**CHICAGO****,** **March 9, 2023** **/PRNewswire/ --** March is an exciting time for diehard and casual college basketball fans alike, but anyone planning to have fun around the tournament should stay vigilant to protect their personal and financial information from cyberthreats. The tournament is an opportune time for cybercriminals to send out phishing scams, steal sensitive information, and scam you out of money. To help fans avoid becoming victims of cybercrime, Keeper Security is providing the following cybersecurity tips.

**#1 Be on the lookout for phishing scams.** Cybercriminals use phishing scams to steal your personal information. During the tournament, cybercriminals may send phishing emails or text messages with malicious links or attachments disguised as updates on games or brackets. To avoid becoming a victim of a phishing attack, do not open attachments or click on links from unknown sources, verify that it's a trusted source requesting the information and check all links to make sure they're not leading you to a malicious site. Scammers also use social engineering to trick people into sending them money using any information they can find about you. They may impersonate a friend or family member claiming to be in urgent need of money to buy tickets or place bets on games. Scammers may even impersonate the athletes themselves or their family members with stories about needing money to get to the game. 

**#2 Create strong, unique passwords for all of your accounts.** When creating accounts to follow the games, create a bracket or take part in the fun of the tournament any other way, it may be tempting to reuse passwords. Make sure you have different, high-strength passwords for all of your accounts. This way, if one account is breached, a cybercriminal does not gain access to all of them. Passwords should be at least 12 characters with a mix of uppercase and lowercase letters, a variety of special characters and a random assortment of numbers. Also, consider using a passphrase rather than a single word. Avoid using easily guessable information such as familiar names, birthdates and addresses. A password manager can generate and securely store strong passwords, which can be especially useful for accounts that are infrequently used. Consider implementing multi-factor authentication for your accounts as an additional layer of security. 

**#3 Be wary of free sports streams.** Cord cutters and fans trying to get around regional blackouts often turn to the internet in search of free streams to watch their favorite teams, but they may end up paying the price with their security. While there are legitimate websites and apps that will stream certain games for free, the websites that host illegal streams may also host ads for questionable content or products and malicious links that could install malware that will harm your system. 

**#4 Don't fall for fake ticket sales or fake brackets.** Fake tickets are abundant during any major sporting event, but if the deal seems too good to be true, it probably is. Only buy tickets from reputable sellers that offer a secure payment system and recourse if the tickets don't come through. The tournament is also a time when more fans are trying to win money on the games, and scammers are ready to take advantage. They may create fake bracket contests promising large prizes to the winners. Once they collect your entry fee or personal information, though, they disappear and the winners never receive their prizes. 

**#5 Be cautious when using public WiFi.** If you're going to watch the tournament at a venue offering WiFi, think twice before connecting. Public WiFi is a key battleground for cybercriminals. Thus, without proper protections, you may be vulnerable to both a cyberattack and eavesdropping. Open public WiFi should not be used to send any personal or financial information. The use of public computers should be avoided for the same reason. Use a trusted network with a strong WiFi password, a VPN when possible, and ensure your home router's software is up to date.

To avoid falling victim to sports-related scams, always be cautious of unsolicited messages or offers, double-check the authenticity of the sender or the website, and never provide personal information or payment without verifying the legitimacy of a transaction. By following these simple tips, fans will be far less likely to fall victim to cybercrime this March.

**About Keeper** 

Keeper Security is transforming how people secure their passwords and confidential information against growing online threats. Forgot your password? That'll never happen again with Keeper's easy-to-use password manager that saves you time, increases your security and streamlines your online experience. Built to the highest zero-trust and zero-knowledge standards, Keeper protects you and your family on every device. Keeper is trusted by millions of people globally with more than 230,000 5-star reviews in the app stores, and is recognized by publications including PCMag and U.S. News & World Report as the leader for password storage, secure sharing and encrypted messaging. Learn more at KeeperSecurity.com.

