With rising fraud, businesses are seeking authentication methods that are security- and user-friendly. But with that comes a few complications.

Pattie Dillon remembers a story from her time as a consultant before becoming product manager of antifraud solutions at SpyCloud. At that time, her call-center client used voice recognition technology to identify a caller who was pretending to be someone else.

"It was a little comical because it was a gentleman that was calling in trying to sound like a woman," Dillon recalls. "Coincidentally, they had had several of these phone calls from this same individual, and \[the software\] was actually able to find those voice patterns and identify it as the same person."

Biometric authentication, such as face ID, voice biometrics, fingerprints, or some combination thereof, is becoming an essential part of the cybersecurity toolbox as organizations try to block adversaries from taking over online accounts and to prevent fraud. However, companies must safeguard biometric data to prevent it from being exploited or stolen.

**How to Secure Biometric Data**

Though biometric authentication can be user-friendly, its critical flaw is that biometric data can't be updated once it is compromised, says Gerald Alston, associate partner and leader of the US security practice for Infosys Consulting. Passwords, PINs, and other identification methods can be replaced, but there's no way to replace a thumbprint, for example, once it is compromised, he says — which is another reason why protecting this type of data is so important.

Traditionally, IT and cybersecurity teams store images containing biometric data in one place after capturing them, but some are starting to explore tokenization. Tokenization is a process in which the images are divided and kept in different locations, reuniting them from their respective databases when the biometric authentication method is used, Alston explains. If an unauthorized intruder enters the system, they need to find where the other components of the biometric images are, but that only delays the inevitable breach, he says.

To better protect tokenized data, Alston suggest implementing a mature encryption key management system, instituting data discipline, and knowing where you currently use tokenization. In other words, make sure you have established processes and procedures for your encryption keys, stay abreast of where your data is, and understand what data you have tokenized and where it's stored, he says.

To that point, another issue to consider is where the data is stored. The FIDO Alliance describes how to securely gather, store, and transmit biometric samples between devices or servers, says Mitek Systems CTO Stephen Ritter. Instead of just saving the biometric image directly on the device or sending it to a central server, the FIDO approach generates a unique cryptographic key pair. When the device is set up for biometric authentication, the private key is saved on the device, usually in the device's secure enclave so that it can't be readily stolen by attackers. The public key is registered with the application or service. During authentication, the client device signs the action — by providing a fingerprint or taking a selfie, for example — with the private key to verify its validity. The secure enclave is designed to be protected space from the rest of the device, and its contents are not readily accessible from outside.

**Legal and Business Requirements**

Besides following industry guidelines, Ritter also recommends that IT and cybersecurity teams watch for data privacy regulations, including the General Data Protection Regulation (GDPR) in the European Union, the California Consumer Privacy Act (CCPA), and the Biometric Information Privacy Act (BIPA) in Illinois.

BIPA contains rules for the retention, disclosure, collection, and destruction of biometric data. CCPA requires companies that collect consumers' personal information, including biometric data, to disclose and control the use of the data collected. The European Data Protection Board, which facilitates the consistent application of the GDPR, is soliciting public comments regarding the guidelines for law enforcement use of facial recognition.

"Whenever you are going to collect biometric data and you are going to use it for authentication, you need to be very clear to the user, before they sign up for that service, that that's what you're going to do. And you have to get their consent in writing," Ritter says.

Third-party vendors that handle outsourced biometric authentication are a centralized hub for "mountains of identity data," making them a ripe target for threat actors, Ritter says. Companies should evaluate vendors to ensure the data is secured properly to the extent they are comfortable. Mitek enters into data protection agreements with its clients, complies with ISO 27001 standards, generates System and Organization Controls 2 Type 2 reports, and offers source code reviews, he adds.

"It takes work to go and identify the right vendor and ensure that they have the right security and control in place, but that is almost always better than building these things on your own," Ritter says.

