0-1.el9_0.s390x.rpm  
nodejs-debugsource-16.16.0-1.el9_0.s390x.rpm  
nodejs-full-i18n-16.16.0-1.el9_0.s390x.rpm  
nodejs-libs-16.16.0-1.el9_0.s390x.rpm  
nodejs-libs-debuginfo-16.16.0-1.el9_0.s390x.rpm  
npm-8.11.0-1.16.16.0.1.el9_0.s390x.rpm

x86_64:  
nodejs-16.16.0-1.el9_0.x86_64.rpm  
nodejs-debuginfo-16.16.0-1.el9_0.i686.rpm  
nodejs-debuginfo-16.16.0-1.el9_0.x86_64.rpm  
nodejs-debugsource-16.16.0-1.el9_0.i686.rpm  
nodejs-debugsource-16.16.0-1.el9_0.x86_64.rpm  
nodejs-full-i18n-16.16.0-1.el9_0.x86_64.rpm  
nodejs-libs-16.16.0-1.el9_0.i686.rpm  
nodejs-libs-16.16.0-1.el9_0.x86_64.rpm  
nodejs-libs-debuginfo-16.16.0-1.el9_0.i686.rpm  
nodejs-libs-debuginfo-16.16.0-1.el9_0.x86_64.rpm  
npm-8.11.0-1.16.16.0.1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-7788  
https://access.redhat.com/security/cve/CVE-2020-28469  
https://access.redhat.com/security/cve/CVE-2021-3807  
https://access.redhat.com/security/cve/CVE-2021-33502  
https://access.redhat.com/security/cve/CVE-2022-29244  
https://access.redhat.com/security/cve/CVE-2022-32212  
https://access.redhat.com/security/cve/CVE-2022-32213  
https://access.redhat.com/security/cve/CVE-2022-32214  
https://access.redhat.com/security/cve/CVE-2022-32215  
https://access.redhat.com/security/cve/CVE-2022-33987  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfntzjgjWX9erEAQiKsQ//dy7Qvi6Wa/fsPiQS4NogyG+99WpgI1Yw  
/jEpt68jmO8h7Fuz/fyQ4wLRKj9KjccW6hbPQQwvEqwdYTLLsAleT4unRty68VDW  
WvH/K6W6GLJBdP+DMyRWpUUaprfz3mthXBB02wYCmrrvbBL+K2yPQYd4X4sAX/kk  
jhKwdZTDOk48XJ+Cccgrv0lORt/C9mj17D44CfjSxTEQAnyIwv1TGuOjgXoxw6dp  
fT4iY6zE2+B3jzP2c/TcvCe0DV6Q6FkYTymQDLDLX7WScv+hIcKpwgJqmoGT9lNG  
8WE7HhrrnQTo8DsijHscLgSq5QizfWfWnZTzwOZmM/HMu/cwBOfvQVpMg9SHJMIx  
vt0DzIQTUuF/fFIeFnhQ/nBcUMN5bUHvBbQE0UXH5bp/IEa5rMbLNuHWc5xuznAZ  
hEWq4INMJab1xwUviesFWItZNoSUBRg7J5Q56VvWc+UXRI/8vvhGI6ATVr+QDwur  
BxGePdZUNqbS2uxybJEiqHsVFSqqu1qM3jiNrB6qxTsw2De6/YtjhqDIBLpTV8Nd  
kAxMMscaZeegh7Ti7nNz5lkA4NKm2Sx5/pSJwncfmxbllwkHZwAxpi5OyHydjiIX  
TeAzvrVYEoJE1n5Mbhy87wQuQNGVurYfcUSn8gg6Yj1+gSQOCgLJjeQEiltsrvzG  
R3JkxhCwPUo=  
=1HGQ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6595-01

Red Hat Security Advisory 2022-6608-01 - dbus-broker is an implementation of a message bus as defined by the D-Bus specification. Its aim is to provide high performance and reliability, while keeping compatibility to the D-Bus reference implementation. It is exclusively written for Linux systems, and makes use of many modern features provided by recent Linux kernel releases. Issues addressed include buffer over-read and null pointer vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: dbus-broker security update  
Advisory ID:       RHSA-2022:6608-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6608  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-31212 CVE-2022-31213   
=====================================================================

1. Summary:

An update for dbus-broker is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

dbus-broker is an implementation of a message bus as defined by the D-Bus  
specification. Its aim is to provide high performance and reliability,  
while keeping compatibility to the D-Bus reference implementation. It is  
exclusively written for Linux systems, and makes use of many modern  
features provided by recent Linux kernel releases.