Keeper Security Issues Top 5 Cybersecurity Tips for 2023 College Basketball Tournament

Users should patch an unauthenticated remote code execution bug impacting FortiOS and FortiProxy administrative interfaces ASAP, Fortinet says.

Fortinet is warning users to patch a critical remote code execution (RCE) vulnerability in the FortiOS operating system, and in the FortiProxy secure Web gateway. 

An alert this week from FortiGuard Labs said a heap buffer underflow bug in the administrative interface could allow an unauthenticated, remote cyberattacker to execute code on a device running the platforms. The vulnerability could also allow a threat actor to perform a denial-of-service (DoS) attack on the GUI of devices running the vulnerable code, Fortinet added.

Fortinet has issued a security update for FortiOS and FortiProxy interfaces, and noted that no exploitation has been detected yet. 

"Fortinet is not aware of any instance where this vulnerability was exploited in the wild," the alert explained. "We continuously review and test the security of our products, and this vulnerability was internally discovered within that frame."

This is the latest bug to come to light in the popular security appliance vendor's gear. Just late last month, Fortinet urged FortiNAC users to update their systems against a flaw that allowed unauthenticated attackers to write arbitrary system files.

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

Subscribe

Critical RCE Bug Opens Fortinet's Secure Web Gateway to Takeover

Ubuntu Security Notice 5936-1 - Evgeny Legerov discovered that Samba incorrectly handled buffers in certain GSSAPI routines of Heimdal. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. Tom Tervoort discovered that Samba incorrectly used weak rc4-hmac Kerberos keys. A remote attacker could possibly use this issue to elevate privileges.

    ==========================================================================Ubuntu Security Notice USN-5936-1March 08, 2023samba vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:Several security issues were fixed in Samba.Software Description:- samba: SMB/CIFS file, print, and login server for UnixDetails:Evgeny Legerov discovered that Samba incorrectly handled buffers incertain GSSAPI routines of Heimdal. A remote attacker could possibly usethis issue to cause Samba to crash, resulting in a denial of service.(CVE-2022-3437)Tom Tervoort discovered that Samba incorrectly used weak rc4-hmac Kerberoskeys. A remote attacker could possibly use this issue to elevateprivileges. (CVE-2022-37966, CVE-2022-37967)It was discovered that Samba supported weak RC4/HMAC-MD5 in NetLogon SecureChannel. A remote attacker could possibly use this issue to elevateprivileges. (CVE-2022-38023)Greg Hudson discovered that Samba incorrectly handled PAC parsing. On32-bit systems, a remote attacker could use this issue to escalateprivileges, or possibly execute arbitrary code. (CVE-2022-42898)Joseph Sutton discovered that Samba could be forced to issue rc4-hmacencrypted Kerberos tickets. A remote attacker could possibly use this issueto escalate privileges. This issue only affected Ubuntu 20.04 LTS andUbuntu 22.04 LTS. (CVE-2022-45141)WARNING: This update upgrades the version of Samba to 4.15.13. Please seethe upstream release notes for important changes in the new version:https://www.samba.org/samba/history/samba-4.15.0.htmlIn addition, the security fixes included in this new version introduceseveral important behavior changes which may cause compatibility problemsinteracting with systems still expecting the former behavior. Please seethe following upstream advisories for more information:https://www.samba.org/samba/security/CVE-2022-37966.htmlhttps://www.samba.org/samba/security/CVE-2022-37967.htmlhttps://www.samba.org/samba/security/CVE-2022-38023.htmlUpdate instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:   samba                           2:4.15.13+dfsg-0ubuntu0.20.04.1This update uses a new upstream release, which includes additional bugfixes. In general, a standard system update will make all the necessarychanges.References:   https://ubuntu.com/security/notices/USN-5936-1   CVE-2022-3437, CVE-2022-37966, CVE-2022-37967, CVE-2022-38023,   CVE-2022-42898, CVE-2022-45141Package Information:   https://launchpad.net/ubuntu/+source/samba/2:4.15.13+dfsg-0ubuntu0.20.04.1

