Red Hat Insights, which is included with Red Hat subscriptions, analyzes platforms and applications to help enterprises manage hybrid cloud environments. Insights uses predictive analytics and deep domain expertise to reduce complex operational tasks from hours to minutes, including identifying security and performance risks, tracking licenses and managing costs.

**Red Hat Insights**, which is included with Red Hat subscriptions, analyzes platforms and applications to help enterprises manage hybrid cloud environments. Insights uses predictive analytics and deep domain expertise to reduce complex operational tasks from hours to minutes, including identifying security and performance risks, tracking licenses and managing costs.

**Introducing visibility of CVE exposures via Insights for OpenShift**

Vulnerability capabilities for Red Hat Insights for Red Hat OpenShift are now available and complement Red Hat’s existing cluster security portfolio while giving OpenShift users more value for their Red Hat subscription.

The Vulnerability service for OpenShift is a monitoring and vulnerability assessment tool that provides data on the presence of Common Vulnerabilities and Exposures (CVEs) for **Red Hat OpenShift** components. This information is collected at the build time from the data within **Red Hat’s CVE Database**. This service provides the following analysis in its initial release:

*   The list of OpenShift clusters that are affected by CVEs, with detailed views to enable triaging and prioritization of critical issues.
    
*   The ability to trigger off of specific CVEs and determine which clusters are affected so you can focus on the most critical aspects of remediating vulnerabilities present in your environment.
    

Please note this service provides analysis for Red Hat OpenShift Container Platform 4.8+ and above. The analysis is provided for the infrastructure and images within Red Hat's Ecosystem catalog, not the workloads that are running within OCP.  Red Hat Advanced Cluster Security for Kubernetes provides rich functionality to discover, monitor and mitigate threats and enforce security policies within your Kubernetes environment. Among its many features, the Red Hat Advanced Cluster Security for Kubernetes scanner discovers vulnerabilities and misconfigurations in container images and allows you to define policies for vulnerability management that can be applied at build, deploy and runtime.  

Filter by CVEs that pose the most significant risk for your infrastructure

The main page of the Vulnerability service is the CVEs page (Figure 1). This page lists all the known CVEs that affect your available clusters. Each CVE has its own respective Red Hat Severity or Common Vulnerability Scoring System (CVSS) base score. By default, the results display those for CVEs that affect one or more of your clusters. The filtering options allow you to filter and triage based on criticality and severity so you can focus on the vulnerabilities that are the most important to you and your organization. Clicking on any particular CVE shows you the details of the clusters that are affected.

_Figure 1: The CVEs page within the Insights Vulnerability for OpenShift service_

**Filter by clusters that are the most affected by CVEs**

The alternative and secondary view of the Vulnerability service is the Clusters page (Figure 2). This page lists all the clusters in your environment that are registered with Insights and shows the severity of CVEs that may be affecting them. The filtering options available allow users to filter and triage the clusters based on the criticality and severity of the CVEs so you can focus on the clusters that are most heavily affected.

_Figure 2: The Clusters page within the Insights Vulnerability for OpenShift service_

**Give it a try**

Like the other Insights services, this service is included in your OpenShift subscription.  To analyze your Red Hat Insights clusters for potential CVEs, follow our getting started guide or read through how the Insights operator works with the remote health monitoring feature of OpenShift. You can view the results by clicking here. 

You can send feedback about the new Insights Vulnerability service for OpenShift by using the purple feedback link  inside of Insights—you can see it in the above screenshot on the right hand side of the page.

Red Hat OpenShift security portfolio grows with new Red Hat Insights Vulnerability service

Red Hat Security Advisory 2022-7023-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: thunderbird security update  
Advisory ID:       RHSA-2022:7023-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7023  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.3.0.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
thunderbird-102.3.0-4.el8_6.src.rpm

aarch64:  
thunderbird-102.3.0-4.el8_6.aarch64.rpm  
thunderbird-debuginfo-102.3.0-4.el8_6.aarch64.rpm  
thunderbird-debugsource-102.3.0-4.el8_6.aarch64.rpm

ppc64le:  
thunderbird-102.3.0-4.el8_6.ppc64le.rpm  
thunderbird-debuginfo-102.3.0-4.el8_6.ppc64le.rpm  
thunderbird-debugsource-102.3.0-4.el8_6.ppc64le.rpm