Security Fix(es):

* dbus-broker: a stack buffer over-read if a malicious Exec line is  
supplied (CVE-2022-31212)

* dbus-broker: null pointer reference when supplying a malformed XML config  
file (CVE-2022-31213)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2094718 - CVE-2022-31212 dbus-broker: a stack buffer over-read if a malicious Exec line is supplied  
2094722 - CVE-2022-31213 dbus-broker: null pointer reference when supplying a malformed XML config file

6. Package List:

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
dbus-broker-28-5.1.el9_0.src.rpm

aarch64:  
dbus-broker-28-5.1.el9_0.aarch64.rpm  
dbus-broker-debuginfo-28-5.1.el9_0.aarch64.rpm  
dbus-broker-debugsource-28-5.1.el9_0.aarch64.rpm

ppc64le:  
dbus-broker-28-5.1.el9_0.ppc64le.rpm  
dbus-broker-debuginfo-28-5.1.el9_0.ppc64le.rpm  
dbus-broker-debugsource-28-5.1.el9_0.ppc64le.rpm

s390x:  
dbus-broker-28-5.1.el9_0.s390x.rpm  
dbus-broker-debuginfo-28-5.1.el9_0.s390x.rpm  
dbus-broker-debugsource-28-5.1.el9_0.s390x.rpm

x86_64:  
dbus-broker-28-5.1.el9_0.x86_64.rpm  
dbus-broker-debuginfo-28-5.1.el9_0.x86_64.rpm  
dbus-broker-debugsource-28-5.1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-31212  
https://access.redhat.com/security/cve/CVE-2022-31213  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfkdzjgjWX9erEAQiYfQ//fRtjolqDZyqH7L9xztUuHaw3lSHLNA8h  
l6S0hdRm00n3LXLV4b5nUP4w658nabDNZnpHpbEPhJ+zmIpYsuxgU31ZdqaxDt0N  
VxKwJVZhr9Cl/Rwq0kTsfTNxa0eh1xM4UMpGp5VRG1Heybh+/OoIy2b8U92zKXy7  
tkiiMFe+XHc6GvWYLcV5ZssTkWRPqq9BIFkbC/pv4H0ZfEZLEPtBROTiDdXYeWv0  
232PgOdXhxC/chXMLKZ1hrxerF317fTv6F+oVDXCrCHoTi+1KcIxAejieffnlQHE  
IdmjRWKPs51JpA7byflFsn6vZH623vqm15/cRz3jJs3EWZVoaPJL/s84siiNt+Pu  
Oy7FiyUN00NUDRzrNmo/JBGrqvjDjZAU/KyxaKBCPzttSpDVD5QK57khge6giCjM  
+5cXKXSuuMah7fuIcx08vdr4BGlXmO3J7r2q72LeiU7JFws3KSawj8c1G/YgxxU/  
J4NXuKStijmLrkyuP7XwPe3okV6LFJhArAUY8yVGZfcuD8gwWvl/15hpYmB5R1VW  
WG9S9JRPK3hDCIOw3w3i3wbLh5yBSoQJTXl57QO4+5CVhBHxKnPzjWDY8Xg9MdDr  
2a/s907lzbO1WQLl00mxBkngHcT7vRGPammpSyfY68Sg1vkJzLM3DceHZoTF1JP7  
7NxUgIwhSCk=  
=clNW  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6608-01

Red Hat Security Advisory 2022-6610-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow and heap overflow vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kernel security, bug fix, and enhancement update  
Advisory ID:       RHSA-2022:6610-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6610  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-2078 CVE-2022-34918   
=====================================================================

1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: heap overflow in nft_set_elem_init() (CVE-2022-34918)

* kernel: vulnerability of buffer overflow in nft_set_desc_concat_parse()  
(CVE-2022-2078)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* RDMA/mlx5: Fix number of allocated XLT entries (BZ#2092270)

* mlx5, Setup hanged when run test-route-nexthop-object.sh (BZ#2092535)

* many call traces from unchecked MSR access error: WRMSR to 0x199 in  
amazon i4.32xlarge instance (BZ#2099417)

