Ubuntu Security Notice 6397-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker could use this to cause a denial of service.

==========================================================================  
Ubuntu Security Notice USN-6397-1  
September 26, 2023

linux-bluefield vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:  
- linux-bluefield: Linux kernel for NVIDIA BlueField platforms

Details:

Daniel Moghimi discovered that some Intel(R) Processors did not properly  
clear microarchitectural state after speculative execution of various  
instructions. A local unprivileged user could use this to obtain to  
sensitive information. (CVE-2022-40982)

Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did  
not properly perform permissions checks when handling HCI sockets. A  
physically proximate attacker could use this to cause a denial of service  
(bluetooth communication). (CVE-2023-2002)

Tavis Ormandy discovered that some AMD processors did not properly handle  
speculative execution of certain vector register instructions. A local  
attacker could use this to expose sensitive information. (CVE-2023-20593)

Zi Fan Tan discovered that the binder IPC implementation in the Linux  
kernel contained a use-after-free vulnerability. A local attacker could use  
this to cause a denial of service (system crash) or possibly execute  
arbitrary code. (CVE-2023-21255)

Juan Jose Lopez Jaimez, Meador Inge, Simon Scannell, and Nenad Stojanovski  
discovered that the BPF verifier in the Linux kernel did not properly mark  
registers for precision tracking in certain situations, leading to an out-  
of-bounds access vulnerability. A local attacker could use this to cause a  
denial of service (system crash) or possibly execute arbitrary code.  
(CVE-2023-2163)

Zheng Zhang discovered that the device-mapper implementation in the Linux  
kernel did not properly handle locking during table_clear() operations. A  
local attacker could use this to cause a denial of service (kernel  
deadlock). (CVE-2023-2269)

It was discovered that the DVB Core driver in the Linux kernel did not  
properly handle locking events in certain situations. A local attacker  
could use this to cause a denial of service (kernel deadlock).  
(CVE-2023-31084)

It was discovered that the kernel->user space relay implementation in the  
Linux kernel did not properly perform certain buffer calculations, leading  
to an out-of-bounds read vulnerability. A local attacker could use this to  
cause a denial of service (system crash) or expose sensitive information  
(kernel memory). (CVE-2023-3268)

It was discovered that the video4linux driver for Philips based TV cards in  
the Linux kernel contained a race condition during device removal, leading  
to a use-after-free vulnerability. A physically proximate attacker could  
use this to cause a denial of service (system crash) or possibly execute  
arbitrary code. (CVE-2023-35823)

It was discovered that the SDMC DM1105 PCI device driver in the Linux  
kernel contained a race condition during device removal, leading to a use-  
after-free vulnerability. A physically proximate attacker could use this to  
cause a denial of service (system crash) or possibly execute arbitrary  
code. (CVE-2023-35824)

It was discovered that the Renesas USB controller driver in the Linux  
kernel contained a race condition during device removal, leading to a use-  
after-free vulnerability. A privileged attacker could use this to cause a  
denial of service (system crash) or possibly execute arbitrary code.  
(CVE-2023-35828)

It was discovered that the universal 32bit network packet classifier  
implementation in the Linux kernel did not properly perform reference  
counting in some situations, leading to a use-after-free vulnerability. A  
local attacker could use this to cause a denial of service (system crash)  
or possibly execute arbitrary code. (CVE-2023-3609)

It was discovered that the Quick Fair Queueing network scheduler  
implementation in the Linux kernel contained an out-of-bounds write  
vulnerability. A local attacker could use this to cause a denial of service  
(system crash) or possibly execute arbitrary code. (CVE-2023-3611)

It was discovered that the network packet classifier with  
netfilter/firewall marks implementation in the Linux kernel did not  
properly handle reference counting, leading to a use-after-free  
vulnerability. A local attacker could use this to cause a denial of service  
(system crash) or possibly execute arbitrary code. (CVE-2023-3776)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 20.04 LTS:  
   linux-image-5.4.0-1070-bluefield  5.4.0-1070.76  
   linux-image-bluefield           5.4.0.1070.65

After a standard system update you need to reboot your computer to make  
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have  
been given a new version number, which requires you to recompile and  
reinstall all third party kernel modules you might have installed.  
Unless you manually uninstalled the standard kernel metapackages  
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,  
linux-powerpc), a standard system upgrade will automatically perform  
this as well.

References:  
   https://ubuntu.com/security/notices/USN-6397-1  
   CVE-2022-40982, CVE-2023-2002, CVE-2023-20593, CVE-2023-21255,  
   CVE-2023-2163, CVE-2023-2269, CVE-2023-31084, CVE-2023-3268,  
   CVE-2023-35823, CVE-2023-35824, CVE-2023-35828, CVE-2023-3609,  
   CVE-2023-3611, CVE-2023-3776

Package Information:  
   https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1070.76

Ubuntu Security Notice USN-6397-1

Ubuntu Security Notice 6396-1 - It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information.