Biometric Data Offers Added Security —  But Don't Lose Sight of These Important Risks

Red Hat Security Advisory 2022-4807-01 - PostgreSQL is an advanced object-relational database management system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: postgresql:12 security update  
Advisory ID:       RHSA-2022:4807-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:4807  
Issue date:        2022-05-31  
CVE Names:         CVE-2022-1552  
====================================================================  
1. Summary:

An update for the postgresql:12 module is now available for Red Hat  
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

PostgreSQL is an advanced object-relational database management system  
(DBMS).

The following packages have been upgraded to a later upstream version:  
postgresql (12.11).

Security Fix(es):

* postgresql: Autovacuum, REINDEX, and others omit "security restricted  
operation" sandbox (CVE-2022-1552)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

If the postgresql service is running, it will be automatically restarted  
after installing this update.

5. Bugs fixed (https://bugzilla.redhat.com/):

2081126 - CVE-2022-1552 postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.src.rpm  
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.src.rpm  
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.src.rpm  
postgresql-12.11-2.module+el8.6.0+15345+1dd8d6b8.src.rpm

aarch64:  
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.aarch64.rpm  
postgresql-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-contrib-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-contrib-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-debugsource-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-docs-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-docs-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-plperl-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-plperl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-plpython3-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-plpython3-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-pltcl-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-pltcl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-server-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-server-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-server-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-server-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-static-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-test-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-test-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-upgrade-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-upgrade-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-upgrade-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm  
postgresql-upgrade-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.aarch64.rpm

noarch:  
postgresql-test-rpm-macros-12.11-2.module+el8.6.0+15345+1dd8d6b8.noarch.rpm

ppc64le:  
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.ppc64le.rpm  
postgresql-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-contrib-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-contrib-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-debugsource-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-docs-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-docs-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-plperl-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-plperl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-plpython3-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-plpython3-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-pltcl-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-pltcl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-server-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-server-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-server-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-server-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-static-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-test-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-test-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-upgrade-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-upgrade-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-upgrade-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm  
postgresql-upgrade-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.ppc64le.rpm

s390x:  
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.s390x.rpm  
postgresql-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-contrib-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-contrib-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-debugsource-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-docs-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-docs-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-plperl-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-plperl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-plpython3-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-plpython3-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-pltcl-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-pltcl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-server-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-server-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-server-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-server-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-static-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-test-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-test-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-upgrade-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-upgrade-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-upgrade-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm  
postgresql-upgrade-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.s390x.rpm

x86_64:  
pg_repack-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
pg_repack-debuginfo-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
pg_repack-debugsource-1.4.6-3.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
pgaudit-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
pgaudit-debuginfo-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
pgaudit-debugsource-1.4.0-5.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
postgres-decoderbufs-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
postgres-decoderbufs-debuginfo-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
postgres-decoderbufs-debugsource-0.10.0-2.module+el8.5.0+11354+78b3c9c5.x86_64.rpm  
postgresql-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-contrib-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-contrib-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-debugsource-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-docs-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-docs-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-plperl-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-plperl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-plpython3-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-plpython3-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-pltcl-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-pltcl-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-server-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-server-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-server-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-server-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-static-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-test-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-test-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-upgrade-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-upgrade-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-upgrade-devel-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm  
postgresql-upgrade-devel-debuginfo-12.11-2.module+el8.6.0+15345+1dd8d6b8.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-1552  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYpYjrdzjgjWX9erEAQgYwQ//VF2YxRRrPW2eo/vHN8Ufp+2QiN61A6+I  
K9wYDdBv+K2alBCSRDU6q9XYbD+jY5tCKDPsnMg+Lkt5bopLEHL2YcUSG4n7uUIq  
Xx5sZJNOO+iJgOIEyrAfrt0YVmsmK9JNqGetSjMzG7T/Dveg50k06+citduD5RoX  
MpiDiKDRm127LMutoWWSb/eKTbfskQ0MwbOgtCK9AMVru+qlW6MlcotEV/lnWJwh  
tQcdUaKeqM6FMTi9Xlh1j83uK6tZRN937SPSwvgG7eaZqyN0pr7Tvp04oujl7+6a  
58dvOfZgbc0mIge3qoSkOclDQmHUY5yTcTUfiN88PMX+S1RnT5m+F5bkksOGgmIc  
xnydxHarDwcEVo3TsA3f2jKjdoeEds7hFuVhABJQcXusqbe4hNUFb5Q3xQtdzV3s  
9LEURVeeG/PrpiNzRgmwbqAh8wD/x/LNSHkY488J1mbjJASA+ALY66XSxhiHLXsn  
n3A+o5ttNDRoi88Nzq3tzz9mzXUjpuBzgklQcgs8j7fhYicx50hjirpUiKKsoP/h  
A7weNbq5ZjEov4p1ecVYfFlOQ0tBFD4wNwtFDHPGd98OxjsA5tN20FwPfr9kLYkT  
LkNGlJa9BPdQOhNlSzRzXT11xjRAFfkuM604EtY3MsYPvyvI9h2HUgG/IDR35p+W  
uM9mNBDQM0A=lLhQ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-4807-01