s390x:  
thunderbird-102.3.0-4.el8_6.s390x.rpm  
thunderbird-debuginfo-102.3.0-4.el8_6.s390x.rpm  
thunderbird-debugsource-102.3.0-4.el8_6.s390x.rpm

x86_64:  
thunderbird-102.3.0-4.el8_6.x86_64.rpm  
thunderbird-debuginfo-102.3.0-4.el8_6.x86_64.rpm  
thunderbird-debugsource-102.3.0-4.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TL9zjgjWX9erEAQjHJRAAl5/xCh34VSE88oaLhkOh03fY6bsnze2Q  
LZ5b/Ry/Ogy5Zyw3dGw43c3ZfvOWBwpxZ/L1Blzp6ST1i+sMCQ1ZxC9SslNurz30  
37hE2fKr9JuZLTUzbEfD+6aXzGLe+1oF6wojrV6kwwOD0fkV9McphcFGyhd4vNV6  
ZAUQN/CBB6ZHHNc7xdFBmSinixyrWg+VC5tspQ+e0mxUIhDsByOSI+Qnty4BzSA9  
dEGpFkllK2i6O9m49XGsTMTg/wE20ogabj9reXI62Z3bl5PjHI6N1E5PGuyLzFOk  
LGynGbtyi4sXIMkNpwpL9IpZS5WbGoczscap1MIUTEyo+d4cYbUW0fCypTcBW5qn  
8THiD/EmLz11gH+LImHjUfetFIR7Ch7uHAgdRInCfNGcviHDpDL3M4p7emjVZGVn  
5ATUA8aUPzxIX3z1KrHOjYiZK2PFQTJTviIEDm5NqegggW6ha3CPGaRVx/8WzeQf  
+mf1HmTpxvAAeG35u570296j3xqWzF/syH0MJaciexHXYXAsAjQ2p7Anh8H4IGB0  
k1k7vbYz/GvYiia6N3rd29tZ8OWg+6fQYvQaY35S3GTIvnPWr9zAdfl3z00JBao3  
G1b1l96uPC1A+AOIlYZcVpqQfQZBxyeND3lqk+q3e7uCt8OAJXeUCS3gDa4VzT0b  
7j8ArylJ4tA=qx6b  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7023-01

Red Hat Security Advisory 2022-7019-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: firefox security update  
Advisory ID:       RHSA-2022:7019-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7019  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for firefox is now available for Red Hat Enterprise Linux 8.1  
Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - ppc64le, x86_64

3. Description:

Mozilla Firefox is an open-source web browser, designed for standards  
compliance, performance, and portability.

This update upgrades Firefox to version 102.3.0 ESR.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, Firefox must be restarted for the changes to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
firefox-102.3.0-7.el8_1.src.rpm

ppc64le:  
firefox-102.3.0-7.el8_1.ppc64le.rpm  
firefox-debuginfo-102.3.0-7.el8_1.ppc64le.rpm  
firefox-debugsource-102.3.0-7.el8_1.ppc64le.rpm

x86_64:  
firefox-102.3.0-7.el8_1.x86_64.rpm  
firefox-debuginfo-102.3.0-7.el8_1.x86_64.rpm  
firefox-debugsource-102.3.0-7.el8_1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TA9zjgjWX9erEAQjD8A//aKMsXSiE1aPdlAJpSgSHlZKDmwyWja9m  
s1WQyAqdj1B6Nftj7tAGzXpdMSzirRDim/OsWdWdGD/PTn/2XA9m79+Jw1LFD7bb  
Jna79P/QOBJRHaeAU5O6pstH+Z7+FQ+w+0cJX/auN6TO1zhNsz0cSAtQBALfBCtj  
Pnx1D5igDXIhA3KPjL2G6U1EQ48HfeW2k50XULsSDlrYLX/39YvKg+rNehh1lo7d  
Q1zwT3Z1XHlv2Rbs6blez5EuJEsts2w4rsiMU3pk7KnD/TR/LawPl3sGWgUHBVYr  
fKQwcB+WJWoZEzEh09MgJsuH50wKfIauNjI/1jKgRMFUcM/4EJ8EP3S3bU3NNPOc  
D1aPvod1xiWbbS8ktxUQ3cVQmOoBB+pQAkvp8qontcOOgte8BjwaXauohXvesd5t  
iwZS3OBIoWH+PE9u2SqevU92LlRK+MY5aQMYzuSf9IKi7fK1QymJvg4MQ4y96DFh  
47p9WkPaigExDLk+iwcA+KFjSDEwL7hlDwytT49h/1xy5hOSMo2hbPzmNrhpEiOD  
a0QEYVLGDR2KWp5A9OZCCIL5zW1XQE03TITCX4ZXcugvRnZf8ImtA1nZK+I9hwH0  
9w7Hphljkla8l2mowsj+sNth2p5R6NfPLvS1uWUahYQZIHLkIkgX5YP51lo/p+D6  
5N1k4Rw97H8=amPq  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7019-01

