Red Hat Security Advisory 2023-0445-01 - Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: go-toolset-1.18 security update  
Advisory ID:       RHSA-2023:0445-01  
Product:           Red Hat Developer Tools  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0445  
Issue date:        2023-01-25  
CVE Names:         CVE-2022-2879 CVE-2022-2880 CVE-2022-41715  
====================================================================  
1. Summary:

An update for go-toolset-1.18 and go-toolset-1.18-golang is now available  
for Red Hat Developer Tools.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64le, s390x, x86_64  
Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64

3. Description:

Go Toolset provides the Go programming language tools and libraries. Go is  
alternatively known as golang.

Security Fix(es):

* golang: archive/tar: unbounded memory consumption when reading headers  
(CVE-2022-2879)

* golang: net/http/httputil: ReverseProxy should not forward unparseable  
query parameters (CVE-2022-2880)

* golang: regexp/syntax: limit memory used by parsing regexps  
(CVE-2022-41715)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* crypto testcases fail on golang on s390x [devtools-2022.4] (BZ#2149315)

* Internal linking fails on ppc64le [devtools-2022.4] (BZ#2161298)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2132867 - CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers  
2132868 - CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters  
2132872 - CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps  
2137549 - patch version mismatch between 'go version', go-toolset and golang packages [devtools-2022.4]  
2149315 - crypto testcases fail on golang on s390x [devtools-2022.4]

6. Package List:

Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7):

Source:  
go-toolset-1.18-1.18.9-1.el7_9.src.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.src.rpm

noarch:  
go-toolset-1.18-golang-docs-1.18.9-1.el7_9.noarch.rpm

ppc64le:  
go-toolset-1.18-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-build-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-golang-bin-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-golang-misc-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-golang-src-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-golang-tests-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-runtime-1.18.9-1.el7_9.ppc64le.rpm  
go-toolset-1.18-scldevel-1.18.9-1.el7_9.ppc64le.rpm

s390x:  
go-toolset-1.18-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-build-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-golang-bin-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-golang-misc-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-golang-src-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-golang-tests-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-runtime-1.18.9-1.el7_9.s390x.rpm  
go-toolset-1.18-scldevel-1.18.9-1.el7_9.s390x.rpm

x86_64:  
go-toolset-1.18-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-build-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-bin-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-misc-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-race-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-src-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-tests-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-runtime-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-scldevel-1.18.9-1.el7_9.x86_64.rpm

Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7):

Source:  
go-toolset-1.18-1.18.9-1.el7_9.src.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.src.rpm

noarch:  
go-toolset-1.18-golang-docs-1.18.9-1.el7_9.noarch.rpm

x86_64:  
go-toolset-1.18-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-build-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-bin-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-misc-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-race-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-src-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-golang-tests-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-runtime-1.18.9-1.el7_9.x86_64.rpm  
go-toolset-1.18-scldevel-1.18.9-1.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2879  
https://access.redhat.com/security/cve/CVE-2022-2880  
https://access.redhat.com/security/cve/CVE-2022-41715  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9EFtdzjgjWX9erEAQj0Bg//areGiVKIe5eCAym/Tl0HO/De0u1erQIz  
Eucod6zAd1dhn4fqLJq7CphJQN92f5mKmky/MSC4tJ6gn8hU0iLlp5CX7WTR6DTG  
SGVf3KS+ziu8kU6iU9jRAa883j9djguV0b5NU2AZ5lvex0ydeGEyETwLDjSR2Oz9  
V1e1lFjgDULJBvvrQsNJ7Y7C95BoeI/vIHbMJEinsXfNN846MxA6Az3pNpQ1/Mcl  
xIdstLBEYNfRQi9W1BaD5UGvVyAvzM3VhotABtXH44d3YBAq4nYRW4soyNoztDbg  
PgNaupK2fMOP/Ocgqo4skXD3WHNkLKFnlWSeFbjaU7edvI0BwK1RPVR8a+bFMmB6  
mElaM6Bs8y66VZr1MdZbYhLyGrYVu37gFckhs40/bYBIDXQbm2UwnjkVItZ78msi  
BftKscRMkjgHtaZgS+i2VEo3MJWBy6rLD0C5tYlRJhVHeH0BGLGtVpY16iZdMeZN  
QxK4ThCmrKPFS22lsHyMwZsK1uj797f19OMKK8qqO0PTLDwJ6IpALxfub/M5poXt  
KNiDJyr+F2LtNGn83S50BraRSPKNEXxsI7p3HbMwR3Bd6SeiceEGJzlgVf8WypC6  
kIFDzNs+852R89EuoJWNCGrBwi221w4KwsmZ2ac7t6UWOCXddKuOsFXqph/NuXIz  
fvIGtXMY6s0=SsUy  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0445-01