Ubuntu Security Notice 5446-2 - USN-5446-1 fixed a vulnerability in dpkg. This update provides the corresponding update for Ubuntu 16.04 ESM. Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system.

    =========================================================================Ubuntu Security Notice USN-5446-2May 30, 2022dpkg vulnerability=========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 16.04 ESMSummary:A malicious source package could write files outside the unpack directory.Software Description:- dpkg: Debian package management systemDetails:USN-5446-1 fixed a vulnerability in dpkg. This update providesthe corresponding update for Ubuntu 16.04 ESM.Original advisory details: Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 16.04 ESM:  dpkg                            1.18.4ubuntu1.7+esm1  libdpkg-perl                    1.18.4ubuntu1.7+esm1In general, a standard system update will make all the necessary changes.References:  https://ubuntu.com/security/notices/USN-5446-2  https://ubuntu.com/security/notices/USN-5446-1  CVE-2022-1664

Ubuntu Security Notice USN-5446-2

Red Hat Security Advisory 2022-4805-01 - PostgreSQL is an advanced object-relational database management system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: postgresql:10 security update  
Advisory ID:       RHSA-2022:4805-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:4805  
Issue date:        2022-05-30  
CVE Names:         CVE-2022-1552   
=====================================================================

1. Summary:

An update for the postgresql:10 module is now available for Red Hat  
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

PostgreSQL is an advanced object-relational database management system  
(DBMS).

The following packages have been upgraded to a later upstream version:  
postgresql (10.21).

Security Fix(es):

* postgresql: Autovacuum, REINDEX, and others omit "security restricted  
operation" sandbox (CVE-2022-1552)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

If the postgresql service is running, it will be automatically restarted  
after installing this update.

5. Bugs fixed (https://bugzilla.redhat.com/):

2081126 - CVE-2022-1552 postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
postgresql-10.21-2.module+el8.6.0+15342+53518fac.src.rpm

aarch64:  
postgresql-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-contrib-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-contrib-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-debugsource-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-docs-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-docs-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-plperl-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-plperl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-plpython3-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-plpython3-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-pltcl-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-pltcl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-server-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-server-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-server-devel-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-server-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-static-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-test-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-test-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-test-rpm-macros-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-upgrade-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-upgrade-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-upgrade-devel-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm  
postgresql-upgrade-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.aarch64.rpm

ppc64le:  
postgresql-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-contrib-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-contrib-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-debugsource-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-docs-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-docs-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-plperl-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-plperl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-plpython3-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-plpython3-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-pltcl-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-pltcl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-server-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-server-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-server-devel-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-server-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-static-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-test-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-test-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-test-rpm-macros-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-upgrade-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-upgrade-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-upgrade-devel-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm  
postgresql-upgrade-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.ppc64le.rpm

s390x:  
postgresql-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-contrib-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-contrib-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-debugsource-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-docs-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-docs-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-plperl-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-plperl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-plpython3-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-plpython3-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-pltcl-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-pltcl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-server-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-server-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-server-devel-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-server-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-static-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-test-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-test-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-test-rpm-macros-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-upgrade-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-upgrade-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-upgrade-devel-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm  
postgresql-upgrade-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.s390x.rpm