Red Hat Security Advisory 2022-7020-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: firefox security update  
Advisory ID:       RHSA-2022:7020-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7020  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for firefox is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Firefox is an open-source web browser, designed for standards  
compliance, performance, and portability.

This update upgrades Firefox to version 102.3.0 ESR.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, Firefox must be restarted for the changes to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
firefox-102.3.0-7.el9_0.src.rpm

aarch64:  
firefox-102.3.0-7.el9_0.aarch64.rpm  
firefox-debuginfo-102.3.0-7.el9_0.aarch64.rpm  
firefox-debugsource-102.3.0-7.el9_0.aarch64.rpm

ppc64le:  
firefox-102.3.0-7.el9_0.ppc64le.rpm  
firefox-debuginfo-102.3.0-7.el9_0.ppc64le.rpm  
firefox-debugsource-102.3.0-7.el9_0.ppc64le.rpm

s390x:  
firefox-102.3.0-7.el9_0.s390x.rpm  
firefox-debuginfo-102.3.0-7.el9_0.s390x.rpm  
firefox-debugsource-102.3.0-7.el9_0.s390x.rpm

x86_64:  
firefox-102.3.0-7.el9_0.x86_64.rpm  
firefox-debuginfo-102.3.0-7.el9_0.x86_64.rpm  
firefox-debugsource-102.3.0-7.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TOtzjgjWX9erEAQhbrQ//eGfpfVEIx6Srj3T7RZqukl589ujYYn6v  
mBvHuTG8Id6QrbJv5Rz+eE4guLQhrWmYPD2T0+6W7hoxMqn2rcODlyxhPH4ch3KN  
tmMkctfMps2l4uyrDwPl+r+120pTBNt0c/lQXgQMj7TFDjjttN/70YNIlUPw5iqN  
i0crNIvxb9AhotwYBS7dasUsCayfeLdZTR+7Ss8IMApBjzDBKFKz6c2Blb2GlSob  
CRdDCYZE+e6SHZ4iAFyzP4VKV2MB+ZPCzNxMXziNTcOBBx60yeVegjzv5hOIyEEi  
JhEGrJhCqaisBZAxgVKxRHugYcunWoemiVrSA9Wai6csGp0PiOE1HnFje1mCx5r1  
AuVmi07pwQf76cyh5Smu4IknlPosEyVtUlD4cxmr+vo0ScBqqqIPpuxa7QEG/cKV  
qCrQy0FgI8WvJ3X1deElT1XKFw9t2Hlr7K1QnZ+o9tBO8Ldc8wEGjDlCD9FWuARC  
09K4bvy1ZgLbIpXDr3v2oWLo4dzFmziqp/2Gvtnf+2FW/oKM41YBFLmICtFeOmoe  
uR9Ov0hmGz3GbXN8sXZgxFZ7tDYP/qhL7ho+QBY0JgYHkVG7ehlfeC4D+fWgOwPw  
o1zblZTxUUjRoWkCtLZoDj9I8XsRnQFmuM6EE4sCLgyT/qa+u8NkrkgEFmmzvfqT  
IZQb2vgCZ6g=ReFl  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7020-01

Red Hat Security Advisory 2022-7024-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: firefox security update  
Advisory ID:       RHSA-2022:7024-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7024  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for firefox is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Firefox is an open-source web browser, designed for standards  
compliance, performance, and portability.

