Red Hat Security Advisory 2024-3925-03 - An update is now available for Red Hat Ceph Storage 7.1.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3925.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Critical: Red Hat Ceph Storage 7.1 security, enhancements, and bug fix updateAdvisory ID:        RHSA-2024:3925-03Product:            Red Hat Ceph StorageAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3925Issue date:         2024-06-14Revision:           03CVE Names:          CVE-2023-3128====================================================================Summary: An update is now available for Red Hat Ceph Storage 7.1Description:Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.These new packages include numerous enhancements, bug fixes, and known issues. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Ceph Storage Release Notes for information on the most significant of these changes:https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/7.1/html/release_notes/indexSolution:https://access.redhat.com/articles/1548993https://access.redhat.com/articles/11258CVEs:CVE-2023-3128References:https://access.redhat.com/security/updates/classification/#criticalhttps://access.redhat.com/security/cve/CVE-2023-3128https://access.redhat.com/security/cve/CVE-2023-49568https://access.redhat.com/security/cve/CVE-2023-49569https://access.redhat.com/security/cve/CVE-2023-4822https://bugzilla.redhat.com/show_bug.cgi?id=1871333https://bugzilla.redhat.com/show_bug.cgi?id=1954461https://bugzilla.redhat.com/show_bug.cgi?id=1954463https://bugzilla.redhat.com/show_bug.cgi?id=1995152https://bugzilla.redhat.com/show_bug.cgi?id=2009599https://bugzilla.redhat.com/show_bug.cgi?id=2029585https://bugzilla.redhat.com/show_bug.cgi?id=2061627https://bugzilla.redhat.com/show_bug.cgi?id=2068026https://bugzilla.redhat.com/show_bug.cgi?id=2068030https://bugzilla.redhat.com/show_bug.cgi?id=2079815https://bugzilla.redhat.com/show_bug.cgi?id=2079897https://bugzilla.redhat.com/show_bug.cgi?id=2089167https://bugzilla.redhat.com/show_bug.cgi?id=2107014https://bugzilla.redhat.com/show_bug.cgi?id=2112325https://bugzilla.redhat.com/show_bug.cgi?id=2125107https://bugzilla.redhat.com/show_bug.cgi?id=2130292https://bugzilla.redhat.com/show_bug.cgi?id=2134786https://bugzilla.redhat.com/show_bug.cgi?id=2136766https://bugzilla.redhat.com/show_bug.cgi?id=2144472https://bugzilla.redhat.com/show_bug.cgi?id=2148831https://bugzilla.redhat.com/show_bug.cgi?id=2149450https://bugzilla.redhat.com/show_bug.cgi?id=2153468https://bugzilla.redhat.com/show_bug.cgi?id=2166576https://bugzilla.redhat.com/show_bug.cgi?id=2172162https://bugzilla.redhat.com/show_bug.cgi?id=2176297https://bugzilla.redhat.com/show_bug.cgi?id=2185792https://bugzilla.redhat.com/show_bug.cgi?id=2190366https