x86_64:  
postgresql-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-contrib-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-contrib-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-debugsource-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-docs-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-docs-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-plperl-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-plperl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-plpython3-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-plpython3-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-pltcl-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-pltcl-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-server-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-server-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-server-devel-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-server-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-static-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-test-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-test-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-test-rpm-macros-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-upgrade-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-upgrade-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-upgrade-devel-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm  
postgresql-upgrade-devel-debuginfo-10.21-2.module+el8.6.0+15342+53518fac.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-1552  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYpTSG9zjgjWX9erEAQh5rQ//fajwjW7BF4vU5SLXYP1LCrXvAs4jldYq  
PUdKxn8jfJy7yy2ZjSeuR9exa0dheBsPkHPB54oVCe/eKrv5tF0rYGkGPWmI3s0K  
uMXfJqkFJRkwDSR0WDhzB8uINPZKZ3YCrPgvH3ZfkX987nIHW6OboaBurO9gjrw+  
aJmo64eYIlxhqkocw8MlQYVyuaYmzCvbReulWKOO7ecYOMy0D2miPq06lbbn99K9  
fGN3yCDYsZIobnyr8mL2JW6WBUEAIF38xFf950ofbYzJwJhNwzQYJ+8iH4DphDub  
4IcnMN+JSn919mgf5OdAHxEo1nT1D1dl2ziWpJssnQQf96W5GIGEHXWexZKI2mv5  
rFdb7kfEDPNYxRo/3QRmF6rowaXC2ZuWFmc2nnCzvOlqUv2gKkXHkk7Q4fvqzRYJ  
0lxh5ONbOxw/JehQ061VItwOlq8CeObmbX1e+DvT/oAIqECr4NN+iDpKIbr65h+y  
WrCSQ1wtlWegIk8Iryx7I8UgLBQHcYKj4ZZjGenT1ksb3TUU3er3AoPpKkGcl+Eu  
3m9/4RhR9EMRKX8glHLNi3aukrmUsZxn3dzAQDvd2xqQ9k2948P2diolFCdKbIA3  
lBF/6sVXmBzIMJzsxNmrXjR5tvjaDZgRoDB/g7K+TIoHcVSt3ozDs8zCxmN/c/K5  
QkUJp119LnM=  
=P2WI  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-4805-01

Red Hat Security Advisory 2022-4771-01 - PostgreSQL is an advanced object-relational database management system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: postgresql security update  
Advisory ID:       RHSA-2022:4771-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:4771  
Issue date:        2022-05-30  
CVE Names:         CVE-2022-1552   
=====================================================================

1. Summary:

An update for postgresql is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

PostgreSQL is an advanced object-relational database management system  
(DBMS).

The following packages have been upgraded to a later upstream version:  
postgresql (13.7).

Security Fix(es):

* postgresql: Autovacuum, REINDEX, and others omit "security restricted  
operation" sandbox (CVE-2022-1552)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

If the postgresql service is running, it will be automatically restarted  
after installing this update.

5. Bugs fixed (https://bugzilla.redhat.com/):

2081126 - CVE-2022-1552 postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
postgresql-13.7-1.el9_0.src.rpm

aarch64:  
postgresql-13.7-1.el9_0.aarch64.rpm  
postgresql-contrib-13.7-1.el9_0.aarch64.rpm  
postgresql-contrib-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-debugsource-13.7-1.el9_0.aarch64.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-plperl-13.7-1.el9_0.aarch64.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-plpython3-13.7-1.el9_0.aarch64.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-pltcl-13.7-1.el9_0.aarch64.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-private-libs-13.7-1.el9_0.aarch64.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-server-13.7-1.el9_0.aarch64.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-upgrade-13.7-1.el9_0.aarch64.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.aarch64.rpm

ppc64le:  
postgresql-13.7-1.el9_0.ppc64le.rpm  
postgresql-contrib-13.7-1.el9_0.ppc64le.rpm  
postgresql-contrib-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-debugsource-13.7-1.el9_0.ppc64le.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-plperl-13.7-1.el9_0.ppc64le.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-plpython3-13.7-1.el9_0.ppc64le.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-pltcl-13.7-1.el9_0.ppc64le.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-private-libs-13.7-1.el9_0.ppc64le.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-upgrade-13.7-1.el9_0.ppc64le.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.ppc64le.rpm