This update upgrades Firefox to version 102.3.0 ESR.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, Firefox must be restarted for the changes to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
firefox-102.3.0-7.el8_6.src.rpm

aarch64:  
firefox-102.3.0-7.el8_6.aarch64.rpm  
firefox-debuginfo-102.3.0-7.el8_6.aarch64.rpm  
firefox-debugsource-102.3.0-7.el8_6.aarch64.rpm

ppc64le:  
firefox-102.3.0-7.el8_6.ppc64le.rpm  
firefox-debuginfo-102.3.0-7.el8_6.ppc64le.rpm  
firefox-debugsource-102.3.0-7.el8_6.ppc64le.rpm

s390x:  
firefox-102.3.0-7.el8_6.s390x.rpm  
firefox-debuginfo-102.3.0-7.el8_6.s390x.rpm  
firefox-debugsource-102.3.0-7.el8_6.s390x.rpm

x86_64:  
firefox-102.3.0-7.el8_6.x86_64.rpm  
firefox-debuginfo-102.3.0-7.el8_6.x86_64.rpm  
firefox-debugsource-102.3.0-7.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08THNzjgjWX9erEAQjH4g//YbAuWjQ31CF4NzJgyAPnLHHz3hKlQjme  
xjHF1/GeKYVMF5/ItukGqggvv8aZVMKJhUsH9yaDjyFHVA8A0h8txI4oAO7nldSm  
KJxRvVCJ/82Qs0gKN5NDF23M8nGFK57kDBflhCAfVT0aUfDH4sEgdrumweI9gr/x  
eORvnVJ3HDzupxe9FJ6f+6lr/M5CwF1qrae1CdrfRy3KCn8kc/bf7sar63ih+6BR  
2W0ZLCtFcXy55yoUEzfHq3qP3QeACBtoYuDDh0+4CPJlar3LlGYiHd166sqo+tep  
7w08HrY146+gHzN5FYY5lBRcnNZVJqvHMfbVrA5CgYF9j9sRyoxqbqeffvKu4WCF  
U5cfEcOagy4l0FfJRmfKausMCA5DVtanSaz6ZaJbk6itIpcG7q5NCcC7XdqBQjUd  
FFzflh5S7Y/aKJvR/xmJwrbUTAhVYMdkhPYJYZN+u6tnE2EDsP11azP9rTBS+3Gw  
MzUiSOsq31rdbZunGtEz7itJwpxt0W+TNNC21qzFPS+QuGPHr3qDI6/ABmITaSzG  
Z+hPFv9dR+Wzfwmpi8mj40yeEvWsDPv19MoX/4ifutGcn3rB/y1637sU0TtSw7or  
K+BEq6fLalJRMumlqfHEFnSotg3DNq67j8t26atKxq/q+C4LhS5I8uLL6FfcVSyf  
ieoJ8AMyLKs=6TmU  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7024-01

Red Hat Security Advisory 2022-7026-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: thunderbird security update  
Advisory ID:       RHSA-2022:7026-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7026  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.3.0.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
thunderbird-102.3.0-4.el9_0.src.rpm

aarch64:  
thunderbird-102.3.0-4.el9_0.aarch64.rpm  
thunderbird-debuginfo-102.3.0-4.el9_0.aarch64.rpm  
thunderbird-debugsource-102.3.0-4.el9_0.aarch64.rpm

ppc64le:  
thunderbird-102.3.0-4.el9_0.ppc64le.rpm  
thunderbird-debuginfo-102.3.0-4.el9_0.ppc64le.rpm  
thunderbird-debugsource-102.3.0-4.el9_0.ppc64le.rpm

s390x:  
thunderbird-102.3.0-4.el9_0.s390x.rpm  
thunderbird-debuginfo-102.3.0-4.el9_0.s390x.rpm  
thunderbird-debugsource-102.3.0-4.el9_0.s390x.rpm