    ==========================================================================Ubuntu Security Notice USN-6396-1September 26, 2023linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp,linux-gcp-4.15, linux-hwe, linux-oracle vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS (Available with Ubuntu Pro)- Ubuntu 16.04 LTS (Available with Ubuntu Pro)Summary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems- linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-aws-hwe: Linux kernel for Amazon Web Services (AWS-HWE) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe: Linux hardware enablement (HWE) kernel- linux-oracle: Linux kernel for Oracle Cloud systemsDetails:It was discovered that some AMD x86-64 processors with SMT enabled couldspeculatively execute instructions using a return address from a siblingthread. A local attacker could possibly use this to expose sensitiveinformation. (CVE-2022-27672)Daniel Moghimi discovered that some Intel(R) Processors did not properlyclear microarchitectural state after speculative execution of variousinstructions. A local unprivileged user could use this to obtain tosensitive information. (CVE-2022-40982)Yang Lan discovered that the GFS2 file system implementation in the Linuxkernel could attempt to dereference a null pointer in some situations. Anattacker could use this to construct a malicious GFS2 image that, whenmounted and operated on, could cause a denial of service (system crash).(CVE-2023-3212)It was discovered that the NFC implementation in the Linux kernel containeda use-after-free vulnerability when performing peer-to-peer communicationin certain conditions. A privileged attacker could use this to cause adenial of service (system crash) or possibly expose sensitive information(kernel memory). (CVE-2023-3863)It was discovered that the bluetooth subsystem in the Linux kernel did notproperly handle L2CAP socket release, leading to a use-after-freevulnerability. A local attacker could use this to cause a denial of service(system crash) or possibly execute arbitrary code. (CVE-2023-40283)It was discovered that some network classifier implementations in the Linuxkernel contained use-after-free vulnerabilities. A local attacker could usethis to cause a denial of service (system crash) or possibly executearbitrary code. (CVE-2023-4128)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS (Available with Ubuntu Pro):   linux-image-4.15.0-1155-gcp     4.15.0-1155.172   linux-image-4.15.0-1161-aws     4.15.0-1161.174   linux-image-4.15.0-1170-azure   4.15.0-1170.185   linux-image-4.15.0-218-generic  4.15.0-218.229   linux-image-4.15.0-218-lowlatency  4.15.0-218.229   linux-image-aws-lts-18.04       4.15.0.1161.159   linux-image-azure-lts-18.04     4.15.0.1170.138   linux-image-gcp-lts-18.04       4.15.0.1155.169   linux-image-generic             4.15.0.218.202   linux-image-lowlatency          4.15.0.218.202   linux-image-virtual             4.15.0.218.202Ubuntu 16.04 LTS (Available with Ubuntu Pro):   linux-image-4.15.0-1124-oracle  4.15.0-1124.135~16.04.1   linux-image-4.15.0-1155-gcp     4.15.0-1155.172~16.04.1   linux-image-4.15.0-1161-aws     4.15.0-1161.174~16.04.1   linux-image-4.15.0-1170-azure   4.15.0-1170.185~16.04.1   linux-image-4.15.0-218-generic  4.15.0-218.229~16.04.1   linux-image-4.15.0-218-lowlatency  4.15.0-218.229~16.04.1   linux-image-aws-hwe             4.15.0.1161.144   linux-image-azure               4.15.0.1170.154   linux-image-gcp                 4.15.0.1155.145   linux-image-generic-hwe-16.04   4.15.0.218.2   linux-image-gke                 4.15.0.1155.145   linux-image-lowlatency-hwe-16.04  4.15.0.218.2   linux-image-oem                 4.15.0.218.2   linux-image-oracle              4.15.0.1124.105   linux-image-virtual-hwe-16.04   4.15.0.218.2After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6396-1   CVE-2022-27672, CVE-2022-40982, CVE-2023-3212, CVE-2023-3863,   CVE-2023-40283, CVE-2023-4128

Ubuntu Security Notice USN-6396-1

Red Hat Security Advisory 2023-5353-01 - The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Issues addressed include an out of bounds write vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: libtiff security update  
Advisory ID:       RHSA-2023:5353-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5353  
Issue date:        2023-09-26  
CVE Names:         CVE-2023-0800 CVE-2023-0801 CVE-2023-0802  
                   CVE-2023-0803 CVE-2023-0804  
====================================================================  
1. Summary:

An update for libtiff is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux CRB (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

The libtiff packages contain a library of functions for manipulating Tagged  
Image File Format (TIFF) files.

Security Fix(es):

* libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in  
tools/tiffcrop.c (CVE-2023-0800)

* libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when  
called by functions in tools/tiffcrop.c (CVE-2023-0801)

* libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in  
tools/tiffcrop.c (CVE-2023-0802)

* libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in  
tools/tiffcrop.c (CVE-2023-0803)

* libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in  
tools/tiffcrop.c (CVE-2023-0804)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running applications linked against libtiff must be restarted for this  
update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2170167 - CVE-2023-0800 libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c  
2170172 - CVE-2023-0801 libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c  
2170178 - CVE-2023-0802 libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c  
2170187 - CVE-2023-0803 libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c  
2170192 - CVE-2023-0804 libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
libtiff-4.0.9-29.el8_8.src.rpm

aarch64:  
libtiff-4.0.9-29.el8_8.aarch64.rpm  
libtiff-debuginfo-4.0.9-29.el8_8.aarch64.rpm  
libtiff-debugsource-4.0.9-29.el8_8.aarch64.rpm  
libtiff-devel-4.0.9-29.el8_8.aarch64.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.aarch64.rpm

ppc64le:  
libtiff-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-debuginfo-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-debugsource-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-devel-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.ppc64le.rpm

s390x:  
libtiff-4.0.9-29.el8_8.s390x.rpm  
libtiff-debuginfo-4.0.9-29.el8_8.s390x.rpm  
libtiff-debugsource-4.0.9-29.el8_8.s390x.rpm  
libtiff-devel-4.0.9-29.el8_8.s390x.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.s390x.rpm

x86_64:  
libtiff-4.0.9-29.el8_8.i686.rpm  
libtiff-4.0.9-29.el8_8.x86_64.rpm  
libtiff-debuginfo-4.0.9-29.el8_8.i686.rpm  
libtiff-debuginfo-4.0.9-29.el8_8.x86_64.rpm  
libtiff-debugsource-4.0.9-29.el8_8.i686.rpm  
libtiff-debugsource-4.0.9-29.el8_8.x86_64.rpm  
libtiff-devel-4.0.9-29.el8_8.i686.rpm  
libtiff-devel-4.0.9-29.el8_8.x86_64.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.i686.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.x86_64.rpm

Red Hat Enterprise Linux CRB (v. 8):

aarch64:  
libtiff-debuginfo-4.0.9-29.el8_8.aarch64.rpm  
libtiff-debugsource-4.0.9-29.el8_8.aarch64.rpm  
libtiff-tools-4.0.9-29.el8_8.aarch64.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.aarch64.rpm

ppc64le:  
libtiff-debuginfo-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-debugsource-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-tools-4.0.9-29.el8_8.ppc64le.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.ppc64le.rpm

s390x:  
libtiff-debuginfo-4.0.9-29.el8_8.s390x.rpm  
libtiff-debugsource-4.0.9-29.el8_8.s390x.rpm  
libtiff-tools-4.0.9-29.el8_8.s390x.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.s390x.rpm

x86_64:  
libtiff-debuginfo-4.0.9-29.el8_8.x86_64.rpm  
libtiff-debugsource-4.0.9-29.el8_8.x86_64.rpm  
libtiff-tools-4.0.9-29.el8_8.x86_64.rpm  
libtiff-tools-debuginfo-4.0.9-29.el8_8.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0800  
https://access.redhat.com/security/cve/CVE-2023-0801  
https://access.redhat.com/security/cve/CVE-2023-0802  
https://access.redhat.com/security/cve/CVE-2023-0803  
https://access.redhat.com/security/cve/CVE-2023-0804  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlEvhQAAoJENzjgjWX9erEufcP/AuTEIb6QAokcht5zJob9rft  
Mztwx8CabbzLm9vzvR6djT7JuRB12l94oTaf9akN8ey7Vdhl8Ht9WHzgK7u3TDd8  
nVJhAoyM2PHcUKs7+0FIVvTriGauXfZ+z0AMNfoE3CnsWLDS785msDCwEM2tj5+x  
OWTekbGARPjEEoR0R57jjHHqHaUb4WGRxGo1+TeGBUDEII+RTTtcLS+buq7wXu2F  
xePJ0u8WKqPHq+f7wofO/xvHzZEnXPzt+CCCAQBWt4Aofldh+GbL64QoZSjE2mR/  
jfBwF/Vg68ACSPKGv3rZuCdFKt31Jo7fVEaGIKUYYbCC+MomO8DhDpc1QJepEYK2  
Rk969D8K0TKOTw5M9L3QzknMrkey+waJBx93JQEte9Ia3nc+xiB06U1GAH9qYkWb  
rJca0XPIMyjatvYsnwqTBG3vubgyrLEq8N4YN8DGsg94jJTND4L92TPWHNcUkP56  
HI2BuRpc4CXIQXrJSV+vNilS6jlVUsiO29BR5s1Km/dxx1VdNDeqOPH11I/PMN+N  
WqUQvVzEEje/6/VEYgQ5xl+lCnaEnH2o2adZzmb2M5V9VfWM2pEkZrbe8M+0qfRe  
TmfCtppGs6QaaPnpO7Crz7qE2GDz0ovWPHtuj9ZOFNVOunehk8RrIq+pXVOr/ey0  
Yo3pglUnsvXONgXiyUb2  
=akTq  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5353-01

Red Hat Security Advisory 2023-5362-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include bypass and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: nodejs:18 security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:5362-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5362  
Issue date:        2023-09-26  
CVE Names:         CVE-2022-25883 CVE-2023-32002 CVE-2023-32006  
                   CVE-2023-32559  
====================================================================  
1. Summary:

An update for the nodejs:18 module is now available for Red Hat Enterprise  
Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The following packages have been upgraded to a later upstream version:  
nodejs (18). (BZ#2234409)

Security Fix(es):

* nodejs: Permissions policies can be bypassed via Module._load  
(CVE-2023-32002)

* nodejs-semver: Regular expression denial of service (CVE-2022-25883)

* nodejs: Permissions policies can impersonate other modules in using  
module.constructor.createRequire() (CVE-2023-32006)