s390x:  
postgresql-13.7-1.el9_0.s390x.rpm  
postgresql-contrib-13.7-1.el9_0.s390x.rpm  
postgresql-contrib-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-debugsource-13.7-1.el9_0.s390x.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-plperl-13.7-1.el9_0.s390x.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-plpython3-13.7-1.el9_0.s390x.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-pltcl-13.7-1.el9_0.s390x.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-private-libs-13.7-1.el9_0.s390x.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-server-13.7-1.el9_0.s390x.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-upgrade-13.7-1.el9_0.s390x.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.s390x.rpm

x86_64:  
postgresql-13.7-1.el9_0.x86_64.rpm  
postgresql-contrib-13.7-1.el9_0.x86_64.rpm  
postgresql-contrib-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-debugsource-13.7-1.el9_0.x86_64.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-plperl-13.7-1.el9_0.x86_64.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-plpython3-13.7-1.el9_0.x86_64.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-pltcl-13.7-1.el9_0.x86_64.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-private-libs-13.7-1.el9_0.x86_64.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-server-13.7-1.el9_0.x86_64.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-upgrade-13.7-1.el9_0.x86_64.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.x86_64.rpm

Red Hat CodeReady Linux Builder (v. 9):

aarch64:  
postgresql-contrib-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-debugsource-13.7-1.el9_0.aarch64.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-private-devel-13.7-1.el9_0.aarch64.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-server-devel-13.7-1.el9_0.aarch64.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-test-13.7-1.el9_0.aarch64.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.aarch64.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.aarch64.rpm

ppc64le:  
postgresql-contrib-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-debugsource-13.7-1.el9_0.ppc64le.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-private-devel-13.7-1.el9_0.ppc64le.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-devel-13.7-1.el9_0.ppc64le.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-test-13.7-1.el9_0.ppc64le.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.ppc64le.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.ppc64le.rpm

s390x:  
postgresql-contrib-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-debugsource-13.7-1.el9_0.s390x.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-private-devel-13.7-1.el9_0.s390x.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-server-devel-13.7-1.el9_0.s390x.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-test-13.7-1.el9_0.s390x.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.s390x.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.s390x.rpm

x86_64:  
postgresql-contrib-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-debugsource-13.7-1.el9_0.x86_64.rpm  
postgresql-docs-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-plperl-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-plpython3-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-pltcl-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-private-devel-13.7-1.el9_0.x86_64.rpm  
postgresql-private-libs-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-server-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-server-devel-13.7-1.el9_0.x86_64.rpm  
postgresql-server-devel-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-test-13.7-1.el9_0.x86_64.rpm  
postgresql-test-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-upgrade-debuginfo-13.7-1.el9_0.x86_64.rpm  
postgresql-upgrade-devel-debuginfo-13.7-1.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-1552  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBYpTSFtzjgjWX9erEAQjDJhAAqDWj29Uh4KmoMkC6FRaTfaYwDZ3ccXX3  
l1XLND9uj7v46GhwegjAaJdJghIEiHms4VhZyW+O5gHM9MnwuaWotSgfkueQvHfn  
qvRSxzmqtUbjGm8TjIN7IowzXExpMgwHenybjaLFy7DULOuu0WUxt1d46VAVg1uV  
lP+Dx5GFNEp/4Yu2R/QK3kc6vtJN7PTGug7TJgn85bBmROzODzLQR5I5J3aojnM+  
4oPS9NujnsyzyJdLW6W1opwx40HmapkmZhQ4qrVSdsRwsGJgh5jqS4nuUC85z3X0  
FtQ1kKJ+UT18v3PaXtwsBo/PVVWj2HZkt4jdTrjvKZL3ppp86BVfT5dLPA/kt7dY  
I1CS6rLgq8+dyRwdYrUGlzOO0TUUQ0XJ4RkNb+tlYCnaHqxo+T8h5lsX6wJGhw0U  
kICh0giV5x8h44DH0B22nAhmGl1q0esSNOhK5a0KlzkmsI9u8fuDaRb7wGavlwNw  
Im93iaYGCyXIDRNc4gKOpOKm94RVwFX3wmLssBKHw3CMwTp1rTwbpvGDv73jxVbt  
3W02TfLQ8UYS0x3YBCx6txK0NylBvc8NK3XX3MKHy+2z+fM/W6araKVt6B665lVw  
irG33LVB9yVFalerXChFJIWM5VLz6Otl7sMHU2R8KLrJBuIuZCn0SOTsAa5pO52D  
6HDXTD74AKU=  
=kr2E  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-4771-01