* X86/platform/UV: Kernel Support Fixes for UV5 platform (BZ#2107732)

* block layer: fixes for md sync slow and softlockup at  
blk_mq_sched_dispatch_requests [9.0.0.z] (BZ#2111395)

* Fixes for NVMe/TCP dereferences an invalid, non-canonical pointer, kernel  
panic (BZ#2117755)

* Adding missing nvme fix to RHEL-9.1 (BZ#2117756)

* nvme/tcp mistakenly uses blk_mq_tag_to_rq(nvme_tcp_tagset(queue)  
(BZ#2118698)

* Important ice bug fixes (BZ#2119290)

* Power 9/ppc64le Incorrect Socket(s) & "Core(s) per socket" reported by  
lscpu command. (BZ#2121719)

Enhancement(s):

* lscpu does not show all of the support AMX flags (amx_int8, amx_bf16)   
(BZ#2108203)

* ice: Driver Update (BZ#2108204)

* iavf: Driver Update (BZ#2119477)

* i40e: Driver Update (BZ#2119479)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2096178 - CVE-2022-2078 kernel: Vulnerability of buffer overflow in nft_set_desc_concat_parse()  
2104423 - CVE-2022-34918 kernel: heap overflow in nft_set_elem_init()

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

aarch64:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-devel-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-devel-matched-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-devel-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-devel-matched-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-headers-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
perf-5.14.0-70.26.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm

noarch:  
kernel-doc-5.14.0-70.26.1.el9_0.noarch.rpm

ppc64le:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-devel-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-devel-matched-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-devel-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-devel-matched-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-headers-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
perf-5.14.0-70.26.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm

s390x:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-devel-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-devel-matched-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-devel-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-devel-matched-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-headers-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-devel-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-devel-matched-5.14.0-70.26.1.el9_0.s390x.rpm  
perf-5.14.0-70.26.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm

x86_64:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-devel-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-devel-matched-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-devel-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-devel-matched-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-headers-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
perf-5.14.0-70.26.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
kernel-5.14.0-70.26.1.el9_0.src.rpm

aarch64:  
bpftool-5.14.0-70.26.1.el9_0.aarch64.rpm  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-core-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-core-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-modules-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-modules-extra-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-modules-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-modules-extra-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-libs-5.14.0-70.26.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
python3-perf-5.14.0-70.26.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm

noarch:  
kernel-abi-stablelists-5.14.0-70.26.1.el9_0.noarch.rpm

ppc64le:  
bpftool-5.14.0-70.26.1.el9_0.ppc64le.rpm  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-core-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-core-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-modules-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-modules-extra-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-modules-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-modules-extra-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-libs-5.14.0-70.26.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
python3-perf-5.14.0-70.26.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm

s390x:  
bpftool-5.14.0-70.26.1.el9_0.s390x.rpm  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-core-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-core-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-modules-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-modules-extra-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-modules-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-modules-extra-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-tools-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-core-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-modules-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-modules-extra-5.14.0-70.26.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
python3-perf-5.14.0-70.26.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm

x86_64:  
bpftool-5.14.0-70.26.1.el9_0.x86_64.rpm  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-core-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-core-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-modules-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-modules-extra-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-modules-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-modules-extra-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-libs-5.14.0-70.26.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
python3-perf-5.14.0-70.26.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

aarch64:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-cross-headers-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-debuginfo-common-aarch64-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
kernel-tools-libs-devel-5.14.0-70.26.1.el9_0.aarch64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.aarch64.rpm

ppc64le:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-cross-headers-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
kernel-tools-libs-devel-5.14.0-70.26.1.el9_0.ppc64le.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.ppc64le.rpm

s390x:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-cross-headers-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-debuginfo-common-s390x-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
kernel-zfcpdump-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.s390x.rpm