://bugzilla.redhat.com/show_bug.cgi?id=2207713https://bugzilla.redhat.com/show_bug.cgi?id=2213626https://bugzilla.redhat.com/show_bug.cgi?id=2213766https://bugzilla.redhat.com/show_bug.cgi?id=2217499https://bugzilla.redhat.com/show_bug.cgi?id=2227309https://bugzilla.redhat.com/show_bug.cgi?id=2227314https://bugzilla.redhat.com/show_bug.cgi?id=2233659https://bugzilla.redhat.com/show_bug.cgi?id=2235753https://bugzilla.redhat.com/show_bug.cgi?id=2237038https://bugzilla.redhat.com/show_bug.cgi?id=2237574https://bugzilla.redhat.com/show_bug.cgi?id=2238301https://bugzilla.redhat.com/show_bug.cgi?id=2238537https://bugzilla.redhat.com/show_bug.cgi?id=2238926https://bugzilla.redhat.com/show_bug.cgi?id=2239726https://bugzilla.redhat.com/show_bug.cgi?id=2240138https://bugzilla.redhat.com/show_bug.cgi?id=2240583https://bugzilla.redhat.com/show_bug.cgi?id=2241030https://bugzilla.redhat.com/show_bug.cgi?id=2241056https://bugzilla.redhat.com/show_bug.cgi?id=2241104https://bugzilla.redhat.com/show_bug.cgi?id=2241165https://bugzilla.redhat.com/show_bug.cgi?id=2242431https://bugzilla.redhat.com/show_bug.cgi?id=2243105https://bugzilla.redhat.com/show_bug.cgi?id=2243626https://bugzilla.redhat.com/show_bug.cgi?id=2244417https://bugzilla.redhat.com/show_bug.cgi?id=2245261https://bugzilla.redhat.com/show_bug.cgi?id=2247074https://bugzilla.redhat.com/show_bug.cgi?id=2247140https://bugzilla.redhat.com/show_bug.cgi?id=2247183https://bugzilla.redhat.com/show_bug.cgi?id=2247531https://bugzilla.redhat.com/show_bug.cgi?id=2247586https://bugzilla.redhat.com/show_bug.cgi?id=2247718https://bugzilla.redhat.com/show_bug.cgi?id=2248639https://bugzilla.redhat.com/show_bug.cgi?id=2248855https://bugzilla.redhat.com/show_bug.cgi?id=2249003https://bugzilla.redhat.com/show_bug.cgi?id=2249068https://bugzilla.redhat.com/show_bug.cgi?id=2249518https://bugzilla.redhat.com/show_bug.cgi?id=2249573https://bugzilla.redhat.com/show_bug.cgi?id=2249651https://bugzilla.redhat.com/show_bug.cgi?id=2249744https://bugzilla.redhat.com/show_bug.cgi?id=2249812https://bugzilla.redhat.com/show_bug.cgi?id=2251004https://bugzilla.redhat.com/show_bug.cgi?id=2251192https://bugzilla.redhat.com/show_bug.cgi?id=2252048https://bugzilla.redhat.com/show_bug.cgi?id=2252396https://bugzilla.redhat.com/show_bug.cgi?id=2253313https://bugzilla.redhat.com/show_bug.cgi?id=2254121https://bugzilla.redhat.com/show_bug.cgi?id=2254122https://bugzilla.redhat.com/show_bug.cgi?id=2254125https://bugzilla.redhat.com/show_bug.cgi?id=2254480https://bugzilla.redhat.com/show_bug.cgi?id=2254582https://bugzilla.redhat.com/show_bug.cgi?id=2255030https://bugzilla.redhat.com/show_bug.cgi?id=2255255https://bugzilla.redhat.com/show_bug.cgi?id=2255938https://bugzilla.redhat.com/show_bug.cgi?id=2256560https://bugzilla.redhat.com