Debian Linux Security Advisory 5326-1 - Multiple vulnerabilities were discovered in Node.js, which could result in HTTP request smuggling, bypass of host IP address validation and weak randomness setup.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5326-1                   security@debian.orghttps://www.debian.org/security/                                  Aron XuJanuary 24, 2023                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : nodejsCVE ID         : CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215                 CVE-2022-35255 CVE-2022-35256 CVE-2022-43548Multiple vulnerabilities were discovered in Node.js, which could resultin HTTP request smuggling, bypass of host IP address validation and weakrandomness setup.For the stable distribution (bullseye), these problems have been fixed inversion 12.22.12~dfsg-1~deb11u3.We recommend that you upgrade your nodejs packages.For the detailed security status of nodejs please refer toits security tracker page at:https://security-tracker.debian.org/tracker/nodejsFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmPQNhIACgkQEMKTtsN8TjaRmA/+KDFkQcd2sE/eAAx9cVikICNkfu7uIVKHpeDH9o5oq5M2nj4zHJCeAArpWblguyZwEtqzAOO2WesbrmwfXLmglhrNZwRMOrsbu63JxSnecp7qcMwR8A4JWdmdTxb4aZr6Prmwq6fT0G3K6oV8Hw+OeqYA/RZKenxtkBf/jdzVahGJHJ/NrFKKWVQWxbqHwCkP7uUlm+5UR5XzNrodTRCQYHJvUmDUrjEOjM6x+sqYirKWiERN0A14kVn90Ufrw6+Z2tKhdKFZfU1BtDthhlH/nybz0h3aHsk+E5/vx20WAURiCEDVi7nf8+RfEtbCxaqV+/xVoPmXStHY/ogCo8CgRVsyYUIemgi4q5LwVx/Oqjm2CJ/xCwOKh0E2idXLJfLSpxxBe598MUn9iKbnFFCN9DQZXf7BYs3djtn8ALFVBSHZSF1QXFoFQ86wY9xGhBQzfEgCoEW7H4S30ZQ+Gz+ZnOMCSH+MKIMtSpqbc7wLtrKf839DO6Uux7B7u0WR3lZlsihi92QKq9X/VRkyy8ZiA2TYy3IE+KDKlXDHKls9FR9BUClYe9L8RiRuboP8KPFUHUsSVaTzkufMStdKkcXCqgj/6KhJL6E9ZunTBpTmqx1Ty7/N2qktLFnHujrffzV3rCE6eIg7ps8OdZbjCfqUqmQk9/pV6ZDjymqjZ1LKZDsþRn-----END PGP SIGNATURE-----

Debian Security Advisory 5326-1

Red Hat Security Advisory 2023-0442-01 - The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: sssd security update  
Advisory ID:       RHSA-2023:0442-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0442  
Issue date:        2023-01-24  
CVE Names:         CVE-2022-4254  
====================================================================  
1. Summary:

An update for sssd is now available for Red Hat Enterprise Linux 8.1 Update  
Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS E4S (v. 8.1) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The System Security Services Daemon (SSSD) service provides a set of  
daemons to manage access to remote directories and authentication  
mechanisms. It also provides the Name Service Switch (NSS) and the  
Pluggable Authentication Modules (PAM) interfaces toward the system, and a  
pluggable back-end system to connect to multiple different account sources.

Security Fix(es):

* sssd: libsss_certmap fails to sanitise certificate data used in LDAP  
filters (CVE-2022-4254)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2149894 - CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters

6. Package List:

Red Hat Enterprise Linux BaseOS E4S (v. 8.1):

Source:  
sssd-2.2.0-19.el8_1.3.src.rpm

aarch64:  
libipa_hbac-2.2.0-19.el8_1.3.aarch64.rpm  
libipa_hbac-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_autofs-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_autofs-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_certmap-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_certmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_idmap-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_idmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_nss_idmap-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_simpleifp-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_simpleifp-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_sudo-2.2.0-19.el8_1.3.aarch64.rpm  
libsss_sudo-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
python3-libipa_hbac-2.2.0-19.el8_1.3.aarch64.rpm  
python3-libipa_hbac-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
python3-libsss_nss_idmap-2.2.0-19.el8_1.3.aarch64.rpm  
python3-libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
python3-sss-2.2.0-19.el8_1.3.aarch64.rpm  
python3-sss-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
python3-sss-murmur-2.2.0-19.el8_1.3.aarch64.rpm  
python3-sss-murmur-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ad-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ad-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-client-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-client-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-common-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-common-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-common-pac-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-common-pac-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-dbus-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-dbus-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-debugsource-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ipa-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ipa-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-kcm-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-kcm-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-krb5-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-krb5-common-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-krb5-common-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-krb5-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ldap-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-ldap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-libwbclient-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-libwbclient-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-nfs-idmap-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-nfs-idmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-polkit-rules-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-proxy-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-proxy-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-tools-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-tools-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-winbind-idmap-2.2.0-19.el8_1.3.aarch64.rpm  
sssd-winbind-idmap-debuginfo-2.2.0-19.el8_1.3.aarch64.rpm