x86_64:  
thunderbird-102.3.0-4.el9_0.x86_64.rpm  
thunderbird-debuginfo-102.3.0-4.el9_0.x86_64.rpm  
thunderbird-debugsource-102.3.0-4.el9_0.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TEtzjgjWX9erEAQgTaBAAgky7cSvjw8GQDOP123F2vfNSHE+92Oqq  
NsNV9G4UEyclAzsvDCPnH5z3cA+O2mnJux84AVilPOBnGLCgmMRlMc3Am//aYY8Q  
cfPMWtTjrLsSTjDW0GFIgjY1YDMswFaM7dEwCYtWjnCqEU4cYuyKo7Ot+W5S1W51  
NgK8Ox2b0KuyUyGWky/3pFH7dJY/EU3iZ5qyAxOTlrGO/CiMYFFXeSjd5roNRTf5  
Gq5wzM29YsRgV9cWSIL2hwjByd5USAe7YC3CwTFaSyWuOFTo0kmDxg5wtxnri6Su  
0aW7gI8YoJd4ySZiN3JLcpSYufeIvH4qrBVdYjjI5mPKpXYHvO0K8OYG+6GzAPHe  
+OOPUD2newAmq1ABwat5/g3ItXYH6gY71zRzon9Sl9CBwswqo6JoJWnaBYUbhijq  
5R1gjJdrPIz7kQ6wId920mhIT/fJw6HtYFVbUv4IIoOGlN+w6gWFZxT1p6EW3HXX  
e6QnVKevy6fh+Aa290gt8XFiF2UkNmwFogcMmbTtTYZrYR0X8Y18c4cV5meFSKKZ  
8/iM2N9BgHNPsozoKL53SHKiOoaJvz7R4DuXG4RoXORILBQnclpU/XD52WMSqc/i  
35404EKT+KOzsb/1in47rTfkyYyl91ND0pi0hNzqB+IypTc8VloArFg3/8z8wdOZ  
AkfS94BmlO8=ZbcA  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7026-01

Red Hat Security Advisory 2022-7022-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: firefox security update  
Advisory ID:       RHSA-2022:7022-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7022  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for firefox is now available for Red Hat Enterprise Linux 8.2  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v. 8.2) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Firefox is an open-source web browser, designed for standards  
compliance, performance, and portability.

This update upgrades Firefox to version 102.3.0 ESR.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, Firefox must be restarted for the changes to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v. 8.2):

Source:  
firefox-102.3.0-7.el8_2.src.rpm

aarch64:  
firefox-102.3.0-7.el8_2.aarch64.rpm  
firefox-debuginfo-102.3.0-7.el8_2.aarch64.rpm  
firefox-debugsource-102.3.0-7.el8_2.aarch64.rpm

ppc64le:  
firefox-102.3.0-7.el8_2.ppc64le.rpm  
firefox-debuginfo-102.3.0-7.el8_2.ppc64le.rpm  
firefox-debugsource-102.3.0-7.el8_2.ppc64le.rpm

s390x:  
firefox-102.3.0-7.el8_2.s390x.rpm  
firefox-debuginfo-102.3.0-7.el8_2.s390x.rpm  
firefox-debugsource-102.3.0-7.el8_2.s390x.rpm

x86_64:  
firefox-102.3.0-7.el8_2.x86_64.rpm  
firefox-debuginfo-102.3.0-7.el8_2.x86_64.rpm  
firefox-debugsource-102.3.0-7.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TRNzjgjWX9erEAQj7txAAp3DovL2HGZWf0NbucowSfv4LZLbiU+9N  
zVMZRF5lqGD6y6t1TT2Aq6FpA1FWb9UI1AA4jyoOXNI8frpG79duf2/1S2YPcRQN  
rZP6iwaWnAslnaP3OYXMJrEOQhXrSTsSPmIUqJ4002WpoFVrKEnZga3D6K17olcw  
GfYIXcOWq3ZYFbr2893+dJ/QWej4fVi6MQAtUzKzA2ylTygC0Vo/LyOBjLJovUpm  
DMgDdHwWMNbOcjjAOEh7LkwqVkdcPwB7a0EcHyy8hQJD8uM//bgyQXYUi4r6dGt4  
lDt8DyuMYQ7ShF4aPTXadCgJzqBBYSST5ONUsrIOGVpcFuOem1LTLycC8LVNfWeb  
pyBZbeRj4WtLIYr2UxUYDUU7ZwQlOCX7SxrBtKo0u54dviJv9WrGXGtc13f04iLS  
/NqGaP3+5f0jg6as0LxPEAxyO9/UNXZjKheu+1HXJgpHQwG7anhERk37peeifq6L  
p4zX6nYpW8bEwolv5h2SXcfmZErye4pWq6uOZvrsAWO3iaY2I50F3a/IJA27tCMn  
+JS4++B49/2+TY7evm5ZT4Uj/7dVLxAABL6BpIgy/C+mPPHt/ZN3sLYWDAB76ifH  
0PsnGlxlhy0A4Wd3HBdIuZNyWrgQrRBkkGDx638phXB2luHPGfz4Dm9FRTPlBJhI  
qAbguAJZLvc=HmDu  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7022-01

Red Hat Security Advisory 2022-7021-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: thunderbird security update  
Advisory ID:       RHSA-2022:7021-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7021  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1  
Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream E4S (v. 8.1) - ppc64le, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.3.0.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream E4S (v. 8.1):