/show_bug.cgi?id=2256967https://bugzilla.redhat.com/show_bug.cgi?id=2257978https://bugzilla.redhat.com/show_bug.cgi?id=2258143https://bugzilla.redhat.com/show_bug.cgi?id=2258165https://bugzilla.redhat.com/show_bug.cgi?id=2258542https://bugzilla.redhat.com/show_bug.cgi?id=2258879https://bugzilla.redhat.com/show_bug.cgi?id=2258940https://bugzilla.redhat.com/show_bug.cgi?id=2258951https://bugzilla.redhat.com/show_bug.cgi?id=2258997https://bugzilla.redhat.com/show_bug.cgi?id=2259179https://bugzilla.redhat.com/show_bug.cgi?id=2259461https://bugzilla.redhat.com/show_bug.cgi?id=2259938https://bugzilla.redhat.com/show_bug.cgi?id=2260003https://bugzilla.redhat.com/show_bug.cgi?id=2260835https://bugzilla.redhat.com/show_bug.cgi?id=2261239https://bugzilla.redhat.com/show_bug.cgi?id=2262094https://bugzilla.redhat.com/show_bug.cgi?id=2262400https://bugzilla.redhat.com/show_bug.cgi?id=2262469https://bugzilla.redhat.com/show_bug.cgi?id=2262650https://bugzilla.redhat.com/show_bug.cgi?id=2262741https://bugzilla.redhat.com/show_bug.cgi?id=2262919https://bugzilla.redhat.com/show_bug.cgi?id=2262984https://bugzilla.redhat.com/show_bug.cgi?id=2263813https://bugzilla.redhat.com/show_bug.cgi?id=2263898https://bugzilla.redhat.com/show_bug.cgi?id=2263990https://bugzilla.redhat.com/show_bug.cgi?id=2264141https://bugzilla.redhat.com/show_bug.cgi?id=2264142https://bugzilla.redhat.com/show_bug.cgi?id=2264145https://bugzilla.redhat.com/show_bug.cgi?id=2264158https://bugzilla.redhat.com/show_bug.cgi?id=2264168https://bugzilla.redhat.com/show_bug.cgi?id=2264177https://bugzilla.redhat.com/show_bug.cgi?id=2264212https://bugzilla.redhat.com/show_bug.cgi?id=2264213https://bugzilla.redhat.com/show_bug.cgi?id=2264222https://bugzilla.redhat.com/show_bug.cgi?id=2264348https://bugzilla.redhat.com/show_bug.cgi?id=2264812https://bugzilla.redhat.com/show_bug.cgi?id=2264836https://bugzilla.redhat.com/show_bug.cgi?id=2265059https://bugzilla.redhat.com/show_bug.cgi?id=2265148https://bugzilla.redhat.com/show_bug.cgi?id=2265262https://bugzilla.redhat.com/show_bug.cgi?id=2265322https://bugzilla.redhat.com/show_bug.cgi?id=2265415https://bugzilla.redhat.com/show_bug.cgi?id=2265558https://bugzilla.redhat.com/show_bug.cgi?id=2265574https://bugzilla.redhat.com/show_bug.cgi?id=2265890https://bugzilla.redhat.com/show_bug.cgi?id=2265994https://bugzilla.redhat.com/show_bug.cgi?id=2266020https://bugzilla.redhat.com/show_bug.cgi?id=2266092https://bugzilla.redhat.com/show_bug.cgi?id=2266223https://bugzilla.redhat.com/show_bug.cgi?id=2266227https://bugzilla.redhat.com/show_bug.cgi?id=2266248https://bugzilla.redhat.com/show_bug.cgi?id=2266256https://bugzilla.redhat.com/show_bug.cgi?id=2266411https://bugzilla.redhat.com/show_bug.cgi?id=2266529https://bugzilla.redhat.com/show_bug.cgi?id=2266530https