noarch:  
python3-sssdconfig-2.2.0-19.el8_1.3.noarch.rpm

ppc64le:  
libipa_hbac-2.2.0-19.el8_1.3.ppc64le.rpm  
libipa_hbac-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_autofs-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_autofs-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_certmap-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_certmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_idmap-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_idmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_nss_idmap-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_simpleifp-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_simpleifp-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_sudo-2.2.0-19.el8_1.3.ppc64le.rpm  
libsss_sudo-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-libipa_hbac-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-libipa_hbac-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-libsss_nss_idmap-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-sss-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-sss-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-sss-murmur-2.2.0-19.el8_1.3.ppc64le.rpm  
python3-sss-murmur-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ad-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ad-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-client-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-client-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-common-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-common-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-common-pac-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-common-pac-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-dbus-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-dbus-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-debugsource-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ipa-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ipa-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-kcm-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-kcm-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-krb5-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-krb5-common-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-krb5-common-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-krb5-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ldap-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-ldap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-libwbclient-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-libwbclient-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-nfs-idmap-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-nfs-idmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-polkit-rules-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-proxy-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-proxy-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-tools-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-tools-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-winbind-idmap-2.2.0-19.el8_1.3.ppc64le.rpm  
sssd-winbind-idmap-debuginfo-2.2.0-19.el8_1.3.ppc64le.rpm

s390x:  
libipa_hbac-2.2.0-19.el8_1.3.s390x.rpm  
libipa_hbac-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_autofs-2.2.0-19.el8_1.3.s390x.rpm  
libsss_autofs-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_certmap-2.2.0-19.el8_1.3.s390x.rpm  
libsss_certmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_idmap-2.2.0-19.el8_1.3.s390x.rpm  
libsss_idmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_nss_idmap-2.2.0-19.el8_1.3.s390x.rpm  
libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_simpleifp-2.2.0-19.el8_1.3.s390x.rpm  
libsss_simpleifp-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_sudo-2.2.0-19.el8_1.3.s390x.rpm  
libsss_sudo-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
python3-libipa_hbac-2.2.0-19.el8_1.3.s390x.rpm  
python3-libipa_hbac-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
python3-libsss_nss_idmap-2.2.0-19.el8_1.3.s390x.rpm  
python3-libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
python3-sss-2.2.0-19.el8_1.3.s390x.rpm  
python3-sss-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
python3-sss-murmur-2.2.0-19.el8_1.3.s390x.rpm  
python3-sss-murmur-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ad-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ad-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-client-2.2.0-19.el8_1.3.s390x.rpm  
sssd-client-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-common-2.2.0-19.el8_1.3.s390x.rpm  
sssd-common-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-common-pac-2.2.0-19.el8_1.3.s390x.rpm  
sssd-common-pac-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-dbus-2.2.0-19.el8_1.3.s390x.rpm  
sssd-dbus-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-debugsource-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ipa-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ipa-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-kcm-2.2.0-19.el8_1.3.s390x.rpm  
sssd-kcm-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-krb5-2.2.0-19.el8_1.3.s390x.rpm  
sssd-krb5-common-2.2.0-19.el8_1.3.s390x.rpm  
sssd-krb5-common-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-krb5-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ldap-2.2.0-19.el8_1.3.s390x.rpm  
sssd-ldap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-libwbclient-2.2.0-19.el8_1.3.s390x.rpm  
sssd-libwbclient-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-nfs-idmap-2.2.0-19.el8_1.3.s390x.rpm  
sssd-nfs-idmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-proxy-2.2.0-19.el8_1.3.s390x.rpm  
sssd-proxy-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-tools-2.2.0-19.el8_1.3.s390x.rpm  
sssd-tools-debuginfo-2.2.0-19.el8_1.3.s390x.rpm  
sssd-winbind-idmap-2.2.0-19.el8_1.3.s390x.rpm  
sssd-winbind-idmap-debuginfo-2.2.0-19.el8_1.3.s390x.rpm