x86_64:  
bpftool-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-cross-headers-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debug-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-debuginfo-common-x86_64-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
kernel-tools-libs-devel-5.14.0-70.26.1.el9_0.x86_64.rpm  
perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm  
python3-perf-debuginfo-5.14.0-70.26.1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2078  
https://access.redhat.com/security/cve/CVE-2022-34918  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfhdzjgjWX9erEAQjSpg//Y3ak+k0a3QlbNSwSEH9F0GLE0KOV9tk+  
xPp+xXuUzNJ7iQ3+UhgksBs1faIBtvNgpURFZ2xsvIY3Z1TtuK0G7bBLffd0yO9J  
6fTDVZmeeCrlmwrWtKCT/2rm10tAk/zQA2BftzG6M/1fcFjfKB1N/k+KXwp9Jt/n  
1WC19sEAZWAUGW2Fxe7500HvN6Q/24EWPn2OcYGdXzS/XNqJwdK148OYg0A6pBtT  
hk7NOXMJr8fTABdg3BPnEXly1udTUgJnF0gvOl0tB6WNLxnHxc/61XnWIAk9/OYp  
DchPL+f7G/lH+5O2EgJG5OaFaUrznkbu8U1zEGOS1rZCdP9kMrX552P60jD4br4/  
K1YASzwh6bp9UqJKtBEW6O2hX+s89o8Hzuyrdnz8Cy2AMD8Q0ceqnu8bTWhKHf/l  
daeLjh2vLXNRMeQZEpaYtiOOQNIGmVA1n/Zd1A+GoNcFmvGbQ4+G8l18GSvXc09V  
A0o5vL6fwssDeLCkuQi+pw5YBgvPC083Q9tQH9TS2Fr13unk5H3bj3duMzI4t0Ao  
g0E+jKR7VaVCA2B0syXr5XyWqKZ4pFIQZKq547LpdjivCLnvuD3WsTNwGxTkSm2u  
Aq0jQvXi2A2bZwd+PrsfWqAqVr9i7G3+vElmsPD9p6tajT4z/1iCbhC0YMqncE7P  
aCsumFjp/qg=  
=bwiS  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6610-01

Red Hat Security Advisory 2022-6634-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include a code execution vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: webkit2gtk3 security update  
Advisory ID:       RHSA-2022:6634-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6634  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-32893   
=====================================================================

1. Summary:

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the  
GTK platform.

The following packages have been upgraded to a later upstream version:  
webkit2gtk3 (2.36.7).

Security Fix(es):

* webkitgtk: processing maliciously crafted web content may lead to  
arbitrary code execution (CVE-2022-32893)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2121645 - CVE-2022-32893 webkitgtk: processing maliciously crafted web content may lead to arbitrary code execution

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
webkit2gtk3-2.36.7-1.el9_0.src.rpm

aarch64:  
webkit2gtk3-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-devel-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_0.aarch64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_0.aarch64.rpm

ppc64le:  
webkit2gtk3-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-devel-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_0.ppc64le.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_0.ppc64le.rpm

s390x:  
webkit2gtk3-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-devel-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_0.s390x.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_0.s390x.rpm

x86_64:  
webkit2gtk3-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-devel-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-devel-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_0.x86_64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_0.i686.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-32893  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfctzjgjWX9erEAQjA2g//RRYnsrJwmLSw/YoPS09EbxgsAaJ1RtRo  
qkrYvpnvgUUcR8R9DBzn7BLmPq2t/2sQBO7xI5i0Kl1c1EszV3+Zy8gLhNWc0A0+  
KPdWKbrE2pEd7SCI171Jmphq62q6leogd53Wj0KHaVIjjxO6pnoQqwlKWAELpk0f  
6jd9TQqvdiynZuHTELTj2AlkqYDP/Lola+hsNAfAm0klKs+QMPujtqP02t8pd4NA  
NL0Jn4EjSXQHKp/2xDIw04SX+ZaBhONmnxe9BP+oD7xrdO1MiENph+SRrIH0kIGV  
kE2aOvOymNe2g1VIW3a3flbt73XP7/wBi6fY61vh8wu3vrIgarUFDsVTuXUbqON6  
REw36NZP67ypl83h7odbLVPa0BQ7LHb1ALlZqQ0q717tbeTu/vzRhpyqzlEdJ3/v  
tpqzLbwYpmWM9l5a7WRAgEGBk/5n/wSP0hSWvM16nT/E+F4gmf6DsaTMVdhlxbRI  
Y+pSNtUHMRm7d3CA/VsfS7cAyLMiqrLE7StwSj0DkPT/Tz4LCUXy5TkCy4rTB7Bg  
cwNdK2d/JB0zpKmi1K1YguA5dYAClxMF4SEy2EwwlbL62wZUzsyMuOOyXq9aStlE  
ILicD7q9fjhDKEAodB5y2/XoB6xUpbszrT7dOjvwMs9FrthdNLeOvB91/aCt/tcF  
wRVOZr938yc=  
=OoQv  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6634-01

Red Hat Security Advisory 2022-6602-01 - The GNU Privacy Guard is a tool for encrypting data and creating digital signatures, compliant with OpenPGP and S/MIME standards. Issues addressed include a spoofing vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: gnupg2 security update  
Advisory ID:       RHSA-2022:6602-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6602  
Issue date:        2022-09-20  
CVE Names:         CVE-2022-34903   
=====================================================================

1. Summary:

An update for gnupg2 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

The GNU Privacy Guard (GnuPG or GPG) is a tool for encrypting data and  
creating digital signatures, compliant with OpenPGP and S/MIME standards.