* nodejs: Permissions policies can be bypassed via process.binding  
(CVE-2023-32559)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2216475 - CVE-2022-25883 nodejs-semver: Regular expression denial of service  
2230948 - CVE-2023-32002 nodejs: Permissions policies can be bypassed via Module._load  
2230955 - CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()  
2230956 - CVE-2023-32559 nodejs: Permissions policies can be bypassed via process.binding  
2234409 - nodejs:18/nodejs: Rebase to the latest Nodejs 18 release [rhel-8] [rhel-8.8.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
nodejs-18.17.1-1.module+el8.8.0+19757+8ca87034.src.rpm  
nodejs-nodemon-3.0.1-1.module+el8.8.0+19757+8ca87034.src.rpm  
nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.src.rpm

aarch64:  
nodejs-18.17.1-1.module+el8.8.0+19757+8ca87034.aarch64.rpm  
nodejs-debuginfo-18.17.1-1.module+el8.8.0+19757+8ca87034.aarch64.rpm  
nodejs-debugsource-18.17.1-1.module+el8.8.0+19757+8ca87034.aarch64.rpm  
nodejs-devel-18.17.1-1.module+el8.8.0+19757+8ca87034.aarch64.rpm  
nodejs-full-i18n-18.17.1-1.module+el8.8.0+19757+8ca87034.aarch64.rpm  
npm-9.6.7-1.18.17.1.1.module+el8.8.0+19757+8ca87034.aarch64.rpm

noarch:  
nodejs-docs-18.17.1-1.module+el8.8.0+19757+8ca87034.noarch.rpm  
nodejs-nodemon-3.0.1-1.module+el8.8.0+19757+8ca87034.noarch.rpm  
nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm  
nodejs-packaging-bundler-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm

ppc64le:  
nodejs-18.17.1-1.module+el8.8.0+19757+8ca87034.ppc64le.rpm  
nodejs-debuginfo-18.17.1-1.module+el8.8.0+19757+8ca87034.ppc64le.rpm  
nodejs-debugsource-18.17.1-1.module+el8.8.0+19757+8ca87034.ppc64le.rpm  
nodejs-devel-18.17.1-1.module+el8.8.0+19757+8ca87034.ppc64le.rpm  
nodejs-full-i18n-18.17.1-1.module+el8.8.0+19757+8ca87034.ppc64le.rpm  
npm-9.6.7-1.18.17.1.1.module+el8.8.0+19757+8ca87034.ppc64le.rpm

s390x:  
nodejs-18.17.1-1.module+el8.8.0+19757+8ca87034.s390x.rpm  
nodejs-debuginfo-18.17.1-1.module+el8.8.0+19757+8ca87034.s390x.rpm  
nodejs-debugsource-18.17.1-1.module+el8.8.0+19757+8ca87034.s390x.rpm  
nodejs-devel-18.17.1-1.module+el8.8.0+19757+8ca87034.s390x.rpm  
nodejs-full-i18n-18.17.1-1.module+el8.8.0+19757+8ca87034.s390x.rpm  
npm-9.6.7-1.18.17.1.1.module+el8.8.0+19757+8ca87034.s390x.rpm

x86_64:  
nodejs-18.17.1-1.module+el8.8.0+19757+8ca87034.x86_64.rpm  
nodejs-debuginfo-18.17.1-1.module+el8.8.0+19757+8ca87034.x86_64.rpm  
nodejs-debugsource-18.17.1-1.module+el8.8.0+19757+8ca87034.x86_64.rpm  
nodejs-devel-18.17.1-1.module+el8.8.0+19757+8ca87034.x86_64.rpm  
nodejs-full-i18n-18.17.1-1.module+el8.8.0+19757+8ca87034.x86_64.rpm  
npm-9.6.7-1.18.17.1.1.module+el8.8.0+19757+8ca87034.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-25883  
https://access.redhat.com/security/cve/CVE-2023-32002  
https://access.redhat.com/security/cve/CVE-2023-32006  
https://access.redhat.com/security/cve/CVE-2023-32559  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlEvhIAAoJENzjgjWX9erEwokP+wUSQUFjqSMnuYRFCakZSptX  
Aujcv/u8hIFe0P1L1hTy28LpSZMhNGLNLf22YJd/Z9+78S/12GAOIk3CBmuObE1H  
PpAO55SoVmk/LkSmserL1cwrgJh3Pa0+JpKPf06vWKvstnF3QgDiAqV1dE+LcfCB  
f5yhqbjEbQVRewMvcEq+H684KbeA1xBIraZGqZ7g/PVwz5QS/zDcBemvLGVnMG44  
s6v11jHQRi2WYBlgSYaexXAJIgZbGsdSsEIGfAdtEFi3UWo3CzLSszIboZNmJAVi  
xjUZD/YSckm/NhGJr8q8jyPs5i5TQ2G8o13iNdUXgI/fbs8qaFph+qrIw2p1rt7q  
8vws7hNSWrAceqioGWhI427kahTMkVqArfp67tyiuaAP1c0N8DWJb+F0aN9Te6Pv  
3HTqkHOu9uvMlVtCsCLOwBBrJmUEeAz7ry7o7W6+xPlzxFqU5S/jWK6rw3hrvE74  
B/in+FQ0NbVhJtGNmR43T+P0aFY5xu2lBy7OdS+0uTNwliw7WkXvT6suAMJcbJOJ  
bQZXvCssk8A83S2/sRh5Sw4fl8B25/TFjMN2AP61ic7aYXz6Sd0LCb4Kt+UL4TX9  
aYC1qMNXr3S8AGX9JRL9X62bg6M5rHvi1ti+Ya5SFvMhy9hR4CfgP6lSRjM+1MFn  
2ISllpwsZOaLug29+IBd  
=USZD  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5362-01