://bugzilla.redhat.com/show_bug.cgi?id=2266579https://bugzilla.redhat.com/show_bug.cgi?id=2267040https://bugzilla.redhat.com/show_bug.cgi?id=2267624https://bugzilla.redhat.com/show_bug.cgi?id=2267625https://bugzilla.redhat.com/show_bug.cgi?id=2267715https://bugzilla.redhat.com/show_bug.cgi?id=2267763https://bugzilla.redhat.com/show_bug.cgi?id=2267814https://bugzilla.redhat.com/show_bug.cgi?id=2267957https://bugzilla.redhat.com/show_bug.cgi?id=2268036https://bugzilla.redhat.com/show_bug.cgi?id=2268039https://bugzilla.redhat.com/show_bug.cgi?id=2268040https://bugzilla.redhat.com/show_bug.cgi?id=2268059https://bugzilla.redhat.com/show_bug.cgi?id=2268414https://bugzilla.redhat.com/show_bug.cgi?id=2268560https://bugzilla.redhat.com/show_bug.cgi?id=2268567https://bugzilla.redhat.com/show_bug.cgi?id=2268996https://bugzilla.redhat.com/show_bug.cgi?id=2269038https://bugzilla.redhat.com/show_bug.cgi?id=2269321https://bugzilla.redhat.com/show_bug.cgi?id=2269337https://bugzilla.redhat.com/show_bug.cgi?id=2269347https://bugzilla.redhat.com/show_bug.cgi?id=2269374https://bugzilla.redhat.com/show_bug.cgi?id=2269381https://bugzilla.redhat.com/show_bug.cgi?id=2269526https://bugzilla.redhat.com/show_bug.cgi?id=2269662https://bugzilla.redhat.com/show_bug.cgi?id=2269664https://bugzilla.redhat.com/show_bug.cgi?id=2269687https://bugzilla.redhat.com/show_bug.cgi?id=2270211https://bugzilla.redhat.com/show_bug.cgi?id=2270237https://bugzilla.redhat.com/show_bug.cgi?id=2270245https://bugzilla.redhat.com/show_bug.cgi?id=2270334https://bugzilla.redhat.com/show_bug.cgi?id=2270402https://bugzilla.redhat.com/show_bug.cgi?id=2270442https://bugzilla.redhat.com/show_bug.cgi?id=2270625https://bugzilla.redhat.com/show_bug.cgi?id=2270645https://bugzilla.redhat.com/show_bug.cgi?id=2270656https://bugzilla.redhat.com/show_bug.cgi?id=2270785https://bugzilla.redhat.com/show_bug.cgi?id=2271096https://bugzilla.redhat.com/show_bug.cgi?id=2271110https://bugzilla.redhat.com/show_bug.cgi?id=2271135https://bugzilla.redhat.com/show_bug.cgi?id=2271399https://bugzilla.redhat.com/show_bug.cgi?id=2271806https://bugzilla.redhat.com/show_bug.cgi?id=2271835https://bugzilla.redhat.com/show_bug.cgi?id=2271938https://bugzilla.redhat.com/show_bug.cgi?id=2272031https://bugzilla.redhat.com/show_bug.cgi?id=2272038https://bugzilla.redhat.com/show_bug.cgi?id=2272157https://bugzilla.redhat.com/show_bug.cgi?id=2272437https://bugzilla.redhat.com/show_bug.cgi?id=2272468https://bugzilla.redhat.com/show_bug.cgi?id=2272621https://bugzilla.redhat.com/show_bug.cgi?id=2272622https://bugzilla.redhat.com/show_bug.cgi?id=2272632https://bugzilla.redhat.com/show_bug.cgi?id=2272647https://bugzilla.redhat.com/show_bug.cgi?id=2272661https://bugzilla.redhat.com/show_bug.cgi?id=2272662https://bugzilla.redhat.com