Security Fix(es):

* gpg: Signature spoofing via status line injection (CVE-2022-34903)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2102868 - CVE-2022-34903 gpg: Signature spoofing via status line injection

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

aarch64:  
gnupg2-debuginfo-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-smime-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.aarch64.rpm

ppc64le:  
gnupg2-debuginfo-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-smime-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.ppc64le.rpm

s390x:  
gnupg2-debuginfo-2.3.3-2.el9_0.s390x.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.s390x.rpm  
gnupg2-smime-2.3.3-2.el9_0.s390x.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.s390x.rpm

x86_64:  
gnupg2-debuginfo-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-smime-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.x86_64.rpm

Red Hat Enterprise Linux BaseOS (v. 9):

Source:  
gnupg2-2.3.3-2.el9_0.src.rpm

aarch64:  
gnupg2-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-debuginfo-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.aarch64.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.aarch64.rpm

ppc64le:  
gnupg2-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-debuginfo-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.ppc64le.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.ppc64le.rpm

s390x:  
gnupg2-2.3.3-2.el9_0.s390x.rpm  
gnupg2-debuginfo-2.3.3-2.el9_0.s390x.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.s390x.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.s390x.rpm

x86_64:  
gnupg2-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-debuginfo-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-debugsource-2.3.3-2.el9_0.x86_64.rpm  
gnupg2-smime-debuginfo-2.3.3-2.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-34903  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYypfX9zjgjWX9erEAQiOvhAAhVRPZMa292T4ShXZAj/q0CrQorvNe2nQ  
yvOLbVmhP1hoGNczgXjCCaO8j72n2ZW4jDW1Y+iTIwdthKUWBp8+OjAJOeVjUuex  
8BWX36sbIND6cNaRPhdayAaMt23nTkOqEKOHZQiAVkGdZefRQm0NCEnutsaGxc4f  
9zg90wOrO3NCpIY5BbSqoa/yRPShL9c/myjeqngmaeviuDY435+cH+mRJtHiIEee  
RJld/ltoOoGwJSMiNr4fXLoFuPAYlSKvKYf4NPehRve3ykdgm492NIZgtSFcZs5I  
XkjmMJGqNHP6Q0a5+3Z89j1sFZR8uXH+sV0ZpW7RsdRqnzZULuXjBIv/8d3sZywM  
mxruNtaYOsmIh8uUzvkd2c/2gUKjKv9pO2o/Au4nq6dE1axWy1WLEvTUztk5sZ8N  
d0/y4t904ABz6u5aYADoObmCyULEkjY75FAcyzl6Zvayw9/SJH52pOPgYLzqR8Tu  
wOOgVdFtQju+5/ASzpuVnN6AjxcrBsTvEKOBI8zHTqlzaq6QpaZlO8etdcc2TXHV  
eVdSzlBbt0aZuqxhJD+y0N4N9/Oapq2JFjyaF6pac8wrcRrX8/j5FoOQPE/P4OOI  
qBGwF5WhU53uRoXYEMGT4GrgQfyuQypCbUUjTSkxcI4bidX3U2e5iT0cg4Kjv7qK  
tqtXxkGaWqc=  
=ep9h  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-6602-01

In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.