Source:  
thunderbird-102.3.0-4.el8_1.src.rpm

ppc64le:  
thunderbird-102.3.0-4.el8_1.ppc64le.rpm  
thunderbird-debuginfo-102.3.0-4.el8_1.ppc64le.rpm  
thunderbird-debugsource-102.3.0-4.el8_1.ppc64le.rpm

x86_64:  
thunderbird-102.3.0-4.el8_1.x86_64.rpm  
thunderbird-debuginfo-102.3.0-4.el8_1.x86_64.rpm  
thunderbird-debugsource-102.3.0-4.el8_1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08TJtzjgjWX9erEAQj7/A/+Lrr+mDxNZa7oeqnJohGiAyksRMnYfIbf  
JfomidQqBiaQXYVv/ciiruKMvc0rbDQ5HS5LkDhPNji+D9xVq/0G/1MNKQtdJY/I  
09lRuk8U+yhTYOpuXR3rCoPDg2h043ghnTto1ScCJx2o/jjleRPCdTUcL+UE5h1L  
wpwdSuVR7O4bAEFsX4f8LRko+xI0V0PzynyIx/09wLdCCNwPkf5eXf5OLNRUZ7UW  
LFQPDOfZ8YJKjA6Ld7skfdcFkhY1c/hNbLY71j2lJhi/8K0ezUL/QNCBymWrOoXl  
g2pV3NEAm2hTyz05A8i814maMTbi6PIA3oIcBRKPMz95CcyBOFjmV5OCr2udyyel  
IR1ct/2dFU4As/AmVcvCOidg3uUHi3xhCiWJbel2r+2ru9Ntxo4Um82rfxjN7EvK  
fSXcYFsnEKHalwouRSV3tM5u4Zl6DISUuV6ACnI+0cnA46za2WqOKbE4bJaTQPWT  
C7nROAnHo6KZFgCS+u1sA0qGSMLks1g84d2M4NNxp5oDJRT767pPXKEm3uWMrYmu  
P9/GGqfSJo36TnNBEtXg32z2sYf9Px1i5gwhv1Bzl0OAz2x6iwGIO8jr4ERWkmkg  
aB/mRUhyRXe+UnxcviTWhDmsRjGeiTaa5eRbStexvvd/9Vc3hk7yigIeE+pyypO+  
xJUBPUdUH/U=I6zr  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7021-01

Red Hat Security Advisory 2022-7025-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.3.0 ESR. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: firefox security update  
Advisory ID:       RHSA-2022:7025-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7025  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for firefox is now available for Red Hat Enterprise Linux 8.4  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Firefox is an open-source web browser, designed for standards  
compliance, performance, and portability.

This update upgrades Firefox to version 102.3.0 ESR.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the update, Firefox must be restarted for the changes to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v.8.4):

Source:  
firefox-102.3.0-7.el8_4.src.rpm

aarch64:  
firefox-102.3.0-7.el8_4.aarch64.rpm  
firefox-debuginfo-102.3.0-7.el8_4.aarch64.rpm  
firefox-debugsource-102.3.0-7.el8_4.aarch64.rpm

ppc64le:  
firefox-102.3.0-7.el8_4.ppc64le.rpm  
firefox-debuginfo-102.3.0-7.el8_4.ppc64le.rpm  
firefox-debugsource-102.3.0-7.el8_4.ppc64le.rpm

s390x:  
firefox-102.3.0-7.el8_4.s390x.rpm  
firefox-debuginfo-102.3.0-7.el8_4.s390x.rpm  
firefox-debugsource-102.3.0-7.el8_4.s390x.rpm