Malware borrows generously from code used by other botnets such as Mirai, Qbot and Zbot.

Malware borrows generously from code used by other botnets such as Mirai, Qbot and Zbot.

A rapidly evolving IoT malware dubbed “EnemyBot” is targeting content management systems (CMS), web servers and Android devices. Threat actor group “Keksec” is believed behind the distribution of the malware, according to researchers.

“Services such as VMware Workspace ONE, Adobe ColdFusion, WordPress, PHP Scriptcase and more are being targeted as well as IoT and Android devices,” reported AT&T Alien labs in a recent post. “The malware is rapidly adopting one-day vulnerabilities as part of its exploitation capabilities,” they added.

 According to AT&T’s analysis of the malware‘s code base, EnemyBot borrows generously from code used by other botnets such as Mirai, Qbot and Zbot. The Keksec group distributes the malware by targeting Linux machines and IoT devices, this threat group was formed back in 2016 and includes several botnet actors.

****EnemyBot Working****

The Alien lab research team study found four main sections of the malware.

The first section is a python script ‘cc7.py’, used to download all dependencies and compile the malware into different OS architectures (x86, ARM, macOS, OpenBSD, PowerPC, MIPS). After compilation, a batch file “update.sh” is created and used to spread the malware to vulnerable targets.

The second section is the main botnet source code, which includes all the other functionality of the malware excluding the main part and incorporates source codes of the various botnets that can combine to perform an attack.

The third module is obfuscation segment “hide.c” and is compiled and executed manually to encode /decode the malware strings. A simple swap table is used to hide strings and “each char is replaced with a corresponding char in the table” according to researchers.

The last segment includes a command-and-control (CC) component to receive vital actions and payloads from attackers.

AT&T researcher’s further analysis revealed a new scanner function to hunt vulnerable IP addresses and an “adb\_infect” function that is used to attack Android devices.

ADB or Android Debug Bridge is a command-line tool that allows you to communicate with a device.

“In case an Android device is connected through USB, or Android emulator running on the machine, EnemyBot will try to infect it by executing shell command,” said the researcher.

“Keksec’s EnemyBot appears to be just starting to spread, however due to the authors’ rapid updates, this botnet has the potential to become a major threat for IoT devices and web servers,” the researchers added.

This Linux-based botnet EnemyBot was first discovered by Securonix in March 2022, and later in-depth analysis was done by Fortinet.

****Vulnerabilities Currently Exploited by EnemyBot****

The AT&T researchers release a list of vulnerabilities that are currently exploited by the Enemybot, some of them are not assigned a CVE yet.

The list includes Log4shell vulnerability (CVE-2021-44228, CVE-2021-45046), F5 BIG IP devices (CVE-2022-1388), and others. Some of the vulnerabilities were not assigned a CVE yet such as PHP Scriptcase and Adobe ColdFusion 11.

*   Log4shell vulnerability – CVE-2021-44228, CVE-2021-45046
*   F5 BIG IP devices – CVE-2022-1388
*   Spring Cloud Gateway – CVE-2022-22947
*   TOTOLink A3000RU wireless router – CVE-2022-25075
*   Kramer VIAWare – CVE-2021-35064

“This indicates that the Keksec group is well resourced and that the group has developed the malware to take advantage of vulnerabilities before they are patched, thus increasing the speed and scale at which it can spread,” the researcher explained.

****Recommended Actions** **

The Alien lab researcher suggests methods to protect from the exploitation. Users are advised to use a properly configured firewall and focus on reducing Linux server and IOT devices’ exposure to the internet.