Red Hat Security Advisory 2023-5361-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling, bypass, and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: nodejs:16 security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:5361-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5361  
Issue date:        2023-09-26  
CVE Names:         CVE-2022-25883 CVE-2023-30581 CVE-2023-30588  
                   CVE-2023-30589 CVE-2023-30590 CVE-2023-32002  
                   CVE-2023-32006 CVE-2023-32559  
====================================================================  
1. Summary:

An update for the nodejs:16 module is now available for Red Hat Enterprise  
Linux 8.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.6) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The following packages have been upgraded to a later upstream version:  
nodejs (16). (BZ#2223679, BZ#2223681, BZ#2223683, BZ#2223685, BZ#2223687,  
BZ#2233892)

Security Fix(es):

* nodejs: Permissions policies can be bypassed via Module._load  
(CVE-2023-32002)

* nodejs-semver: Regular expression denial of service (CVE-2022-25883)

* nodejs: mainModule.proto bypass experimental policy mechanism  
(CVE-2023-30581)

* nodejs: process interuption due to invalid Public Key information in x509  
certificates (CVE-2023-30588)

* nodejs: HTTP Request Smuggling via Empty headers separated by CR  
(CVE-2023-30589)

* nodejs: DiffieHellman do not generate keys after setting a private key  
(CVE-2023-30590)

* nodejs: Permissions policies can impersonate other modules in using  
module.constructor.createRequire() (CVE-2023-32006)

* nodejs: Permissions policies can be bypassed via process.binding  
(CVE-2023-32559)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* nodejs:16/nodejs: nodejs.prov doesn't generate the bundled dependency for  
modules starting @ like @colors/colors (BZ#2237395)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2216475 - CVE-2022-25883 nodejs-semver: Regular expression denial of service  
2219824 - CVE-2023-30581 nodejs: mainModule.proto bypass experimental policy mechanism  
2219838 - CVE-2023-30588 nodejs: process interuption due to invalid Public Key information in x509 certificates  
2219841 - CVE-2023-30589 nodejs: HTTP Request Smuggling via Empty headers separated by CR  
2219842 - CVE-2023-30590 nodejs: DiffieHellman do not generate keys after setting a private key  
2223679 - nodejs:16/nodejs: Rebase to the latest Nodejs 16 release [rhel-8] [rhel-8.6.0.z]  
2230948 - CVE-2023-32002 nodejs: Permissions policies can be bypassed via Module._load  
2230955 - CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()  
2230956 - CVE-2023-32559 nodejs: Permissions policies can be bypassed via process.binding  
2233892 - nodejs:16/nodejs: Rebase to the latest Nodejs 16 release [rhel-8] [rhel-8.6.0.z]  
2237395 - nodejs:16/nodejs: nodejs.prov doesn't generate the bundled dependency for modules starting @ like @colors/colors [rhel-8.6.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.6):

Source:  
nodejs-16.20.2-2.module+el8.6.0+19897+9590a839.src.rpm  
nodejs-nodemon-3.0.1-1.module+el8.6.0+19765+366b9144.src.rpm  
nodejs-packaging-26-1.module+el8.6.0+19856+c0c87259.src.rpm

aarch64:  
nodejs-16.20.2-2.module+el8.6.0+19897+9590a839.aarch64.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.6.0+19897+9590a839.aarch64.rpm  
nodejs-debugsource-16.20.2-2.module+el8.6.0+19897+9590a839.aarch64.rpm  
nodejs-devel-16.20.2-2.module+el8.6.0+19897+9590a839.aarch64.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.6.0+19897+9590a839.aarch64.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.6.0+19897+9590a839.aarch64.rpm

noarch:  
nodejs-docs-16.20.2-2.module+el8.6.0+19897+9590a839.noarch.rpm  
nodejs-nodemon-3.0.1-1.module+el8.6.0+19765+366b9144.noarch.rpm  
nodejs-packaging-26-1.module+el8.6.0+19856+c0c87259.noarch.rpm

ppc64le:  
nodejs-16.20.2-2.module+el8.6.0+19897+9590a839.ppc64le.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.6.0+19897+9590a839.ppc64le.rpm  
nodejs-debugsource-16.20.2-2.module+el8.6.0+19897+9590a839.ppc64le.rpm  
nodejs-devel-16.20.2-2.module+el8.6.0+19897+9590a839.ppc64le.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.6.0+19897+9590a839.ppc64le.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.6.0+19897+9590a839.ppc64le.rpm