x86_64:  
libipa_hbac-2.2.0-19.el8_1.3.i686.rpm  
libipa_hbac-2.2.0-19.el8_1.3.x86_64.rpm  
libipa_hbac-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libipa_hbac-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_autofs-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_autofs-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_autofs-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_certmap-2.2.0-19.el8_1.3.i686.rpm  
libsss_certmap-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_certmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_certmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_idmap-2.2.0-19.el8_1.3.i686.rpm  
libsss_idmap-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_idmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_idmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_nss_idmap-2.2.0-19.el8_1.3.i686.rpm  
libsss_nss_idmap-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_simpleifp-2.2.0-19.el8_1.3.i686.rpm  
libsss_simpleifp-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_simpleifp-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_simpleifp-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_sudo-2.2.0-19.el8_1.3.x86_64.rpm  
libsss_sudo-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
libsss_sudo-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
python3-libipa_hbac-2.2.0-19.el8_1.3.x86_64.rpm  
python3-libipa_hbac-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
python3-libipa_hbac-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
python3-libsss_nss_idmap-2.2.0-19.el8_1.3.x86_64.rpm  
python3-libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
python3-libsss_nss_idmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
python3-sss-2.2.0-19.el8_1.3.x86_64.rpm  
python3-sss-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
python3-sss-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
python3-sss-murmur-2.2.0-19.el8_1.3.x86_64.rpm  
python3-sss-murmur-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
python3-sss-murmur-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ad-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ad-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-ad-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-client-2.2.0-19.el8_1.3.i686.rpm  
sssd-client-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-client-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-client-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-common-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-common-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-common-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-common-pac-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-common-pac-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-common-pac-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-dbus-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-dbus-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-dbus-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-debugsource-2.2.0-19.el8_1.3.i686.rpm  
sssd-debugsource-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ipa-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ipa-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-ipa-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-kcm-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-kcm-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-kcm-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-krb5-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-krb5-common-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-krb5-common-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-krb5-common-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-krb5-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-krb5-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ldap-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-ldap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-ldap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-libwbclient-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-libwbclient-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-libwbclient-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-nfs-idmap-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-nfs-idmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-nfs-idmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-polkit-rules-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-proxy-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-proxy-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-proxy-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-tools-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-tools-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-tools-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-winbind-idmap-2.2.0-19.el8_1.3.x86_64.rpm  
sssd-winbind-idmap-debuginfo-2.2.0-19.el8_1.3.i686.rpm  
sssd-winbind-idmap-debuginfo-2.2.0-19.el8_1.3.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4254  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AIqtzjgjWX9erEAQjmug//dlh5NbhkMD0MWffQd8uIjl1306NsDnRl  
oYrhGn5qsa//kqJOBTJ6utY57Q90YJeDOq18pK++1A4tkhWHC+hAPSJLXsytlKhT  
W2kqGshFQF7LgY+LPMYrGa9NmtDLWRpilnhHM9PkGgKbb6jjuQ846qa7gUp/+MWp  
RVQKapEO5Fcu3TuPZ/wxt3kvofeDOmYyrcUt8ODhlSpvRKlhWnoi+8xAXC0Hlo7V  
wlbJ6PTNWpdAC+Xd0Dj7KGdRLEJXf0NlQyuih9XF3v9ETKBpIQB/oq0pWlJCn2Xg  
xw0hkAnz8T9oR+QCT7sXxub7WVnGVXmiYaZ4o6aaAnpXfu9AmO7sCnh1Gw8gV7l8  
4VyYigyWPia3MNhVwl/e22WBpkQ4VGnxQ/CAU0exi2hKbQF0jikNmXM8LVHQDXBl  
aUSv8FQGG+ON1+JsD3bxFt/r2O9IsZeQoz3HWpVLYyWg7tmNNQS8V3SOLX2K0Tcl  
KxDOiHcSYEnhDTUS7KwULIIubPs/i+5tvfEDKDJEI9N4GAS+Z6zMtrIA82f5Hs/o  
zTU8q42RuMqZEX4DNU6dO3qVGTIeSKqPzZP+bm3Zvgu9OC5iNKeZU+mwnKoFVl2s  
D+DP6Hk3H1ErAbj2MjuDtBpZZvcOHtXjgx93CCjcsbNQupLlivFII3sfYdY0rlAb  
a8X85V7CUxM=xeDA  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0442-01

Red Hat Security Advisory 2023-0441-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:0441-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0441  
Issue date:        2023-01-24  
CVE Names:         CVE-2022-4139  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux  
8.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS EUS (v.8.6) - x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: i915: Incorrect GPU TLB flush can lead to random memory access  
(CVE-2022-4139)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2147572 - CVE-2022-4139 kernel: i915: Incorrect GPU TLB flush can lead to random memory access

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.6):

Source:  
kpatch-patch-4_18_0-372_13_1-1-4.el8_6.src.rpm  
kpatch-patch-4_18_0-372_16_1-1-4.el8_6.src.rpm  
kpatch-patch-4_18_0-372_19_1-1-3.el8_6.src.rpm  
kpatch-patch-4_18_0-372_26_1-1-3.el8_6.src.rpm  
kpatch-patch-4_18_0-372_32_1-1-2.el8_6.src.rpm  
kpatch-patch-4_18_0-372_36_1-1-1.el8_6.src.rpm  
kpatch-patch-4_18_0-372_40_1-1-1.el8_6.src.rpm

x86_64:  
kpatch-patch-4_18_0-372_13_1-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_13_1-debuginfo-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_13_1-debugsource-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_16_1-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_16_1-debuginfo-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_16_1-debugsource-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_19_1-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_19_1-debuginfo-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_19_1-debugsource-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_26_1-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_26_1-debuginfo-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_26_1-debugsource-1-3.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_32_1-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_32_1-debuginfo-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_32_1-debugsource-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-debuginfo-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-debugsource-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-debuginfo-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-debugsource-1-1.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4139  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AIsNzjgjWX9erEAQgckQ//bYZVnOvKNaVx+5irtuwJVimKLsH+cB2A  
0gF/GzJD9nzqh90VI75o3BWTf9HLOoxsjI8iSL4GBJ5o7KC5gvAXlpVQMcLSPcXb  
D090UchsQtUTcS7y45VrrW7nevenjhWuyIq3KctdT/YJoZcHRGnv0VGSYmeoIxuQ  
2CUf72euPxTUDuRzLs8StcAHYpqtLg3WXjSn1BzrHSOf+xDSd4UPAa1k977zmYp9  
JGtrErJBhzWk5eQV8lyB4LIzvWUBPqkwtGMqrurj3LY/2hoQCsZfconUC0PeXoyN  
gU7I5/V27uvNjP5sn57sYYjqWWEm7029lWXinsejbK0KQlk8iHnxc72kprucgBo3  
YVomz5FIC6cBVvQ/Gu8W0INrAQfyUdupG6cN8Cj3eGcp90r025/nk3rQ9hpO/Uf2  
jH3UU45FNk+Q02LqWfL4tHV4MO/EUq7X4xf5GozVQ7JvEQVpcwyEvsYuWNt9YG4N  
+RX+Nzc7LwcrHI0IoL6EUKLygFjJBsNDneyWHykepCdXQwaVbRgpXGNA/2T6ua7q  
a46USY3VSm2Flz+79hUQcKDIj7heWjbNIzDNvJ+qrT5Q+EHNVkeqQx/g2/94HZPb  
0oj7ynKLba8oM0ILIc+VQZtAixuC+0R99reIgNfFbgWBYgI1JObAFguR15lMiXHI  
b8LAVKdsjO8=j/8X  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0441-01