Age

Commit message (Expand)

Author

Files

Lines

2021-11-19

media: dvb-core: Convert to SPDX identifier

Cai Huoqing

1

\-11/+1

2021-11-19

media: dmxdev: fix UAF when dvb\_register\_device() fails

Wang Hai

1

\-3/+15

2021-06-09

media: dmxdev: change the check for problems allocing secfeed

Mauro Carvalho Chehab

1

\-1/+1

2019-02-18

media: dvb-core: fix epoll() by calling poll\_wait first

Hans Verkuil

1

\-4/+4

2018-09-12

media: dvb: dmxdev: move compat\_ioctl handling to dmxdev.c

Arnd Bergmann

1

\-0/+1

2018-06-12

treewide: Use array\_size() in vmalloc()

Kees Cook

1

\-1/+2

2018-05-09

media: Revert cleanup ktime\_set() usage

Jasmin Jessich

1

\-1/+1

2018-02-23

media: dvb: update buffer mmaped flags and frame counter

Mauro Carvalho Chehab

1

\-9/+15

2018-02-23

media: dmxdev: Fix the logic that enables DMA mmap support

Mauro Carvalho Chehab

1

\-33/+42

2018-02-23

media: dmxdev: fix error code for invalid ioctls

Mauro Carvalho Chehab

1

\-1/+1

2018-02-23

media: dvb: fix DVB\_MMAP symbol name

Arnd Bergmann

1

\-15/+15

2018-02-11

vfs: do bulk POLL\* -> EPOLL\* replacement

Linus Torvalds

1

\-7/+7

2018-02-06

Merge tag 'media/v4.16-2' of git://git.kernel.org/pub/scm/linux/kernel/git/mc...

Linus Torvalds

1

\-21/+211

2017-12-28

media: move dvb kAPI headers to include/media

Mauro Carvalho Chehab

1

\-2/+2

2017-12-28

media: dvb-core: make DVB mmap API optional

Mauro Carvalho Chehab

1

\-8/+58

2017-12-28

media: videobuf2: Add new uAPI for DVB streaming I/O

Satendra Singh Thakur

1

\-28/+168

2017-11-27

media: annotate ->poll() instances

Al Viro

1

\-4/+4

2017-10-31

media: dvb-core: Convert timers to use timer\_setup()

Kees Cook

1

\-5/+3

2017-09-05

media: get rid of removed DMX\_GET\_CAPS and DMX\_SET\_SOURCE leftovers

Mauro Carvalho Chehab

1

\-20/+0

2017-09-05

media: dmx.h: split typedefs from structs

Mauro Carvalho Chehab

1

\-2/+2

2017-02-03

\[media\] media: dvb: dmx: fixed coding style issues of spacing

devendra sharma

1

\-5/+7

2017-01-27

\[media\] media: Drop FSF's postal address from the source code files

Sakari Ailus

1

\-4/+0

2016-12-25

ktime: Cleanup ktime\_set() usage

Thomas Gleixner

1

\-1/+1

2016-12-24

Replace <asm/uaccess.h> with <linux/uaccess.h> globally

Linus Torvalds

1

\-1/+1

2016-10-21

\[media\] dvb-core: get rid of demux optional circular buffer

Mauro Carvalho Chehab

1

\-2/+2

2016-10-21

\[media\] dvb-core: use pr\_foo() instead of printk()