s390x:  
nodejs-16.20.2-2.module+el8.6.0+19897+9590a839.s390x.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.6.0+19897+9590a839.s390x.rpm  
nodejs-debugsource-16.20.2-2.module+el8.6.0+19897+9590a839.s390x.rpm  
nodejs-devel-16.20.2-2.module+el8.6.0+19897+9590a839.s390x.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.6.0+19897+9590a839.s390x.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.6.0+19897+9590a839.s390x.rpm

x86_64:  
nodejs-16.20.2-2.module+el8.6.0+19897+9590a839.x86_64.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.6.0+19897+9590a839.x86_64.rpm  
nodejs-debugsource-16.20.2-2.module+el8.6.0+19897+9590a839.x86_64.rpm  
nodejs-devel-16.20.2-2.module+el8.6.0+19897+9590a839.x86_64.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.6.0+19897+9590a839.x86_64.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.6.0+19897+9590a839.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-25883  
https://access.redhat.com/security/cve/CVE-2023-30581  
https://access.redhat.com/security/cve/CVE-2023-30588  
https://access.redhat.com/security/cve/CVE-2023-30589  
https://access.redhat.com/security/cve/CVE-2023-30590  
https://access.redhat.com/security/cve/CVE-2023-32002  
https://access.redhat.com/security/cve/CVE-2023-32006  
https://access.redhat.com/security/cve/CVE-2023-32559  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlEvhMAAoJENzjgjWX9erEi5IP/jdC6ZeTw1731qcDvIwRJBMw  
vW4r9w8sp33RdM+kdyeXnvCf8saD6ipc9hmE6tkBGXbx9o9hUq6dbkYkAHSUQN+s  
3oI8UJU6FaLYrfB7LHYgNWJYlvdLJ7ZmSq8EG/LkCezsvJOCl7BczHtRTR9NQx9l  
fZGV3jeGnH/A9rts/zVaEnnf4pIqXTOeEm67GtHkscrS22cMZDQ0qsJ7+3068Oxe  
NuuqW2mXnBGy3fomdxUqoWVqOtqbxRK+RoXQc3s4acyM0nSZwjWF+ZITR1Fd9BKh  
VpTWV1jNWZ9ZNsUhIiEOEMyS2FcLt+3VFHsQzs2PtiD6R/AiY3BihqDsjljGt1IX  
HE5627aG2uu5hq3XYxDgsbQecBAA7QbwrN+eGF2YTsPC6GFGtP4A+SGwQvE9LQR8  
V1aGfX7xiE8JcaMsSuqSkuhPVb0XyCfidcv9EuN8iqnfWL0cwUZeuo/oiPxpB1Tl  
CXpVoZuUeUcRRUYMW1Gw0wtL0UBPE4V645ysAMuAFyIgO2h8IFxDnF2j3tdQq7cE  
lNvG7ZFmLNtzi5cg7iX0t7dm0MA85r98QOh+7M41g2GwgAkeCqmOaznTgbrUmUPD  
bnGxJ3wSih1VJ/MlAfQLhFb39kfJj6cj33d7XBCM8aF0EnhQ5JKISSO2bTQYHbQY  
BhztaX0whwtE9+G9HxIg  
=1KUc  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5361-01

Red Hat Security Advisory 2023-5360-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include bypass and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: nodejs:16 security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:5360-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5360  
Issue date:        2023-09-26  
CVE Names:         CVE-2022-25883 CVE-2023-32002 CVE-2023-32006  
                   CVE-2023-32559  
====================================================================  
1. Summary:

An update for the nodejs:16 module is now available for Red Hat Enterprise  
Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The following packages have been upgraded to a later upstream version:  
nodejs (16). (BZ#2233891)

Security Fix(es):

* nodejs: Permissions policies can be bypassed via Module._load  
(CVE-2023-32002)

* nodejs-semver: Regular expression denial of service (CVE-2022-25883)

* nodejs: Permissions policies can impersonate other modules in using  
module.constructor.createRequire() (CVE-2023-32006)

* nodejs: Permissions policies can be bypassed via process.binding  
(CVE-2023-32559)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* nodejs:16/nodejs: nodejs.prov doesn't generate the bundled dependency for  
modules starting @ like @colors/colors (BZ#2237394)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2216475 - CVE-2022-25883 nodejs-semver: Regular expression denial of service  
2230948 - CVE-2023-32002 nodejs: Permissions policies can be bypassed via Module._load  
2230955 - CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()  
2230956 - CVE-2023-32559 nodejs: Permissions policies can be bypassed via process.binding  
2233891 - nodejs:16/nodejs: Rebase to the latest Nodejs 16 release [rhel-8] [rhel-8.8.0.z]  
2237394 - nodejs:16/nodejs: nodejs.prov doesn't generate the bundled dependency for modules starting @ like @colors/colors [rhel-8.8.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
nodejs-16.20.2-2.module+el8.8.0+19898+ab99ba34.src.rpm  
nodejs-nodemon-3.0.1-1.module+el8.8.0+19764+7eed1ca3.src.rpm  
nodejs-packaging-26-1.module+el8.8.0+19857+6d2a104d.src.rpm