Red Hat Security Advisory 2023-0427-01 - The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Issues addressed include a file download vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: pcs security update  
Advisory ID:       RHSA-2023:0427-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0427  
Issue date:        2023-01-24  
CVE Names:         CVE-2022-45442  
====================================================================  
1. Summary:

An update for pcs is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux High Availability EUS (v.8.6) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Resilient Storage EUS (v.8.6) - ppc64le, s390x, x86_64

3. Description:

The pcs packages provide a command-line configuration system for the  
Pacemaker and Corosync utilities.

Security Fix(es):

* sinatra: Reflected File Download attack (CVE-2022-45442)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2153363 - CVE-2022-45442 sinatra: Reflected File Download attack

6. Package List:

Red Hat Enterprise Linux High Availability EUS (v.8.6):

Source:  
pcs-0.10.12-6.el8_6.3.src.rpm

aarch64:  
pcs-0.10.12-6.el8_6.3.aarch64.rpm  
pcs-snmp-0.10.12-6.el8_6.3.aarch64.rpm

ppc64le:  
pcs-0.10.12-6.el8_6.3.ppc64le.rpm  
pcs-snmp-0.10.12-6.el8_6.3.ppc64le.rpm

s390x:  
pcs-0.10.12-6.el8_6.3.s390x.rpm  
pcs-snmp-0.10.12-6.el8_6.3.s390x.rpm

x86_64:  
pcs-0.10.12-6.el8_6.3.x86_64.rpm  
pcs-snmp-0.10.12-6.el8_6.3.x86_64.rpm

Red Hat Enterprise Linux Resilient Storage EUS (v.8.6):

Source:  
pcs-0.10.12-6.el8_6.3.src.rpm

ppc64le:  
pcs-0.10.12-6.el8_6.3.ppc64le.rpm  
pcs-snmp-0.10.12-6.el8_6.3.ppc64le.rpm

s390x:  
pcs-0.10.12-6.el8_6.3.s390x.rpm  
pcs-snmp-0.10.12-6.el8_6.3.s390x.rpm

x86_64:  
pcs-0.10.12-6.el8_6.3.x86_64.rpm  
pcs-snmp-0.10.12-6.el8_6.3.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-45442  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AIttzjgjWX9erEAQjq+w/+LNniFi1wUtJTA7XK9hsOBaFOyGn29dF8  
hxHIx8SvIamC5nfE7iO+Ova8ldoj5VGugSVeLgGDsSxjKBnvebFagPXnYos8z0/x  
Pe7R8LihnSCfxEOv7ZfdpRGNQZpJls4PWFna9csf6weV1bfGwm4zlyNxBAucrnv2  
cUco99IrbTfmomuc5OKyzv/NCU2x90yuMnvNlMCkv0Jca38+yUHXUcWc+upTmisp  
rw3G0woudN/pHEPjX3cEEYwOZtaCABdKwcaKcVdVIYieUkoVfE4i3x7iq8zIjSkP  
2YgTcLYri8C4wHKbT5+IXjbnAPoQzDSOXNYg0CmW6uZKjvYn9gsbGHR0WHSh6Ot3  
qpH4Uvw//dL1QBs9ln+1Fq+BblEWQHuje42xfYJIQlnf3YtB2J5cUefyltn5qN3q  
KKNPpHCvLsyLMSGPPFzKpIuPPKJWtqd13yrD1Nlo4T5ELmKag+r0o25wY0WRi3u7  
G3ngvw4aGo1dOTIlvuJlRyf60giB3FJ9qDR3oU3DGdV33LjxjCyL3W1u2YigbAwE  
+/ULj4VIswv/5G8Zab2gAk5iwobNT+qn9fr2AI7/UGSLWdIeupj7r7DwLVA/2jWx  
TTyYONEYXccL0dVYkAQmu8MspbCRuSYRca1Qn1fFR0wuZXtkxZxl9mKtuGvxk569  
3dlPwzLDq+o1u  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0427-01

Red Hat Security Advisory 2023-0440-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:0440-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0440  
Issue date:        2023-01-24  
CVE Names:         CVE-2022-4139 CVE-2022-26373  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder EUS (v.8.6) - aarch64, ppc64le, x86_64  
Red Hat Enterprise Linux BaseOS EUS (v.8.6) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: i915: Incorrect GPU TLB flush can lead to random memory access  
(CVE-2022-4139)

* hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions  
(CVE-2022-26373)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Azure: Sometimes newly deployed VMs are not getting accelerated network  
during provisioning (BZ#2155273)

* Azure: VM Deployment Failures Patch Request (BZ#2155281)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2115065 - CVE-2022-26373 hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions  
2147572 - CVE-2022-4139 kernel: i915: Incorrect GPU TLB flush can lead to random memory access