Ubuntu Security Notice USN-5936-1

Red Hat Security Advisory 2023-1109-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

Red Hat Security Advisory 2023-1109-01

Red Hat Security Advisory 2023-1130-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include null pointer and use-after-free vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: kernel security and bug fix update  
Advisory ID:       RHSA-2023:1130-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1130  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-2964 CVE-2022-4269 CVE-2022-41222   
=====================================================================

1. Summary:

An update for kernel is now available for Red Hat Enterprise Linux 8.6  
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder EUS (v.8.6) - aarch64, ppc64le, x86_64  
Red Hat Enterprise Linux BaseOS EUS (v.8.6) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The kernel packages contain the Linux kernel, the core of any Linux  
operating system.

Security Fix(es):

* kernel: memory corruption in AX88179_178A based USB ethernet device.  
(CVE-2022-2964)

* kernel: mm/mremap.c use-after-free vulnerability (CVE-2022-41222)

* kernel: net: CPU soft lockup in TC mirred egress-to-ingress action  
(CVE-2022-4269)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105  
ex_handler_fprestore+0x3f/0x50 (BZ#2134587)

* fix for "CoW after fork() issue" aka "vmsplice child -> parent attack"  
aka "GUP after fork bug" (BZ#2137546)

* Hardware error: RIP: copy_user_enhanced_fast_string+0xe (BZ#2137593)

* i40e: orphaned-leaky memory when interacting with driver memory  
parameters (BZ#2138206)

* RHEL 8.7 - Outputs of lsmem, lparstat, numactl and /proc/meminfo show  
wrong value of memory when LMB size is set to 4GB. (BZ#2140091)

* RHEL8.7: tcp sessions hanging after ibmvnic failover on Denali  
(BZ#2140958)

* RHEL8: Practically limit "Dummy wait" workaround to old Intel systems  
(BZ#2142171)

* RHEL:8.6+ IBM Partner issue - Loopback driver with ABORT_TASKS causing  
hangs in scsi eh, this bug was cloned for RHEL8.6 and need this patch in  
8.6+ (BZ#2144584)

* i40e,iavf: SR-IOV VF devices send GARP with wrong MAC address  
(BZ#2149746)

* RHEL8.4 - boot: Add secure boot trailer (BZ#2151531)

* error 524 from seccomp(2) when trying to load filter (BZ#2152139)

* The "kernel BUG at mm/usercopy.c:103!" from BZ 2041529 is back on  
rhel-8.5 (BZ#2153231)

* kernel BUG: scheduling while atomic: crio/7295/0x00000002 (BZ#2154461)

* MSFT MANA NET Patch RHEL-8: Fix race on per-CQ variable napi_iperf panic  
fix (BZ#2155438)

* GSS: OCP 4.10.30 node crash after ODF upgrade : unable to handle kernel  
NULL pointer dereference at 0000000000000000 :  
ceph_get_snap_realm+0x68/0xa0 [ceph] (BZ#2155798)

* RHEL8.8: Backport upstream patches to reduce memory cgroup memory  
consumption and OOM problem (BZ#2157923)

* 'date' command shows wrong time in nested KVM s390x guest (BZ#2158814)

* Kernel FIPS-140-3 requirements - part 3 - AES-XTS (BZ#2160173)

* ethtool -m results in an out-of-bounds slab write in the be2net driver  
(BZ#2160183)

* i40e/iavf: VF reset task fails "Never saw reset" with 5 second timeout  
per VF (BZ#2160461)

* Mellanox: backport "net/mlx5e: TC NIC mode, fix tc chains miss table"  
(BZ#2161630)

* Kernel panic observed during VxFS module unload (BZ#2162764)

* iavf: It takes long time to create multiple VF interfaces and the VF  
interface names are not consistent (BZ#2163259)