Mauro Carvalho Chehab

1

\-9/+15

2016-07-08

\[media\] dvb: use ktime\_t for internal timeout

Arnd Bergmann

1

\-1/+1

2016-01-11

\[media\] dvb: modify core to implement interfaces/entities at MC new gen

Mauro Carvalho Chehab

1

\-2/+2

2015-10-06

\[media\] dvb: get rid of enum dmx\_success

Mauro Carvalho Chehab

1

\-4/+2

2015-10-06

\[media\] dvb: don't keep support for undocumented features

Mauro Carvalho Chehab

1

\-0/+4

2015-02-26

\[media\] dvb core: rename the media controller entities

Mauro Carvalho Chehab

1

\-2/+2

2015-02-13

\[media\] dmxdev: add support for demux/dvr nodes at media controller

Mauro Carvalho Chehab

1

\-3/+8

2014-09-03

\[media\] dmxdev: don't use before checking file->private\_data

Mauro Carvalho Chehab

1

\-2/+1

2014-09-02

\[media\] media: check status of dmxdev->exit in poll functions of demux&dvr

Changbing Xiong

1

\-1/+5

2014-09-02

\[media\] media: correct return value in dvb\_demux\_poll

Changbing Xiong

1

\-1/+1

2013-10-24

dmxdev: get rid of pointless clearing ->f\_op

Al Viro

1

\-4/+0

2013-06-19

\[media\] media: dmxdev: remove dvb\_ringbuffer\_flush() on writer side

Soeren Moch

1

\-6/+2

2013-04-08

\[media\] demux.h: Remove duplicated enum

Mauro Carvalho Chehab

1

\-1/+1

2013-03-04

\[media\] mb86a20s: change AGC tuning parameters

Mauro Carvalho Chehab

1

\-1/+2

2012-10-28

\[media\] dmxdev: fix a comparition of unsigned expression warning

Mauro Carvalho Chehab

1

\-1/+1

2012-08-13

\[media\] dvb: move the dvb core one level up

Mauro Carvalho Chehab

1

\-0/+1275

CVE-2022-41218: git/torvalds/linux.git - Linux kernel source tree

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via __asan_memcpy at /asan/asan_interceptors_memintrinsics.cpp:.

Permalink

**Product Link**

https://github.com/matthiaskramm/swftools

**POC file**

https://github.com/matthiaskramm/swftools/files/9034327/id1\_HEAP\_BUFFER\_OVERFLOW.zip

**Command to reproduce**

    ./gif2swf -o /dev/null [sample file]
    

**Product name & version**

last github commit code : 772e55a

**Problem Type****Crash Detail**

    ==32466==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x619000000964 at pc 0x0000004ae3e4 bp 0x7ffce30cd590 sp 0x7ffce30ccd40
    WRITE of size 8 at 0x619000000964 thread T0
        #0 0x4ae3e3 in __asan_memcpy /home/bupt/Desktop/tools/llvm-12.0.1/llvm/projects/compiler-rt/lib/asan/asan_interceptors_memintrinsics.cpp:22
        #1 0x4f8002 in MovieAddFrame /home/bupt/Desktop/swftools/src/gif2swf.c:328:25
        #2 0x4fb951 in main /home/bupt/Desktop/swftools/src/gif2swf.c:728:17
        #3 0x7f9f1d7dec86 in __libc_start_main /build/glibc-CVJwZb/glibc-2.27/csu/../csu/libc-start.c:310
        #4 0x41cfb9 in _start (/home/bupt/Desktop/swftools/build/bin/gif2swf+0x41cfb9)
    
    0x619000000964 is located 4 bytes to the right of 992-byte region [0x619000000580,0x619000000960)
    allocated by thread T0 here:
        #0 0x4af580 in malloc /home/bupt/Desktop/tools/llvm-12.0.1/llvm/projects/compiler-rt/lib/asan/asan_malloc_linux.cpp:145
        #1 0x4f698e in MovieAddFrame /home/bupt/Desktop/swftools/src/gif2swf.c:310:29
        #2 0x4fb951 in main /home/bupt/Desktop/swftools/src/gif2swf.c:728:17
        #3 0x7f9f1d7dec86 in __libc_start_main /build/glibc-CVJwZb/glibc-2.27/csu/../csu/libc-start.c:310
    
    SUMMARY: AddressSanitizer: heap-buffer-overflow /home/bupt/Desktop/tools/llvm-12.0.1/llvm/projects/compiler-rt/lib/asan/asan_interceptors_memintrinsics.cpp:22 in __asan_memcpy
    Shadow bytes around the buggy address:
      0x0c327fff80d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
      0x0c327fff80e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
      0x0c327fff80f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
      0x0c327fff8100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
      0x0c327fff8110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    =>0x0c327fff8120: 00 00 00 00 00 00 00 00 00 00 00 00[fa]fa fa fa
      0x0c327fff8130: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c327fff8140: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c327fff8150: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c327fff8160: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c327fff8170: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
    Shadow byte legend (one shadow byte represents 8 application bytes):
      Addressable:           00
      Partially addressable: 01 02 03 04 05 06 07 
      Heap left redzone:       fa
      Freed heap region:       fd
      Stack left redzone:      f1
      Stack mid redzone:       f2
      Stack right redzone:     f3
      Stack after return:      f5
      Stack use after scope:   f8
      Global redzone:          f9
      Global init order:       f6
      Poisoned by user:        f7
      Container overflow:      fc
      Array cookie:            ac
      Intra object redzone:    bb
      ASan internal:           fe
      Left alloca redzone:     ca
      Right alloca redzone:    cb
      Shadow gap:              cc
    ==32466==ABORTING
    

**Crash summary**

    SUMMARY: AddressSanitizer: heap-buffer-overflow /home/bupt/Desktop/tools/llvm-12.0.1/llvm/projects/compiler-rt/lib/asan/asan_interceptors_memintrinsics.cpp:22 in __asan_memcpy

CVE-2022-35090: Poc/CVE-2022-35090.md at main · Cvjark/Poc

SWFTools commit 772e55a2 was discovered to contain a heap-buffer-overflow via getTransparentColor at /home/bupt/Desktop/swftools/src/gif2swf.