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.6):

Source:  
kernel-4.18.0-372.41.1.el8_6.src.rpm

aarch64:  
bpftool-4.18.0-372.41.1.el8_6.aarch64.rpm  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-core-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-cross-headers-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-core-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-devel-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-modules-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-devel-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-headers-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-modules-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-modules-extra-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-tools-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-tools-libs-4.18.0-372.41.1.el8_6.aarch64.rpm  
perf-4.18.0-372.41.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
python3-perf-4.18.0-372.41.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-372.41.1.el8_6.noarch.rpm  
kernel-doc-4.18.0-372.41.1.el8_6.noarch.rpm

ppc64le:  
bpftool-4.18.0-372.41.1.el8_6.ppc64le.rpm  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-core-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-cross-headers-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-core-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-devel-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-modules-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-devel-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-headers-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-modules-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-modules-extra-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-tools-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-tools-libs-4.18.0-372.41.1.el8_6.ppc64le.rpm  
perf-4.18.0-372.41.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
python3-perf-4.18.0-372.41.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm

s390x:  
bpftool-4.18.0-372.41.1.el8_6.s390x.rpm  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-core-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-cross-headers-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-core-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-devel-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-modules-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debug-modules-extra-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-devel-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-headers-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-modules-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-modules-extra-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-tools-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-core-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-372.41.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-372.41.1.el8_6.s390x.rpm  
perf-4.18.0-372.41.1.el8_6.s390x.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm  
python3-perf-4.18.0-372.41.1.el8_6.s390x.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.s390x.rpm

x86_64:  
bpftool-4.18.0-372.41.1.el8_6.x86_64.rpm  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-core-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-cross-headers-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-core-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-devel-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-modules-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-devel-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-headers-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-modules-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-modules-extra-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-tools-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-tools-libs-4.18.0-372.41.1.el8_6.x86_64.rpm  
perf-4.18.0-372.41.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
python3-perf-4.18.0-372.41.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm

Red Hat CodeReady Linux Builder EUS (v.8.6):

aarch64:  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
kernel-tools-libs-devel-4.18.0-372.41.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.aarch64.rpm

ppc64le:  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
kernel-tools-libs-devel-4.18.0-372.41.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.ppc64le.rpm

x86_64:  
bpftool-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
kernel-tools-libs-devel-4.18.0-372.41.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.41.1.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4139  
https://access.redhat.com/security/cve/CVE-2022-26373  
https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/solutions/6971358

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AIp9zjgjWX9erEAQg9Pg/9Er7Hk82Tlcs3vY1CJJqUIfo2AVzr1z3o  
kf95Z65Nu4pUrHvInLvRQsejwHYMJQ0CUiVLzeoGey+W3p7iqN3au2rhAPgqNB80  
z6ZgznAXhIoTHKZYDrRFmc7WKUcmwI+GFcpojzImdAyBTOlKAOUArLo/ymdVN1PR  
ByVc/0twtkhaCbkacs3ZqH0YsRl9M5oz6TWPG5Vl47v25hy/NBG8IgANeDBYBDsL  
101xyBH0eukaXYjral2bDfGNnTVM8rasnVTzbM1e78qs2Xy+YcMgiweoYGh8/ci/  
EsRr2lad0aoLL6vzV14QaCV3O5yOXRanFXgj4V3Ur5KQD++Fm6GVXrJJrpGiofdl  
dZP1gt7u70OdPNHJDGULnuA38fqI9q1Y7q/joeIEQW8DNNaltylSkH6QbcQORWdJ  
+RCrvXCEEN2OByn12mphTor70RiiYysCc8ZPvjZ8IV1bcFdDJn2zYryauvChCXg3  
z4mPg/tCkGKuHPkUFb8rpwlwctxPNl2T/AaFrpLCbJEZ7xFHikId7WyQo3lDQP6e  
9Zoq8GibW+Sk0pKs/6nD5tAA8ELFcibXbqBf1c0ryJtdkHMnr6egh7//df4eO0KM  
vS2ftNd/dwjSXDZW7thARNfXNy1IjozVnkx5Lljp+CEFB8alQvjPiJXA+kdxhBgo  
UqlXQmL4JOQ=V4KT  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0440-01

Red Hat Security Advisory 2023-0399-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:0399-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0399  
Issue date:        2023-01-24  
CVE Names:         CVE-2021-26401 CVE-2022-2964  
====================================================================  
1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64  
Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: memory corruption in AX88179_178A based USB ethernet device.  
(CVE-2022-2964)

* hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715 (CVE-2021-26401)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Prevent unnecessary resets - Avoid leaving shost->last_reset with stale  
value if EH does not run (BZ#2128337)

* i40e: Request to backport upstream commit 2e5a20573a92 (BZ#2129248)

* disable VMA-based swap-in readahead on PowerPC (BZ#2142455)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2061700 - CVE-2021-26401 hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715  
2067482 - CVE-2022-2964 kernel: memory corruption in AX88179_178A based USB ethernet device.