* In FIPS mode, the kernel should reject SHA-224, SHA-384, SHA-512-224, and  
SHA-512-256 as hashes for hash-based DRBGs, or provide an indicator after  
2023-05-16 (BZ#2165133)

* panic in fib6_rule_suppress+0x22 with custom xdp prog involved in  
(BZ#2167604)

* net/mlx5e: Fix use-after-free when reverting termination table  
(BZ#2167641)

* Update intel_idle for Eaglestream/Sapphire Rapids support (BZ#2168357)

* GSS: Set of fixes in ceph kernel module to prevent OCS node kernel crash  
- -  blocklist the kclient when receiving corrupted snap trace (BZ#2168898)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The system must be rebooted for this update to take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2067482 - CVE-2022-2964 kernel: memory corruption in AX88179_178A based USB ethernet device.  
2138818 - CVE-2022-41222 kernel: mm/mremap.c use-after-free vulnerability  
2150272 - CVE-2022-4269 kernel: net: CPU soft lockup in TC mirred egress-to-ingress action

6. Package List:

Red Hat Enterprise Linux BaseOS EUS (v.8.6):

Source:  
kernel-4.18.0-372.46.1.el8_6.src.rpm

aarch64:  
bpftool-4.18.0-372.46.1.el8_6.aarch64.rpm  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-core-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-cross-headers-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-core-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-devel-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-modules-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-modules-extra-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-devel-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-headers-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-modules-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-modules-extra-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-tools-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-tools-libs-4.18.0-372.46.1.el8_6.aarch64.rpm  
perf-4.18.0-372.46.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
python3-perf-4.18.0-372.46.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm

noarch:  
kernel-abi-stablelists-4.18.0-372.46.1.el8_6.noarch.rpm  
kernel-doc-4.18.0-372.46.1.el8_6.noarch.rpm

ppc64le:  
bpftool-4.18.0-372.46.1.el8_6.ppc64le.rpm  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-core-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-cross-headers-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-core-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-devel-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-modules-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-modules-extra-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-devel-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-headers-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-modules-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-modules-extra-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-tools-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-tools-libs-4.18.0-372.46.1.el8_6.ppc64le.rpm  
perf-4.18.0-372.46.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
python3-perf-4.18.0-372.46.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm

s390x:  
bpftool-4.18.0-372.46.1.el8_6.s390x.rpm  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-core-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-cross-headers-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-core-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-devel-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-modules-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debug-modules-extra-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-debuginfo-common-s390x-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-devel-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-headers-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-modules-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-modules-extra-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-tools-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-core-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-devel-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-4.18.0-372.46.1.el8_6.s390x.rpm  
kernel-zfcpdump-modules-extra-4.18.0-372.46.1.el8_6.s390x.rpm  
perf-4.18.0-372.46.1.el8_6.s390x.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm  
python3-perf-4.18.0-372.46.1.el8_6.s390x.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.s390x.rpm

x86_64:  
bpftool-4.18.0-372.46.1.el8_6.x86_64.rpm  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-core-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-cross-headers-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-core-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-devel-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-modules-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-modules-extra-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-devel-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-headers-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-modules-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-modules-extra-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-tools-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-tools-libs-4.18.0-372.46.1.el8_6.x86_64.rpm  
perf-4.18.0-372.46.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
python3-perf-4.18.0-372.46.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm

Red Hat CodeReady Linux Builder EUS (v.8.6):

aarch64:  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-debuginfo-common-aarch64-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
kernel-tools-libs-devel-4.18.0-372.46.1.el8_6.aarch64.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.aarch64.rpm

ppc64le:  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-debuginfo-common-ppc64le-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
kernel-tools-libs-devel-4.18.0-372.46.1.el8_6.ppc64le.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.ppc64le.rpm

