RHSA-2022:0440: Red Hat Security Advisory: aide security update

Skip to navigation Skip to main content

Utilities

• Subscriptions
• Downloads
• Containers
• Support Cases

Infrastructure and Management

• Red Hat Enterprise Linux
• Red Hat Virtualization
• Red Hat Identity Management
• Red Hat Directory Server
• Red Hat Certificate System
• Red Hat Satellite
• Red Hat Subscription Management
• Red Hat Update Infrastructure
• Red Hat Insights
• Red Hat Ansible Automation Platform

Cloud Computing

• Red Hat OpenShift
• Red Hat CloudForms
• Red Hat OpenStack Platform
• Red Hat OpenShift Container Platform
• Red Hat OpenShift Data Science
• Red Hat OpenShift Online
• Red Hat OpenShift Dedicated
• Red Hat Advanced Cluster Security for Kubernetes
• Red Hat Advanced Cluster Management for Kubernetes
• Red Hat Quay
• Red Hat CodeReady Workspaces
• Red Hat OpenShift Service on AWS

Storage

• Red Hat Gluster Storage
• Red Hat Hyperconverged Infrastructure
• Red Hat Ceph Storage
• Red Hat OpenShift Data Foundation

Runtimes

• Red Hat Runtimes
• Red Hat JBoss Enterprise Application Platform
• Red Hat Data Grid
• Red Hat JBoss Web Server
• Red Hat Single Sign On
• Red Hat support for Spring Boot
• Red Hat build of Node.js
• Red Hat build of Thorntail
• Red Hat build of Eclipse Vert.x
• Red Hat build of OpenJDK
• Red Hat build of Quarkus
• Red Hat CodeReady Studio

Integration and Automation

• Red Hat Process Automation
• Red Hat Process Automation Manager
• Red Hat Decision Manager

All Products

Issued:

2022-02-07

Updated:

2022-02-07

RHSA-2022:0440 - Security Advisory

• Overview
• Updated Packages

Synopsis

Important: aide security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for aide is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Advanced Intrusion Detection Environment (AIDE) is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions.

Security Fix(es):

• aide: heap-based buffer overflow on outputs larger than B64_BUF (CVE-2021-45417)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected Products

• Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
• Red Hat Enterprise Linux Server - AUS 8.4 x86_64
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
• Red Hat Enterprise Linux Server - TUS 8.4 x86_64
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
• Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
• Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64

Fixes

• BZ - 2041489 - CVE-2021-45417 aide: heap-based buffer overflow on outputs larger than B64_BUF

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

x86_64

aide-0.16-14.el8_4.1.x86_64.rpm

SHA-256: b5862fc2e2f25b55d11b1b8eda54d412c7dfaff215bffce565df463d5d539d02

aide-debuginfo-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 7262ec6046bfd6591c0f744b725c55dee85ced86cbb66831a5bc68268fc8039a

aide-debugsource-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 31ecbf9fed52a03261cd02b179ee5af9948645fb5b40fda8d5d9cbca9caf0c09

Red Hat Enterprise Linux Server - AUS 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

x86_64

aide-0.16-14.el8_4.1.x86_64.rpm

SHA-256: b5862fc2e2f25b55d11b1b8eda54d412c7dfaff215bffce565df463d5d539d02

aide-debuginfo-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 7262ec6046bfd6591c0f744b725c55dee85ced86cbb66831a5bc68268fc8039a

aide-debugsource-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 31ecbf9fed52a03261cd02b179ee5af9948645fb5b40fda8d5d9cbca9caf0c09

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

s390x

aide-0.16-14.el8_4.1.s390x.rpm

SHA-256: 0fc4062fa5f3c12bf899c252983f4ceee5b52d3c37179c6b7e8875518b8bd6a3

aide-debuginfo-0.16-14.el8_4.1.s390x.rpm

SHA-256: fd75699b355e89c217ebc1c9af807a89bba65e0e4243aed1767c3d3724e407d2

aide-debugsource-0.16-14.el8_4.1.s390x.rpm

SHA-256: ec7a4bb8ed657ebf7e35746b895690b667ef1f5c2410b5f89d60723efd861330

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

ppc64le

aide-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: 9f5a96880f103c18211113ce0fd5286ddefe8c350d4d9559810a4e6ab23ac78c

aide-debuginfo-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: 00519e566a029786a836dfd0ba805fe65bc5a3d168d380ba5d4bd59e0ef19874

aide-debugsource-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: b15ba3dc0ba1dcf6c4ef41c82ec6aab1525c38705ce6c7e4096cc2b181a8c6f5

Red Hat Enterprise Linux Server - TUS 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

x86_64

aide-0.16-14.el8_4.1.x86_64.rpm

SHA-256: b5862fc2e2f25b55d11b1b8eda54d412c7dfaff215bffce565df463d5d539d02

aide-debuginfo-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 7262ec6046bfd6591c0f744b725c55dee85ced86cbb66831a5bc68268fc8039a

aide-debugsource-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 31ecbf9fed52a03261cd02b179ee5af9948645fb5b40fda8d5d9cbca9caf0c09

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

aarch64

aide-0.16-14.el8_4.1.aarch64.rpm

SHA-256: 2ecb1cea4f70696ae808f6400038d0b8ec2e84cedd8a93fd0cac22b431451e5b

aide-debuginfo-0.16-14.el8_4.1.aarch64.rpm

SHA-256: 69e5938f05a3c33c060079e31fe1eea4c9fb99fafc3ccb5007ed61d8b4c95353

aide-debugsource-0.16-14.el8_4.1.aarch64.rpm

SHA-256: 826b2fb2dc20f927cb4ba960423da24b5f0bf1f0415f8984e35923f37d0312d9

Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

ppc64le

aide-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: 9f5a96880f103c18211113ce0fd5286ddefe8c350d4d9559810a4e6ab23ac78c

aide-debuginfo-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: 00519e566a029786a836dfd0ba805fe65bc5a3d168d380ba5d4bd59e0ef19874

aide-debugsource-0.16-14.el8_4.1.ppc64le.rpm

SHA-256: b15ba3dc0ba1dcf6c4ef41c82ec6aab1525c38705ce6c7e4096cc2b181a8c6f5

Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4

SRPM

aide-0.16-14.el8_4.1.src.rpm

SHA-256: 64884e898e77262a55f4653e9c1b629c6c8c01d4e42955344ae531afdf4f20d9

x86_64

aide-0.16-14.el8_4.1.x86_64.rpm

SHA-256: b5862fc2e2f25b55d11b1b8eda54d412c7dfaff215bffce565df463d5d539d02

aide-debuginfo-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 7262ec6046bfd6591c0f744b725c55dee85ced86cbb66831a5bc68268fc8039a

aide-debugsource-0.16-14.el8_4.1.x86_64.rpm

SHA-256: 31ecbf9fed52a03261cd02b179ee5af9948645fb5b40fda8d5d9cbca9caf0c09

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.