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
kernel-3.10.0-1160.83.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.83.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.83.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.83.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
kernel-3.10.0-1160.83.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.83.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.83.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.83.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
kernel-3.10.0-1160.83.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.83.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.83.1.el7.noarch.rpm

ppc64:  
bpftool-3.10.0-1160.83.1.el7.ppc64.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-bootwrapper-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debug-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-devel-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-headers-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-tools-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.ppc64.rpm  
perf-3.10.0-1160.83.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
python-perf-3.10.0-1160.83.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm

ppc64le:  
bpftool-3.10.0-1160.83.1.el7.ppc64le.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-bootwrapper-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debug-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-devel-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-headers-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-tools-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.ppc64le.rpm  
perf-3.10.0-1160.83.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
python-perf-3.10.0-1160.83.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm

s390x:  
bpftool-3.10.0-1160.83.1.el7.s390x.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-debug-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-debuginfo-common-s390x-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-devel-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-headers-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-kdump-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-kdump-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm  
kernel-kdump-devel-3.10.0-1160.83.1.el7.s390x.rpm  
perf-3.10.0-1160.83.1.el7.s390x.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm  
python-perf-3.10.0-1160.83.1.el7.s390x.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.s390x.rpm

x86_64:  
bpftool-3.10.0-1160.83.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-debuginfo-common-ppc64-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.ppc64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.ppc64.rpm

ppc64le:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.ppc64le.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.ppc64le.rpm

x86_64:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
kernel-3.10.0-1160.83.1.el7.src.rpm

noarch:  
kernel-abi-whitelists-3.10.0-1160.83.1.el7.noarch.rpm  
kernel-doc-3.10.0-1160.83.1.el7.noarch.rpm

x86_64:  
bpftool-3.10.0-1160.83.1.el7.x86_64.rpm  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-headers-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64:  
bpftool-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debug-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-debuginfo-common-x86_64-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
kernel-tools-libs-devel-3.10.0-1160.83.1.el7.x86_64.rpm  
perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm  
python-perf-debuginfo-3.10.0-1160.83.1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-26401  
https://access.redhat.com/security/cve/CVE-2022-2964  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AImdzjgjWX9erEAQjGnw//WoiXEYrwKA6hUtddiHXab5UwZ3/5s2dX  
scrW9W3k5fLOnmVe37MyM+6s2tutB4A/pbg+InjDBxE5XeF5OckVl2HMG8rdIMjd  
LyGKlQX2TPI0/tS1rbG1T2pLmPYjCgKCSBDyFrUtUI5xwlh9+Mu8iWqW5TAYMR35  
0moVco0dn/UFZLNbTeiL8uzOt+YY+hgc7dLs/x8P1wECJmYO+D4ujvMdZILAuOp+  
GPN5TZVJE+9BnpsBNJWjZrY6j9MKv+o7+ePmkO2s86ud7Y/ZKGHgBVlOn9ghUj0w  
p0BWpLS+FQMTKcuZjA3cHhgWgH4RHpPBoJ+6cYOPj/MU4BjdhCAQ0fyAbMJRGyKT  
Oa4nePg4ShXfda9xFSlJNlwGhGbxleTzHHDYXVwWbl8TwxIQNyIJ6SuzGt1i8Lqa  
x0ChOETxnkfZcTnL86/pJuEU9xyBjR1AxcTCjXx4RaGvH+XdRgAdv2RcVXlT090e  
LsKIZbK+CDCl8IbQLJWiL9NkZcXYEkwmZ3CEQuDgJi0vs6FJSi4AEoPn7lgs1Yxl  
LEBpH4bps8sT7zI6KnYaGYzFZt1jsCmvVqjPCqYSp4USBvX5095lHrgMNd+RkoAg  
o1OLH8Jaa2Cnjc6ZXwqD9p4D9Xzw6gTRew3/R7XoPWGmYRVabkMD5EkJEm+POYUQ  
8IByMd2OGog=pqk6  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0399-01

Red Hat Security Advisory 2023-0404-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:0404-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0404  
Issue date:        2023-01-24  
CVE Names:         CVE-2022-2964  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Server (v. 7) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: memory corruption in AX88179_178A based USB ethernet device.  
(CVE-2022-2964)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2067482 - CVE-2022-2964 kernel: memory corruption in AX88179_178A based USB ethernet device.

6. Package List:

Red Hat Enterprise Linux Server (v. 7):

Source:  
kpatch-patch-3_10_0-1160_71_1-1-2.el7.src.rpm  
kpatch-patch-3_10_0-1160_76_1-1-2.el7.src.rpm  
kpatch-patch-3_10_0-1160_80_1-1-1.el7.src.rpm  
kpatch-patch-3_10_0-1160_81_1-1-1.el7.src.rpm

ppc64le:  
kpatch-patch-3_10_0-1160_71_1-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_71_1-debuginfo-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_76_1-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-2.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_80_1-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_80_1-debuginfo-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_81_1-1-1.el7.ppc64le.rpm  
kpatch-patch-3_10_0-1160_81_1-debuginfo-1-1.el7.ppc64le.rpm