x86_64:  
bpftool-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debug-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-debuginfo-common-x86_64-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-tools-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
kernel-tools-libs-devel-4.18.0-372.46.1.el8_6.x86_64.rpm  
perf-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm  
python3-perf-debuginfo-4.18.0-372.46.1.el8_6.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-2964  
https://access.redhat.com/security/cve/CVE-2022-4269  
https://access.redhat.com/security/cve/CVE-2022-41222  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAiXMtzjgjWX9erEAQguWhAApNLcz2ltZLXkAZ/HPY3boTCnDVnFlYD6  
We5JcFRn45M//ACx7tuHfQIYU4STA+iJiACBf9IJjPaUYrfjJ13/XCV2OMQof6Or  
vEUemfX8pDIU4gMPWD6E4yffDRdW+e54inSGvSxc6IRPRefm5mcnEiWxlvF+Fc6U  
rsn8zdZahByGpMfocORIx9XjjBUgNR33KByYWKIvdmw4RSAOXblCmMzQWgRSr/iW  
j3HqNrR4wwgZE7hdtvOb9RJ70x/JPXtQEROr8nfZYtXJ10LqdyvmyCCVX4DmP89W  
5n4yWDaLHbeqWferMDLa3faCFIpXoHAWzMhX4FfriVdIMTx8f7B+p7jdeUhDg+PU  
/kv2tIQLy4QYADFaA5VCIEgPhgMFbmJqrwaW2Hec9H1w8wsLW8SV1HUxZyLJ1jKn  
fmgK71PlCG/emt1fXlNkeh8l+JXO0MfXb4KrGEjAWgVleQhiwXSh62EaIRiPfp77  
4byX1ZSFBbp6bno0NR5pmYSM8jgMR1JqpWP0eIOUBncAacEhZqzD+EXMZ2ZRfMLZ  
QrAGFkC3AG6KE3/UjIgdSf7QTiw7bozwAdhOZOn+X5IZfbqOykyI/g93QuIJcREl  
x4dcbL6jnnZCEEZ282yGrL4fQWjOdC0bGDrfw7qcCbjeEqKKiPyHffzTu/drDT29  
/EVM/7D12z8=  
=+U7d  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1130-01

Red Hat Security Advisory 2023-1107-01 - The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Issues addressed include a privilege escalation vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: pesign security update  
Advisory ID:       RHSA-2023:1107-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1107  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-3560   
=====================================================================

1. Summary:

An update for pesign is now available for Red Hat Enterprise Linux 8.2  
Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications  
Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP  
Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream AUS (v. 8.2) - aarch64, x86_64  
Red Hat Enterprise Linux AppStream E4S (v. 8.2) - aarch64, x86_64  
Red Hat Enterprise Linux AppStream TUS (v. 8.2) - aarch64, x86_64

3. Description:

The pesign packages provide the pesign utility for signing UEFI binaries as  
well as other associated tools.

Security Fix(es):

* pesign: Local privilege escalation on pesign systemd service  
(CVE-2022-3560)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2135420 - CVE-2022-3560 pesign: Local privilege escalation on pesign systemd service

6. Package List:

Red Hat Enterprise Linux AppStream AUS (v. 8.2):

Source:  
pesign-0.112-25.el8_2.1.src.rpm

aarch64:  
pesign-0.112-25.el8_2.1.aarch64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.aarch64.rpm  
pesign-debugsource-0.112-25.el8_2.1.aarch64.rpm

x86_64:  
pesign-0.112-25.el8_2.1.x86_64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.x86_64.rpm  
pesign-debugsource-0.112-25.el8_2.1.x86_64.rpm

Red Hat Enterprise Linux AppStream E4S (v. 8.2):

Source:  
pesign-0.112-25.el8_2.1.src.rpm

aarch64:  
pesign-0.112-25.el8_2.1.aarch64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.aarch64.rpm  
pesign-debugsource-0.112-25.el8_2.1.aarch64.rpm

x86_64:  
pesign-0.112-25.el8_2.1.x86_64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.x86_64.rpm  
pesign-debugsource-0.112-25.el8_2.1.x86_64.rpm