/show_bug.cgi?id=2272979https://bugzilla.redhat.com/show_bug.cgi?id=2273000https://bugzilla.redhat.com/show_bug.cgi?id=2273608https://bugzilla.redhat.com/show_bug.cgi?id=2273693https://bugzilla.redhat.com/show_bug.cgi?id=2273836https://bugzilla.redhat.com/show_bug.cgi?id=2273837https://bugzilla.redhat.com/show_bug.cgi?id=2273927https://bugzilla.redhat.com/show_bug.cgi?id=2273935https://bugzilla.redhat.com/show_bug.cgi?id=2273936https://bugzilla.redhat.com/show_bug.cgi?id=2273938https://bugzilla.redhat.com/show_bug.cgi?id=2274305https://bugzilla.redhat.com/show_bug.cgi?id=2274703https://bugzilla.redhat.com/show_bug.cgi?id=2274704https://bugzilla.redhat.com/show_bug.cgi?id=2275103https://bugzilla.redhat.com/show_bug.cgi?id=2275323https://bugzilla.redhat.com/show_bug.cgi?id=2275459https://bugzilla.redhat.com/show_bug.cgi?id=2275463https://bugzilla.redhat.com/show_bug.cgi?id=2275506https://bugzilla.redhat.com/show_bug.cgi?id=2275861https://bugzilla.redhat.com/show_bug.cgi?id=2276031https://bugzilla.redhat.com/show_bug.cgi?id=2276034https://bugzilla.redhat.com/show_bug.cgi?id=2276038https://bugzilla.redhat.com/show_bug.cgi?id=2276340https://bugzilla.redhat.com/show_bug.cgi?id=2276361https://bugzilla.redhat.com/show_bug.cgi?id=2276379https://bugzilla.redhat.com/show_bug.cgi?id=2276498https://bugzilla.redhat.com/show_bug.cgi?id=2276636https://bugzilla.redhat.com/show_bug.cgi?id=2276900https://bugzilla.redhat.com/show_bug.cgi?id=2276989https://bugzilla.redhat.com/show_bug.cgi?id=2277099https://bugzilla.redhat.com/show_bug.cgi?id=2277143https://bugzilla.redhat.com/show_bug.cgi?id=2277692https://bugzilla.redhat.com/show_bug.cgi?id=2277699https://bugzilla.redhat.com/show_bug.cgi?id=2277830https://bugzilla.redhat.com/show_bug.cgi?id=2277944https://bugzilla.redhat.com/show_bug.cgi?id=2277945https://bugzilla.redhat.com/show_bug.cgi?id=2277947https://bugzilla.redhat.com/show_bug.cgi?id=2278166https://bugzilla.redhat.com/show_bug.cgi?id=2278326https://bugzilla.redhat.com/show_bug.cgi?id=2278778https://bugzilla.redhat.com/show_bug.cgi?id=2279339https://bugzilla.redhat.com/show_bug.cgi?id=2279352https://bugzilla.redhat.com/show_bug.cgi?id=2279461https://bugzilla.redhat.com/show_bug.cgi?id=2279530https://bugzilla.redhat.com/show_bug.cgi?id=2279607https://bugzilla.redhat.com/show_bug.cgi?id=2279862https://bugzilla.redhat.com/show_bug.cgi?id=2280205https://bugzilla.redhat.com/show_bug.cgi?id=2280332https://bugzilla.redhat.com/show_bug.cgi?id=2280742https://bugzilla.redhat.com/show_bug.cgi?id=2280954https://bugzilla.redhat.com/show_bug.cgi?id=2281465https://bugzilla.redhat.com/show_bug.cgi?id=2281471https://bugzilla.redhat.com/show_bug.cgi?id=2282364https://bugzilla.redhat.com/show_bug.cgi?id=2282533https://bugzilla.redhat.com/show_bug.cgi?id=2283630