Another action recommended is to monitor the network traffic, scan the outbound ports and look for the suspicious bandwidth usage. Software should be updated automatically and patched with the latest security update.

EnemyBot Malware Targets Web Servers, CMS Tools and Android OS

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2022-1552: postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox


RHSA-2022:4807: Red Hat Security Advisory: postgresql:12 security update

Researchers around the world are working to understand a new remote code vulnerability in Microsoft Office dubbed Follina.
The post Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug) appeared first on Malwarebytes Labs.

Several researchers have come across a novel attack that circumvents Microsoft’s Protected View and anti-malware detection.

The attack vector uses the Word remote template feature to retrieve an HTML file from a remote webserver. It goes on to use the ms-msdt protocol URI scheme to load some code, and then execute some PowerShell.

All of the above methods are features, but if we tell you that put together this allows an attacker to remotely run code on your system by tricking you into clicking a link, that sounds quite disturbing doesn’t it?

Well, you’d be right to be concerned. That little sequence of features adds up to a zero-day flaw in Microsoft Office that is being abused in the wild to achieve arbitrary code execution on Windows systems.

Jerome Segura, Malwarebytes’ Senior Director, Threat Intelligence:

> This elegant attack is designed to bypass security products and fly under the radar by leveraging Microsoft Office’s remote template feature and the ms-msdt protocol to execute malicious code, all without the need for macros.

The most prominent researchers working on the issue have dubbed the vulnerability in Microsoft Office **Follina**, because a sample uploaded to VirusTotal included the area code for the Italian comune Follina.

**Affected versions**

Under normal circumstances, files from potentially unsafe locations are opened as read only or in Protected View. However, this warning can be easily bypassed by changing the document to a Rich Text Format (RTF) file. By doing so, the code can run without even opening the document via the preview tab in Explorer.

While the research is ongoing and the info security community is testing and probing, we are receiving some mixed signals whether the latest, fully patched, version of Office 365 is vulnerable to this type of attack or not. Older versions are certainly vulnerable, which already makes it a problem with a huge attack surface.

Researcher Kevin Beaumont provides the example where an attacker can send an email with this text as a hyperlink:

ms-excel:ofv|u|https://blah.com/poc.xls

And Outlook will allow the user to click the hyperlink and open the Excel document. Because the document isn’t attached to the email, and the URI doesn’t start with http or https, most email gateways are going to let that slide straight through as nothing appears malicious.

As we stated earlier, even looking at a specially crafted file in the preview pane of Windows Explorer could trigger the attack. Microsoft has been made aware of the issues and the possible consequences. While its first reaction was that there was no security issue, it seems this needs to be fixed.

**Mitigation**

There are a few things you can do to stop some or all of the “features” used in this type of attack.

**Unregister the ms-msdt protocol**

Will Dormann, a vulnerability analyst at the CERT/CC has published a registry fix that will unregister the ms-msdt protocol.

Copy and paste the text into a notepad document:

*   Click on **File**, then **Save As…**
*   Save it to your Desktop, then name the file disable_ms-msdt.reg in the file name box.
*   Click **Save**, and close the notepad document.
*   Double-click the file disable_ms-msdt.reg on your desktop.

Note, if you are prompted by User Account Control, select **Yes** or **Allow** so the fix can continue.

*   A message will appear about adding information into the registry, click **Yes** when prompted
*   A prompt should appear that the information was added successfully

**Disable preview in Windows Explorer**

If you have the preview pane enabled, you can:

*   Open File Explorer.
*   Click on **View** Tab.
*   Click on **Preview Pane** to hide it.

**Enable Malwarebytes’ Block penetration testing attacks**

The Malwarebytes’ **Block penetration testing attacks** setting is an aggressive detection setting that will block this attack. It is not enabled by default because while enabling it provides additional blocking capabilities for Exploit Protection it can increase false positives, or result in other application conflicts.

To enable it:

*   Open **Settings**
*   Click **Security**
*   Choose **Advanced settings**
*   Tick **Block penetration testing attacks**

Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug)

WordPress User Meta Lite and Pro plugin versions 2.4.3 and below suffer from a path traversal vulnerability.