Red Hat Enterprise Linux AppStream TUS (v. 8.2):

Source:  
pesign-0.112-25.el8_2.1.src.rpm

aarch64:  
pesign-0.112-25.el8_2.1.aarch64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.aarch64.rpm  
pesign-debugsource-0.112-25.el8_2.1.aarch64.rpm

x86_64:  
pesign-0.112-25.el8_2.1.x86_64.rpm  
pesign-debuginfo-0.112-25.el8_2.1.x86_64.rpm  
pesign-debugsource-0.112-25.el8_2.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-3560  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAiXLdzjgjWX9erEAQhQsA//RLv4H10wZJTWZnezz9KMapHUwJ6iPQP6  
NnuWs26Q3scr0Y10dgVqNm+g9oHGvsLrqm+fZK0dgK4PhYoWsAlXrfyCcAGPoCqo  
2LEXeZD0HPQ5icixfrbhlxwsNnGdM/+H1LFgsrc6G5B5FVtkaJmr4GMK7hWxhF+/  
FUfa+eMGSAZL3n1ZsQ8VWGIOb1IEhUXfsWrv1XWlZY55buQn7/3MfjA4tb8Au9zc  
0GCnl2iz0NGyF7so/mSi2+KYsodp7CwZ7ZseJgrLtA/MbVww/lxW5X2rMV2UHjgF  
Joh5krhdHUbVAArYVPyRsrzTm6Ijim+Ww3axMOXglttPHDcpL2Wwg6X3E+mJmEhp  
zdXHvhwW2/7prhMnXzjuzmKq07s6jCAnAtFSI8fWmT9BRixPF0WbVFDriIRU8Tgq  
nCLuDQa58oXIkb11tQ4WMUFcu6PqadYBa0EvWGgQeqrbcMVXlpVaXylzwoUO55P3  
yC2ws9tMvoN4PBcICBlASAngQMbOxCtSb7wnDi4rl3kqFdafmTzIk3+cs1OkqNjC  
H1h/UJoroqAS977s3HSNfZQJ+sw7RQ7Grz3RovV7g88tUV87F1Vv5QRwbBWMdVVN  
OINoZBTMdXcD0qegq1+TjHl6+bMdn0XshC6g7wM2RyiMdw5fXeP6+QjRvDtnWWDc  
kbgX2OTcUho=  
=HPJq  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1107-01

Categories: Threat Intelligence
A network of online video streaming sites are monetizing traffic with hidden ads. The problem? Advertisers are throwing up to a million dollars every month down the drain as nobody is even seeing the ads.



(Read more...)




The post DeepStreamer: Illegal movie streaming platforms hide lucrative ad fraud operation appeared first on Malwarebytes Labs.

DeepStreamer: Illegal movie streaming platforms hide lucrative ad fraud operation

The domain name registrar Freenom, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by Meta, which alleges the company ignores abuse complaints about phishing websites while monetizing traffic to those abusive domains.

The domain name registrar **Freenom**, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by **Meta**, which alleges the company ignores abuse complaints about phishing websites while monetizing traffic to those abusive domains.

Freenom’s website features a message saying it is not currently allowing new registrations.

Freenom is the domain name registry service provider for five so-called “country code top level domains” (ccTLDs), including **.cf** for the Central African Republic; **.ga** for Gabon; **.gq** for Equatorial Guinea; **.ml** for Mali; and **.tk** for Tokelau.

Freenom has always waived the registration fees for domains in these country-code domains, presumably as a way to encourage users to pay for related services, such as registering a .com or .net domain, for which Freenom does charge a fee.

On March 3, 2023, social media giant Meta sued Freenom in a Northern California court, alleging cybersquatting violations and trademark infringement. The lawsuit also seeks information about the identities of 20 different “John Does” — Freenom customers that Meta says have been particularly active in phishing attacks against **Facebook**, **Instagram**, and **WhatsApp** users.