x86_64:  
firefox-102.3.0-7.el8_4.x86_64.rpm  
firefox-debuginfo-102.3.0-7.el8_4.x86_64.rpm  
firefox-debugsource-102.3.0-7.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY08S+dzjgjWX9erEAQipew//UlWP9hP/R6CrPFw3d4ezHCdcFh0OBHdR  
nclyeQGVo1iMbcB5Dpxh2HMLx9PeNv1HHIXTJa9dqB2lWS/3BSMV309m19r07k6D  
JoFJWkz+4DlYwtRG2ePGPfAwUVZrwUy6hV82QEeABThteb8/HYYGEa9pUb85ZhZD  
faSdkGrj4inqbUN1LRE3c4nKiK/eYLLngMQj9FwrvwrrIRvBYR5cy/tWPSWeyj/k  
lvFeBGvu3l3f6WXZoo81a0a16i+6IwZj7ACqzmsqyFSJleiQeSdeKVOlKETtzhe9  
dp1m6tObbrW+bao16TlgBQhjnC0tWDVjkuiGDUM3siFXJ7pCY2L6jXNJgvTp/2b4  
NiN398N+idmd6Rc9GNhY07Od+KzcutdNkSJInFfumMxco/pCE1c8VN3UvvSfh8dA  
KUXUL+MIiWjLF5N4jwgFyj9Y+XNwaGiAfUPpvy2RhA5v61s3w0mvO2oO1R/9zs1V  
XICgntd0clJCSvYSiDutyl/SI4boHnRHE+9skOg/Vk1Xx0+02usXgNmXNSxZ4h7m  
lSnmz1Tt5n4dd8jiG32cuoJ1LxeNS+Oq3mKhR2aiUXbUbFcRYCxsfTfdCV3N0lPO  
nsJuhpygIwTmGGseWOKbg+1Hv48lSxXz3UeB0FmQuK8FVWe4lAxT9IdO8jQHg2bQ  
dO8eslyomU0=KlPZ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7025-01

Red Hat Security Advisory 2022-6996-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Issues addressed include a use-after-free vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: thunderbird security update  
Advisory ID:       RHSA-2022:6996-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:6996  
Issue date:        2022-10-18  
CVE Names:         CVE-2022-40674  
====================================================================  
1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v. 8.2) - aarch64, ppc64le, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.3.0.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c  
(CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2130769 - CVE-2022-40674 expat: a use-after-free in the doContent function in xmlparse.c

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v. 8.2):

Source:  
thunderbird-102.3.0-4.el8_2.src.rpm

aarch64:  
thunderbird-102.3.0-4.el8_2.aarch64.rpm  
thunderbird-debuginfo-102.3.0-4.el8_2.aarch64.rpm  
thunderbird-debugsource-102.3.0-4.el8_2.aarch64.rpm

ppc64le:  
thunderbird-102.3.0-4.el8_2.ppc64le.rpm  
thunderbird-debuginfo-102.3.0-4.el8_2.ppc64le.rpm  
thunderbird-debugsource-102.3.0-4.el8_2.ppc64le.rpm

x86_64:  
thunderbird-102.3.0-4.el8_2.x86_64.rpm  
thunderbird-debuginfo-102.3.0-4.el8_2.x86_64.rpm  
thunderbird-debugsource-102.3.0-4.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-40674  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY0726NzjgjWX9erEAQgpfA//f48rKxKYKdrBQsmf8rUcMLus9CQZ4anB  
+LxQL31ga0vsmB8gaeQVrau6wuRDiQ8vgL4AfCWt2gZbrfmtTXDKThLctsP6xap8  
nLad5FmbzpCGoRVDMA0TvPlVvtugahptyrxvz5QlAVbzi9Q/8jy/0dzienG2gUq5  
pv8fq/uEbNp2XA8smq4CE9HvyKFUMaUSv7QazkxKUHpjmDVK3cw8CTShJNBrjQxC  
+XoL/2zy2wBqcu5JjKt5lu5mjZUSm7l51spuDUaCn6iw8dtM31wteUZz+HiNCPzP  
hfToni9LLHVRZd8mlAfl0/94W6g2YkChJ8WDdVb1Q67oEssluAHegbfsuHbZlacu  
v8n9sv78BpLpQj/WlizePI7cCSo0RXhGjE65LcxQg2e9V1xw56FgmwIZgGK562Ao  
UXNocuOfanwaK12lwgTKvBv6Q6z+ogVCfn58GUIYxffIEX79XXXDr9Q5BeWDjROg  
tEl7umDPdD/ZxF9F9ihyQn+zt0caK4IBDueFchnRNteCWU0exylYhyuXt35X7caK  
MZ8MZVdkcNlVJ8aqKPko7x5R9vgtaszS3FfWw5jhlpUO9iaMm+z1/9xTGgp9Rme/  
Kx3VjmhgGQAXve4aGguhtxe9n5IdcUsoxNI5CKZAHlBytX76XFZqo/FDbPNqCSfQ  
vtHSdLH7uKw=pNcp  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#red_hat