Permalink

Cannot retrieve contributors at this time

**Product Link**

https://github.com/matthiaskramm/swftools

**POC file**

https://github.com/matthiaskramm/swftools/files/9034336/id47\_HEAP\_BUFFER\_OVERFLOW.zip

**Command to reproduce**

    ./gif2swf -o /dev/null [sample file]
    

**Product name & version**

last github commit code : 772e55a

**Problem Type****Crash Detail**

    ==117675==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6020000065f3 at pc 0x0000004f95d9 bp 0x7ffe740a8c50 sp 0x7ffe740a8c48
    READ of size 1 at 0x6020000065f3 thread T0
        #0 0x4f95d8 in getTransparentColor /home/bupt/Desktop/swftools/src/gif2swf.c:141:20
        #1 0x4f95d8 in MovieAddFrame /home/bupt/Desktop/swftools/src/gif2swf.c:269:20
        #2 0x4fb9d9 in main /home/bupt/Desktop/swftools/src/gif2swf.c:730:21
        #3 0x7f7d9a8e5c86 in __libc_start_main /build/glibc-CVJwZb/glibc-2.27/csu/../csu/libc-start.c:310
        #4 0x41cfb9 in _start (/home/bupt/Desktop/swftools/build/bin/gif2swf+0x41cfb9)
    
    0x6020000065f3 is located 0 bytes to the right of 3-byte region [0x6020000065f0,0x6020000065f3)
    allocated by thread T0 here:
        #0 0x4af580 in malloc /home/bupt/Desktop/tools/llvm-12.0.1/llvm/projects/compiler-rt/lib/asan/asan_malloc_linux.cpp:145
        #1 0x7f7d9c21919a in GifAddExtensionBlock (/usr/lib/x86_64-linux-gnu/libgif.so.7+0x519a)
    
    SUMMARY: AddressSanitizer: heap-buffer-overflow /home/bupt/Desktop/swftools/src/gif2swf.c:141:20 in getTransparentColor
    Shadow bytes around the buggy address:
      0x0c047fff8c60: fa fa 06 fa fa fa 04 fa fa fa fd fd fa fa 00 04
      0x0c047fff8c70: fa fa 00 00 fa fa 06 fa fa fa 04 fa fa fa 00 00
      0x0c047fff8c80: fa fa 06 fa fa fa 04 fa fa fa 04 fa fa fa 00 00
      0x0c047fff8c90: fa fa 06 fa fa fa 04 fa fa fa 04 fa fa fa 00 03
      0x0c047fff8ca0: fa fa 03 fa fa fa 04 fa fa fa 00 00 fa fa 01 fa
    =>0x0c047fff8cb0: fa fa 06 fa fa fa 04 fa fa fa 03 fa fa fa[03]fa
      0x0c047fff8cc0: fa fa 01 fa fa fa 06 fa fa fa 04 fa fa fa 04 fa
      0x0c047fff8cd0: fa fa 00 00 fa fa 06 fa fa fa 04 fa fa fa fa fa
      0x0c047fff8ce0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c047fff8cf0: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
      0x0c047fff8d00: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
    Shadow byte legend (one shadow byte represents 8 application bytes):
      Addressable:           00
      Partially addressable: 01 02 03 04 05 06 07 
      Heap left redzone:       fa
      Freed heap region:       fd
      Stack left redzone:      f1
      Stack mid redzone:       f2
      Stack right redzone:     f3
      Stack after return:      f5
      Stack use after scope:   f8
      Global redzone:          f9
      Global init order:       f6
      Poisoned by user:        f7
      Container overflow:      fc
      Array cookie:            ac
      Intra object redzone:    bb
      ASan internal:           fe
      Left alloca redzone:     ca
      Right alloca redzone:    cb
      Shadow gap:              cc
    ==117675==ABORTING
    

**Crash summary**

    SUMMARY: AddressSanitizer: heap-buffer-overflow /home/bupt/Desktop/swftools/src/gif2swf.c:141:20 in getTransparentColor

Tag

#linux