The lawsuit points to a 2021 study (PDF) on the abuse of domains conducted for the European Commission, which discovered that those ccTLDs operated by Freenom made up five of the Top Ten TLDs most abused by phishers.

“The five ccTLDs to which Freenom provides its services are the TLDs of choice for cybercriminals because Freenom provides free domain name registration services and shields its customers’ identity, even after being presented with evidence that the domain names are being used for illegal purposes,” the complaint charges. “Even after receiving notices of infringement or phishing by its customers, Freenom continues to license new infringing domain names to those same customers.”

Meta further alleges that “Freenom has repeatedly failed to take appropriate steps to investigate and respond appropriately to reports of abuse,” and that it monetizes the traffic from infringing domains by reselling them and by adding “parking pages” that redirect visitors to other commercial websites, websites with pornographic content, and websites used for malicious activity like phishing.

Freenom has not yet responded to requests for comment. But attempts to register a domain through the company’s website as of publication time generated an error message that reads:

“Because of technical issues the Freenom application for new registrations is temporarily out-of-order. Please accept our apologies for the inconvenience. We are working on a solution and hope to resume operations shortly. Thank you for your understanding.”

Image: Interisle Consulting Group, Phishing Landscape 2021, Sept. 2021.

Although Freenom is based in The Netherlands, some of its other sister companies named as defendants in the lawsuit names _are_ incorporated in the United States.

Meta initially filed this lawsuit in December 2022, but it asked the court to seal the case, which would have restricted public access to court documents in the dispute. That request was denied, and Meta amended and re-filed the lawsuit last week.

According to Meta, this isn’t just a case of another domain name registrar ignoring abuse complaints because it’s bad for business. The lawsuit alleges that the owners of Freenom “are part of a web of companies created to facilitate cybersquatting, all for the benefit of Freenom.”

“On information and belief, one or more of the ccTLD Service Providers, ID Shield, Yoursafe, Freedom Registry, Fintag, Cervesia, VTL, Joost Zuurbier Management Services B.V., and Doe Defendants were created to hide assets, ensure unlawful activity including cybersquatting and phishing goes undetected, and to further the goals of Freenom,” Meta charged.

It remains unclear why Freenom has stopped allowing domain registration, but it could be that the company was recently the subject of some kind of disciplinary action by the **Internet Corporation for Assigned Names and Numbers** (ICANN), the nonprofit entity which oversees the domain registrars.

In June 2015, ICANN suspended Freenom’s ability to create new domain names or initiate inbound transfers of domain names for 90 days. According to Meta, the suspension was premised on ICANN’s determination that Freenom “has engaged in a pattern and practice of trafficking in or use of domain names identical or confusingly similar to a trademark or service mark of a third party in which the Registered Name Holder has no rights or legitimate interest.”

ICANN has not yet responded to requests for comment.

A copy of the amended complaint against Freenom, et. al, is available here (PDF).

Sued by Meta, Freenom Halts Domain Registrations

Red Hat Security Advisory 2023-1090-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: samba security update  
Advisory ID:       RHSA-2023:1090-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1090  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-38023  
====================================================================  
1. Summary:

An update for samba is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Optional (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Server Resilient Storage (v. 7) - ppc64le, s390x, x86_64  
Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64  
Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64

3. Description:

Samba is an open-source implementation of the Server Message Block (SMB)  
protocol and the related Common Internet File System (CIFS) protocol, which  
allow PC-compatible machines to share files, printers, and various  
information.