RCE Security Advisory  
https://www.rcesecurity.com

1. ADVISORY INFORMATION  
=======================  
Product:        User Meta  
Vendor URL:     https://wordpress.org/plugins/user-meta  
Type:           Relative Path Traversal [CWE-23]  
Date found:     2022-02-28  
Date published: 2022-05-24  
CVSSv3 Score:   4.3 (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)  
CVE:            CVE-2022-0779

2. CREDITS  
==========  
This vulnerability was discovered and researched by Julien Ahrens from  
RCE Security.

3. VERSIONS AFFECTED  
====================  
User Meta Lite 2.4.3 and below  
User Meta Pro 2.4.3 and below

4. INTRODUCTION  
===============  
An easy-to-use user profile and management plugin for WordPress that allows  
user login, reset-password, profile update and user registration with extra  
fields, all on front-end and many more. User Meta Pro is a versatile user  
profile builder and user management plugin for WordPress that has the most  
features on the market. User Meta aims to be your only go to plugin for  
user management.

(from the vendor's homepage)

5. VULNERABILITY DETAILS  
========================  
The WordPress ajax action "um_show_uploaded_file" is vulnerable to an  
authenticated path traversal when user-supplied input to the HTTP POST  
parameter "filepath" is processed by the web application. Since the application  
does not properly validate and sanitize this parameter, it is possible to  
enumerate local server files using a blind approach. This is because the  
application doesn't return the contents of the referenced file but instead  
returns different form elements based on whether a file exists or not.

The following Proof-of-Concept triggers this vulnerability:

POST /wp-admin/admin-ajax.php HTTP/1.1  
Host: localhost  
Content-Length: 147  
Content-Type: application/x-www-form-urlencoded; charset=UTF-8  
Cookie: [your-wordpress-auth-cookies]  
Connection: close

field_name=[your-field-name]&filepath=/../../../../../etc/passwd&field_id=[your-field-id]&form_key=[your-form-key]&action=um_show_uploaded_file&pf_nonce=[your-auth-nonce]&is_ajax=true

6. RISK  
=======  
The vulnerability can be used by an authenticated attacker to enumerate  
local server files based on a blind approach.

7. SOLUTION  
===========  
Update to User Meta/User Meta Pro 2.4.4

8. REPORT TIMELINE  
==================  
2022-02-28: Discovery of the vulnerability  
2022-02-28: WPScan (CNA) assigns CVE-2022-0779  
2022-03-03: Contacted the vendor via their contact form  
2022-03-06: Vendor response, acknowledgement of the issue  
2022-03-18: Version 2.4.2 is released  
2022-03-22: Vulnerability is still exploitable since fix was applied only client-side. Contacted vendor again.  
2022-04-13: No response, contacted vendor again  
2022-04-18: Vendor added a new fix to version 2.4.3. Asked to retest.  
2022-04-19: Vulnerability is still exploitable due to a logic bug in the fix. Contacted vendor again.  
2022-04-29: Vendor asks whether another fix in version 2.4.4 is fine  
2022-05-16: Fix seems to work  
2022-05-24: Public disclosure

9. REFERENCES  
=============  
https://github.com/MrTuxracer/advisories

WordPress User Meta Lite / Pro 2.4.3 Path Traversal

Ubuntu Security Notice 5431-1 - It was discovered that GnuPG was not properly processing keys with large amounts of signatures. An attacker could possibly use this issue to cause a denial of service.

    ==========================================================================Ubuntu Security Notice USN-5431-1May 30, 2022gnupg2 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTSSummary:GnuPG could be made to stop responding.Software Description:- gnupg2: GNU privacy guard - a free PGP replacementDetails:It was discovered that GnuPG was not properly processing keyswith large amounts of signatures. An attacker could possiblyuse this issue to cause a denial of service.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:   gnupg                           2.2.4-1ubuntu1.5In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-5431-1   CVE-2019-13050Package Information:   https://launchpad.net/ubuntu/+source/gnupg2/2.2.4-1ubuntu1.5

Tag

#perl