Red Hat Security Advisory 2024-3925-03

Red Hat Security Advisory 2024-3868-03 - Network Observability 1.6 for Red Hat OpenShift. Issues addressed include code execution, denial of service, memory exhaustion, and password leak vulnerabilities.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3868.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: Network Observability 1.6.0 for OpenShiftAdvisory ID:        RHSA-2024:3868-03Product:            Network ObservabilityAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3868Issue date:         2024-06-17Revision:           03CVE Names:          CVE-2023-39326====================================================================Summary: Network Observability 1.6 for Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Network Observability 1.6.0Security Fix(es):* CVE-2024-29180 webpack-dev-middleware: lack of URL validation may lead to file leak* CVE-2024-24786 golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON* CVE-2023-42282 nodejs-ip: arbitrary code execution via the isPublic() function* CVE-2023-39326 golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests* CVE-2024-28849 follow-redirects: Possible credential leak* CVE-2024-24783 golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm* CVE-2023-45289 golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect* CVE-2023-45290 golang: net/http: memory exhaustion in Request.ParseMultipartForm* CVE-2024-24785 golang: html/template: errors returned from MarshalJSON methods may break template escaping* CVE-2024-29041 express: cause malformed URLs to be evaluated [noo-1]For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVE page(s)listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-39326References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2253330https://bugzilla.redhat.com/show_bug.cgi?id=2265161https://bugzilla.redhat.com/show_bug.cgi?id=2268017https://bugzilla.redhat.com/show_bug.cgi?id=2268018https://bugzilla.redhat.com/show_bug.cgi?id=2268019https://bugzilla.redhat.com/show_bug.cgi?id=2268022https://bugzilla.redhat.com/show_bug.cgi?id=2268046https://bugzilla.redhat.com/show_bug.cgi?id=2269576https://bugzilla.redhat.com/show_bug.cgi?id=2270863https://bugzilla.redhat.com/show_bug.cgi?id=2290901https://issues.redhat.com/browse/NETOBSERV-1279https://issues.redhat.com/browse/NETOBSERV-1408https://issues.redhat.com/browse/NETOBSERV-1424https://issues.redhat.com/browse/NETOBSERV-1453https://issues.redhat.com/browse/NETOBSERV-1459https://issues.redhat.com/browse/NETOBSERV-1462https://issues.redhat.com/browse/NETOBSERV-1544https://issues.redhat.com/browse/NETOBSERV-1598https://issues.redhat.com/browse/NETOBSERV-1606https://issues.redhat.com/browse/NETOBSERV-1607https://issues.redhat.com/browse/NETOBSERV-1621https://issues.redhat.com/browse/NETOBSERV-1630https://issues.redhat.com/browse/NETOBSERV-1647

Red Hat Security Advisory 2024-3868-03

In a previous Red Hat article, VP of Red Hat Product Security, Vincent Danen, discussed the question "Do all vulnerabilities really matter?" He emphasized that "a  software vulnerability has the potential to be exploited by miscreants to harm its user." The key word here is "potential". If the potential for exploitation is high, or if an exploit for a vulnerability is already in use in the wild, then these vulnerabilities pose a greater risk and must be prioritized and addressed promptly.Red Hat uses CISA as a source for known exploited vulnerabilitiesThe Cybersecurity and Infrastructure Secur

In a previous Red Hat article, VP of Red Hat Product Security, Vincent Danen, discussed the question "Do all vulnerabilities really matter?" He emphasized that "a  software vulnerability has the potential to be exploited by miscreants to harm its user." The key word here is "potential". If the potential for exploitation is high, or if an exploit for a vulnerability is already in use in the wild, then these vulnerabilities pose a greater risk and must be prioritized and addressed promptly.

**Red Hat uses CISA as a source for known exploited vulnerabilities**

The Cybersecurity and Infrastructure Security Agency (CISA) leads the US national effort to understand, manage, and reduce risk to their cyber and physical infrastructure. CISA maintains a Known Exploited Vulnerabilities (KEV) catalog, otherwise known as the CISA catalog.

In November 2021, CISA issued the binding operational directive CISA BOD 22-01. This directive requires that all US Government federal agencies (USG) identify and remediate all vulnerabilities listed in the CISA catalog in their information systems. Additionally, this catalog is available to the public so other non-USG customers can be aware of the listed exploited vulnerabilities and seek immediate remediations. The vulnerabilities listed have been observed to be exploited in the wild, presenting an elevated risk.

In response, Red Hat created a program to resolve vulnerabilities added to the KEV list as quickly as possible. This program helps Red Hat to continue strengthening our security posture across our software portfolio while maintaining our reputation as a trustworthy partner.

**How well did Red Hat remediate exploited in the wild vulnerabilities?**

As described in CISA BOD-22-01, CISA has three main criteria for adding vulnerabilities to the KEV:

1.  A Common Vulnerabilities and Exposures (CVE) ID
2.  Clear remediation guidance
3.  Reliable evidence of exploitation in the wild

In 2023, the CISA catalog included 20 CVEs that impacted Red Hat products.  The following table displays the breakdown by severity. 