aarch64:  
nodejs-16.20.2-2.module+el8.8.0+19898+ab99ba34.aarch64.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.8.0+19898+ab99ba34.aarch64.rpm  
nodejs-debugsource-16.20.2-2.module+el8.8.0+19898+ab99ba34.aarch64.rpm  
nodejs-devel-16.20.2-2.module+el8.8.0+19898+ab99ba34.aarch64.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.8.0+19898+ab99ba34.aarch64.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.8.0+19898+ab99ba34.aarch64.rpm

noarch:  
nodejs-docs-16.20.2-2.module+el8.8.0+19898+ab99ba34.noarch.rpm  
nodejs-nodemon-3.0.1-1.module+el8.8.0+19764+7eed1ca3.noarch.rpm  
nodejs-packaging-26-1.module+el8.8.0+19857+6d2a104d.noarch.rpm

ppc64le:  
nodejs-16.20.2-2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm  
nodejs-debugsource-16.20.2-2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm  
nodejs-devel-16.20.2-2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.8.0+19898+ab99ba34.ppc64le.rpm

s390x:  
nodejs-16.20.2-2.module+el8.8.0+19898+ab99ba34.s390x.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.8.0+19898+ab99ba34.s390x.rpm  
nodejs-debugsource-16.20.2-2.module+el8.8.0+19898+ab99ba34.s390x.rpm  
nodejs-devel-16.20.2-2.module+el8.8.0+19898+ab99ba34.s390x.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.8.0+19898+ab99ba34.s390x.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.8.0+19898+ab99ba34.s390x.rpm

x86_64:  
nodejs-16.20.2-2.module+el8.8.0+19898+ab99ba34.x86_64.rpm  
nodejs-debuginfo-16.20.2-2.module+el8.8.0+19898+ab99ba34.x86_64.rpm  
nodejs-debugsource-16.20.2-2.module+el8.8.0+19898+ab99ba34.x86_64.rpm  
nodejs-devel-16.20.2-2.module+el8.8.0+19898+ab99ba34.x86_64.rpm  
nodejs-full-i18n-16.20.2-2.module+el8.8.0+19898+ab99ba34.x86_64.rpm  
npm-8.19.4-1.16.20.2.2.module+el8.8.0+19898+ab99ba34.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-25883  
https://access.redhat.com/security/cve/CVE-2023-32002  
https://access.redhat.com/security/cve/CVE-2023-32006  
https://access.redhat.com/security/cve/CVE-2023-32559  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlEvhOAAoJENzjgjWX9erEP0AQAJgFJ9+h63XAL1MxDUvmQ6CV  
9vz7/wNU8Z3b/3N4UIa7M5bopk9CoaY1kmgINrHAO9mcmX/XpIgjzjcY3v5xEpge  
u3Ggwwa13OmxPqNfQfOH4mqdUEf11yKfAzLPlTItIA0PXd2cIhmdikze0pvvcQuA  
KW0BkH4vODrJT/wYPaQhmyasvyBbs4TlTfvBpb9adwQwUyy8vWfaIyBS+AW8T4u1  
zED7deM00Sq5ldMMVGy8cgCyO+jKG65ctNtowoer1poeYWPrxC7Mwxbw9guZ6KWN  
xMrf7OJRCxuAJJwraDA55us4tFwoh5McQK1Q774cLl5ZRSd88jYRz3FJJcEMgQxr  
Jl5WQSLqPIuInmYW5TVCbQ5ckkB/WW719yJ+tF2YfwrY9XdqH+B+QuNTlMrDnuDn  
bn3YLmJDFDDxifCxKMcZO5uZ8/YpgWJ7Gx4DuOA7h9rzltLCaQy7r9+zOsW94tIO  
rWIrZ/YFP9MYFI4qBnET7OKspcEho5bPDastOS6Tg0ew9RvxE6mcZ2FaafFUNc/k  
LdpBsD/FcVY3Js/JN9wSQ6Y9o5P78kvVNoFg65409sIJZPH+LNC6t/tV7VFDSKTi  
kTaEl584sEClW6T4hC/TYhJyEkUhZspVhnSwkOmlEVYodjWuPDuj7pN/akYQrcVB  
X0FgvieX2DR7WApPA5t7  
=OyxK  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5360-01

Red Hat Security Advisory 2023-5363-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include bypass and denial of service vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: nodejs:18 security, bug fix, and enhancement update  
Advisory ID:       RHSA-2023:5363-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:5363  
Issue date:        2023-09-26  
CVE Names:         CVE-2022-25883 CVE-2023-32002 CVE-2023-32006  
                   CVE-2023-32559  
====================================================================  
1. Summary:

An update for the nodejs:18 module is now available for Red Hat Enterprise  
Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

Node.js is a software development platform for building fast and scalable  
network applications in the JavaScript programming language.