x86_64:  
kpatch-patch-3_10_0-1160_71_1-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_71_1-debuginfo-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_76_1-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_76_1-debuginfo-1-2.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_80_1-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_80_1-debuginfo-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_81_1-1-1.el7.x86_64.rpm  
kpatch-patch-3_10_0-1160_81_1-debuginfo-1-1.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2964  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AIo9zjgjWX9erEAQg/sQ//YHi+fwqLXoKOvTVAfd7N5/0XEVtFxRUB  
W+s4KYtcPVyGw318Xd1Il0y/kb/Qsw06/UMPHapOBSopzdihPaySsyjYIiJu0fPX  
3zUAOfDOmqTehDlVPzC+AhHXN7bsHeX4fg9KeF0MugRbuDHMFRslBIh5jaHaD4Fu  
GeA/sXPxZ+xzuzh7ALiaIxAUHOzk6CLNI3TcCUoMipZt6P25zMPkOCzK3UlFNSWp  
5BAir7uZUUxYRdaVzIdx6UtWcp2iKLWQbBvpB9keQ+9Fl/o/juLfaOmH28gB/A9+  
WFjgjleWUeJYbZQYfzbdJy1+SCWhnmc6gFaUW55ZVMTyQwZq7UzgJVzH3d2J+mjN  
IHTBRyokMdibLX7cL529AH3Ecvk7eY19bEa7wMjSoQ9l+NZ/1/buFtadtjSBNTZ/  
kcVMx/HVT5FXim7iID7XxojBA07vErnh/pPyvlJe7uzyv7NYLKzVs2i84leBVzTs  
28jrICvk97QZ3obdScHOxDpGQXPxvltl9qFH78QarBfYhRH9sQXqSVjzr8+NpmoY  
cK1L3iUp8cEnRr2ZDQfJlNGTl+By2bOFNpgNZioLglQGc2kYzo6S/3NtW7gRi5F1  
AS4w94ueRf7NQDM9puQS42P4Vhn99rvjoTOExOHDGQ67BY8HDqivbFBx1sRPk58j  
z0X7ROA+ECQ=WEyv  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0404-01

Red Hat Security Advisory 2023-0400-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2023:0400-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:0400  
Issue date:        2023-01-24  
CVE Names:         CVE-2021-26401 CVE-2022-2964  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux for Real Time (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux for Real Time for NFV (v. 7) - noarch, x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: memory corruption in AX88179_178A based USB ethernet device.  
(CVE-2022-2964)

* hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715 (CVE-2021-26401)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* kernel-rt: update to the latest RHEL7.9.z20 source tree (BZ#2152044)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2061700 - CVE-2021-26401 hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715  
2067482 - CVE-2022-2964 kernel: memory corruption in AX88179_178A based USB ethernet device.

6. Package List:

Red Hat Enterprise Linux for Real Time for NFV (v. 7):

Source:  
kernel-rt-3.10.0-1160.83.1.rt56.1228.el7.src.rpm

noarch:  
kernel-rt-doc-3.10.0-1160.83.1.rt56.1228.el7.noarch.rpm

x86_64:  
kernel-rt-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-kvm-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-kvm-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-kvm-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-kvm-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-kvm-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-kvm-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm

Red Hat Enterprise Linux for Real Time (v. 7):

Source:  
kernel-rt-3.10.0-1160.83.1.rt56.1228.el7.src.rpm

noarch:  
kernel-rt-doc-3.10.0-1160.83.1.rt56.1228.el7.noarch.rpm

x86_64:  
kernel-rt-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debug-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-debuginfo-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm  
kernel-rt-trace-devel-3.10.0-1160.83.1.rt56.1228.el7.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-26401  
https://access.redhat.com/security/cve/CVE-2022-2964  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY9AInNzjgjWX9erEAQjODA/9GAUKKUrU1NdJJSi9v00ACTHBHWqtB2UW  
K9ojblgRnXv0Cuwdxj6xpyBYW3RkVN3b4HBksdxG8jif+gJ/4lc2MbSC41M9srb8  
ckUJJ8mNDeWp6MDYLDJpL7Hb0WKNsaQaOlLHH7u2fWK/r21jOkCyGcUrrGJazENN  
H2xDDfz2JdnIS38Z0RJd80A4VtVt+kz/n9/qHnWXA0+IDyAevEUYt58zw6fclKre  
Rj+5/T4G1wEjHlnaKBy6UczX0INe6AT/2VdtKyiQ0ovENDSFH8cpCxLH44sH1Fqh  
BtyCFEuYuvbCDMgftMw3mTWKW6QtWtMLhmPliIsMuZ9dXkBiQ3Ux6NUem/wNnwFX  
Iu8TvKmnhsYqL2EinAKBV1cJP1lvjLKUUwBRRzW6KDuV8vwJt7AgEsfEjWb2636r  
iiNm0kmLoTNWqcWm0WFWM7UmO0HBcUuAYSopyQlz4erSeFfmTFYos6MzNjVLX3oF  
BXg07KF44akfN+dw8KElYLjjC+5IDYI3pDt4GlF4VoyuIgh5sZRkxwNeKQC7IsQB  
nhJoGQ6PRruz8sW2+wbSQLXWqr3+NDX/GMOPGQOAUt5S+7uD6lKkUjjPzTtvwOtS  
i9FTjzvuVnXwEfEmycZFLQx6bIsfARlwvdOY1QrJmo2joWQ0iOCL30u4k0JAlTF/  
zRiMS5eelho=h5Hj  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-0400-01

Red Hat Security Advisory 2023-0432-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include an out of bounds read vulnerability.

Tag

#js