Severity rating

Total Red Hat  Flaw counts

In the wild exploitation

In the wild exploitation as a percentage of total flaw counts

All

1644

20

1.2%

Critical

12

1

5.3%

Important

336

15

4.5%

Moderate

1047

3

0.3%

Low

247

1

0.4%

The amount of vulnerabilities exploited in the wild was fairly low,  accounting for 1.2% of the total flaws that impacted Red Hat in 2023. Once Red Hat is notified that a CVE is  added to the CISA catalog, Red Hat provides a fix for the vulnerability within an average of 10 calendar days (notably faster than the 21 calendar days that CISA gives for the vulnerability to be resolved).

It is also important to note that Red Hat has released errata for approximately 24% of these Exploit CVEs before they were added to the CISA catalog. 

More than half of the exploited in the wild vulnerabilities pertain to the WebKitGTK package. WebKit is one of the three big web rendering engines. The exploit primarily targets iOS users and sometimes macOS users, as well as any software using the JavaScript Just in Time (JIT) compiler. To better enhance the security of Red Hat software,  Red Hat has disabled the JavaScript JIT mechanism in the 8.8 z-stream and 9.2 z-stream RHEL releases. This action is expected to cut down on the volume of WebKit vulnerabilities by half going forward. 

**Security awareness**

Red Hat Product Security's awareness and visibility into reported exploited vulnerabilities enable us to proactively address rising threats and fix vulnerabilities that truly matter. These actions allow Red Hat to remain a trusted vendor and partner to our customers. At Red Hat, openness and transparency are embedded in our culture. This culture of transparency influences our customer interactions and allows us to be a trusted partner. Sharing pertinent information makes our community well-informed and well-versed, especially when it comes to security. 

Enter keywords here to search blogs

UI\_Icon-Red\_Hat-Close-A-Black-RGB

Reducing the significant risk of known exploitable vulnerabilities in Red Hat software

Red Hat Security Advisory 2024-3929-03 - An update for dnsmasq is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3929.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: dnsmasq security updateAdvisory ID:        RHSA-2024:3929-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3929Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2023-50387====================================================================Summary: An update for dnsmasq is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.Security Fix(es):* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-50387References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2263914https://bugzilla.redhat.com/show_bug.cgi?id=2263917

Red Hat Security Advisory 2024-3929-03

Red Hat Security Advisory 2024-3927-03 - A new container image for Red Hat Ceph Storage 7.1 is now available in the Red Hat Ecosystem Catalog.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3927.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Moderate: Red Hat Ceph Storage 7.1 container image security, and bug fix update  
Advisory ID:        RHSA-2024:3927-03  
Product:            Red Hat Ceph Storage  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:3927  
Issue date:         2024-06-13  
Revision:           03  
CVE Names:          CVE-2023-39325  
====================================================================

Summary: 

A new container image for Red Hat Ceph Storage 7.1 is now available in the  
Red Hat Ecosystem Catalog.

Description:

Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.

This new container image is based on Red Hat Ceph Storage 7.0 and Red Hat Enterprise Linux 9.2.

Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Ceph Storage Release Notes for information on the most significant of these changes:

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/7.1/html/release_notes/index

All users of Red Hat Ceph Storage are advised to pull these new images from  
the Red Hat Ecosystem catalog, which provides numerous enhancements and bug  
fixes.