The following packages have been upgraded to a later upstream version:  
nodejs (18). (BZ#2223313, BZ#2234404)

Security Fix(es):

* nodejs: Permissions policies can be bypassed via Module._load  
(CVE-2023-32002)

* nodejs-semver: Regular expression denial of service (CVE-2022-25883)

* nodejs: Permissions policies can impersonate other modules in using  
module.constructor.createRequire() (CVE-2023-32006)

* nodejs: Permissions policies can be bypassed via process.binding  
(CVE-2023-32559)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2216475 - CVE-2022-25883 nodejs-semver: Regular expression denial of service  
2223313 - nodejs:18/nodejs: Rebase to the latest Nodejs 18 release [rhel-9] [rhel-9.2.0.z]  
2230948 - CVE-2023-32002 nodejs: Permissions policies can be bypassed via Module._load  
2230955 - CVE-2023-32006 nodejs: Permissions policies can impersonate other modules in using module.constructor.createRequire()  
2230956 - CVE-2023-32559 nodejs: Permissions policies can be bypassed via process.binding  
2234404 - nodejs:18/nodejs: Rebase to the latest Nodejs 18 release [rhel-9] [rhel-9.2.0.z]

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
nodejs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.src.rpm  
nodejs-nodemon-3.0.1-1.module+el9.2.0.z+19753+58118bc0.src.rpm  
nodejs-packaging-2021.06-4.module+el9.1.0+15718+e52ec601.src.rpm

aarch64:  
nodejs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm  
nodejs-debuginfo-18.17.1-1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm  
nodejs-debugsource-18.17.1-1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm  
nodejs-devel-18.17.1-1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm  
nodejs-full-i18n-18.17.1-1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm  
npm-9.6.7-1.18.17.1.1.module+el9.2.0.z+19753+58118bc0.aarch64.rpm

noarch:  
nodejs-docs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.noarch.rpm  
nodejs-nodemon-3.0.1-1.module+el9.2.0.z+19753+58118bc0.noarch.rpm  
nodejs-packaging-2021.06-4.module+el9.1.0+15718+e52ec601.noarch.rpm  
nodejs-packaging-bundler-2021.06-4.module+el9.1.0+15718+e52ec601.noarch.rpm

ppc64le:  
nodejs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm  
nodejs-debuginfo-18.17.1-1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm  
nodejs-debugsource-18.17.1-1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm  
nodejs-devel-18.17.1-1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm  
nodejs-full-i18n-18.17.1-1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm  
npm-9.6.7-1.18.17.1.1.module+el9.2.0.z+19753+58118bc0.ppc64le.rpm

s390x:  
nodejs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.s390x.rpm  
nodejs-debuginfo-18.17.1-1.module+el9.2.0.z+19753+58118bc0.s390x.rpm  
nodejs-debugsource-18.17.1-1.module+el9.2.0.z+19753+58118bc0.s390x.rpm  
nodejs-devel-18.17.1-1.module+el9.2.0.z+19753+58118bc0.s390x.rpm  
nodejs-full-i18n-18.17.1-1.module+el9.2.0.z+19753+58118bc0.s390x.rpm  
npm-9.6.7-1.18.17.1.1.module+el9.2.0.z+19753+58118bc0.s390x.rpm

x86_64:  
nodejs-18.17.1-1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm  
nodejs-debuginfo-18.17.1-1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm  
nodejs-debugsource-18.17.1-1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm  
nodejs-devel-18.17.1-1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm  
nodejs-full-i18n-18.17.1-1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm  
npm-9.6.7-1.18.17.1.1.module+el9.2.0.z+19753+58118bc0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-25883  
https://access.redhat.com/security/cve/CVE-2023-32002  
https://access.redhat.com/security/cve/CVE-2023-32006  
https://access.redhat.com/security/cve/CVE-2023-32559  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJlEvhJAAoJENzjgjWX9erEo5YQAJrAJckYpC4Ba1rhDGGQ46/P  
3lbT2QoOiy7SGCGgplFmyH5PTYmS3WLfxFbvjLniRHMODBxBHG23nCDdBKNQGK6x  
tS+jPaDt9fX3Gl2Q/oIccTk+h8zkUQBwYv23fRh/bpagEtrcTWoMkRfeVWT52gs0  
gjfu2Ez+i+06OufKgAvYYoSKpGcq9QDQ1UGGqR14AuID2wlmJ5bJ0TtfhWnVHoOq  
cHHGhLCtzasmk+k8Gi4zYfp3dAyUKA7253rxyH73dr6BQr7sgcO0SNW31Ur3Gjwp  
dGLsA4ydgu7NnoRl5R6zjlmPKkgUawZ4aV9LvAePa5hu86rbcHwt/uAwtu3OgHs+  
6Hn7zUEbXCF1BXtAVUkmmEWTEiMZ9+2B7JvzbkxambM0lr6RMctJ+irh1429k2wr  
RlXmFSN2jZUP7wZGSlG7+U6vXI0JW64FlE0oWmKsaxvAtaPTbDU8nA+VejOhplDe  
Nx1jeGb6cJLplG/d3nsGDGrYSrkG1IXzBVKBvfW4qBdicOHNO6Xy32CVH1PmD6V4  
VX4C5+PKl0OyzIYxXSlIGbn02cZg1J3tW0cbdKOK3lsRD4cbQVNl2234M+aFFRKk  
j8D+NiHmbMpXDSHHP6S1T3xpWeJ6Wl9TRCrcYPPbJNQXS8x4okGAnunOUqSqJNsf  
1+N9c9dYtcCCjI1NnmHA  
=1q20  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-5363-01

Sensitive information disclosure due to insufficient token field masking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

CVE-2023-44158

Sensitive information disclosure due to spell-jacking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

CVE-2023-44156

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build 35979.

Tag

#linux