Solution:

https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/7

https://access.redhat.com/articles/1548993

CVEs:

CVE-2023-39325

References:

https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/security/cve/CVE-2023-39325  
https://access.redhat.com/security/cve/CVE-2024-22195  
https://bugzilla.redhat.com/show_bug.cgi?id=2243296  
https://bugzilla.redhat.com/show_bug.cgi?id=2257854  
https://bugzilla.redhat.com/show_bug.cgi?id=2268114

Red Hat Security Advisory 2024-3927-03

Red Hat Security Advisory 2024-3926-03 - An update for expat is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3926.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: expat security updateAdvisory ID:        RHSA-2024:3926-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3926Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2023-52425====================================================================Summary: An update for expat is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Expat is a C library for parsing XML documents.Security Fix(es):* expat: parsing large tokens can trigger a denial of service (CVE-2023-52425)* expat: XML Entity Expansion (CVE-2024-28757)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-52425References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2262877https://bugzilla.redhat.com/show_bug.cgi?id=2268766

Red Hat Security Advisory 2024-3926-03

Red Hat Security Advisory 2024-3920-03 - Migration Toolkit for Runtimes 1.2.6 release Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include a password leak vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3920.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: Migration Toolkit for Runtimes security, bug fix and enhancement updateAdvisory ID:        RHSA-2024:3920-03Product:            Migration Toolkit for RuntimesAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3920Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2023-45857====================================================================Summary: Migration Toolkit for Runtimes 1.2.6 releaseRed Hat Product Security has rated this update as having a security impact of Important.A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Migration Toolkit for Runtimes 1.2.6 ZIP artifactsSecurity Fix(es):* axios: exposure of confidential data stored in cookies (CVE-2023-45857)* follow-redirects: Possible credential leak (CVE-2024-28849)* commons-configuration2: various flaws (CVE-2024-29131)* commons-configuration2: various flaws (CVE-2024-29133)* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:CVEs:CVE-2023-45857References:https://access.redhat.com/security/updates/classification/#importanthttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=migration.toolkit.runtimes&downloadType=distributionshttps://issues.redhat.com/browse/WINDUPRULE-1049

Red Hat Security Advisory 2024-3920-03

Red Hat Security Advisory 2024-3919-03 - Migration Toolkit for Runtimes 1.2.6 release Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include denial of service and spoofing vulnerabilities.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3919.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: Migration Toolkit for Runtimes security, bug fix and enhancement updateAdvisory ID:        RHSA-2024:3919-03Product:            Migration Toolkit for RuntimesAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3919Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2023-4639====================================================================Summary: Migration Toolkit for Runtimes 1.2.6 releaseRed Hat Product Security has rated this update as having a security impact of Important.A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Migration Toolkit for Runtimes 1.2.6 ImagesSecurity Fix(es):* undertow: Cookie Smuggling/Spoofing (CVE-2023-4639)* jetty: Improper addition of quotation marks to user inputs in CgiServlet (CVE-2023-36479)* css-tools: Improper Input Validation causes Denial of Service via Regular Expression (CVE-2023-26364)* css-tools: regular expression denial of service (ReDoS) when parsing CSS (CVE-2023-48631)* keycloak: path transversal in redirection validation (CVE-2024-1132)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:CVEs:CVE-2023-4639References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2166022https://bugzilla.redhat.com/show_bug.cgi?id=2239630https://bugzilla.redhat.com/show_bug.cgi?id=2250364https://bugzilla.redhat.com/show_bug.cgi?id=2254559https://bugzilla.redhat.com/show_bug.cgi?id=2262117

Red Hat Security Advisory 2024-3919-03

Red Hat Security Advisory 2024-3877-03 - An update for dnsmasq is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3877.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: dnsmasq security updateAdvisory ID:        RHSA-2024:3877-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3877Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2023-50387====================================================================Summary: An update for dnsmasq is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.Security Fix(es):* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-50387References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2263914https://bugzilla.redhat.com/show_bug.cgi?id=2263917

Red Hat Security Advisory 2024-3877-03

Red Hat Security Advisory 2024-3875-03 - An update for nghttp2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3875.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: nghttp2 security updateAdvisory ID:        RHSA-2024:3875-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3875Issue date:         2024-06-13Revision:           03CVE Names:          CVE-2024-28182====================================================================Summary: An update for nghttp2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C.Security Fix(es):* nghttp2: CONTINUATION frames DoS (CVE-2024-28182,VU#421644.5)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-28182References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2268639

Tag

#red_hat