Security Fix(es):

* samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided  
(CVE-2022-38023)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the smb service will be restarted  
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2154362 - CVE-2022-38023 samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:  
samba-4.10.16-24.el7_9.src.rpm

noarch:  
samba-common-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-4.10.16-24.el7_9.i686.rpm  
libsmbclient-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-4.10.16-24.el7_9.i686.rpm  
libwbclient-4.10.16-24.el7_9.x86_64.rpm  
samba-client-4.10.16-24.el7_9.x86_64.rpm  
samba-client-libs-4.10.16-24.el7_9.i686.rpm  
samba-client-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-libs-4.10.16-24.el7_9.i686.rpm  
samba-common-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-tools-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-krb5-printing-4.10.16-24.el7_9.x86_64.rpm  
samba-libs-4.10.16-24.el7_9.i686.rpm  
samba-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-clients-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-modules-4.10.16-24.el7_9.i686.rpm  
samba-winbind-modules-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

noarch:  
samba-pidl-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-devel-4.10.16-24.el7_9.i686.rpm  
libsmbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-devel-4.10.16-24.el7_9.i686.rpm  
libwbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-devel-4.10.16-24.el7_9.i686.rpm  
samba-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-python-4.10.16-24.el7_9.i686.rpm  
samba-python-4.10.16-24.el7_9.x86_64.rpm  
samba-python-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-libs-4.10.16-24.el7_9.i686.rpm  
samba-test-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-vfs-glusterfs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:  
samba-4.10.16-24.el7_9.src.rpm

noarch:  
samba-common-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-4.10.16-24.el7_9.i686.rpm  
libsmbclient-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-4.10.16-24.el7_9.i686.rpm  
libwbclient-4.10.16-24.el7_9.x86_64.rpm  
samba-client-4.10.16-24.el7_9.x86_64.rpm  
samba-client-libs-4.10.16-24.el7_9.i686.rpm  
samba-client-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-libs-4.10.16-24.el7_9.i686.rpm  
samba-common-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-tools-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-libs-4.10.16-24.el7_9.i686.rpm  
samba-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-clients-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-modules-4.10.16-24.el7_9.i686.rpm  
samba-winbind-modules-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

noarch:  
samba-pidl-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-devel-4.10.16-24.el7_9.i686.rpm  
libsmbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-devel-4.10.16-24.el7_9.i686.rpm  
libwbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-devel-4.10.16-24.el7_9.i686.rpm  
samba-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-krb5-printing-4.10.16-24.el7_9.x86_64.rpm  
samba-python-4.10.16-24.el7_9.i686.rpm  
samba-python-4.10.16-24.el7_9.x86_64.rpm  
samba-python-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-libs-4.10.16-24.el7_9.i686.rpm  
samba-test-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-vfs-glusterfs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server (v. 7):

Source:  
samba-4.10.16-24.el7_9.src.rpm

noarch:  
samba-common-4.10.16-24.el7_9.noarch.rpm

ppc64:  
libsmbclient-4.10.16-24.el7_9.ppc.rpm  
libsmbclient-4.10.16-24.el7_9.ppc64.rpm  
libwbclient-4.10.16-24.el7_9.ppc.rpm  
libwbclient-4.10.16-24.el7_9.ppc64.rpm  
samba-4.10.16-24.el7_9.ppc64.rpm  
samba-client-4.10.16-24.el7_9.ppc64.rpm  
samba-client-libs-4.10.16-24.el7_9.ppc.rpm  
samba-client-libs-4.10.16-24.el7_9.ppc64.rpm  
samba-common-libs-4.10.16-24.el7_9.ppc.rpm  
samba-common-libs-4.10.16-24.el7_9.ppc64.rpm  
samba-common-tools-4.10.16-24.el7_9.ppc64.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc64.rpm  
samba-krb5-printing-4.10.16-24.el7_9.ppc64.rpm  
samba-libs-4.10.16-24.el7_9.ppc.rpm  
samba-libs-4.10.16-24.el7_9.ppc64.rpm  
samba-winbind-4.10.16-24.el7_9.ppc64.rpm  
samba-winbind-clients-4.10.16-24.el7_9.ppc64.rpm  
samba-winbind-modules-4.10.16-24.el7_9.ppc.rpm  
samba-winbind-modules-4.10.16-24.el7_9.ppc64.rpm

ppc64le:  
libsmbclient-4.10.16-24.el7_9.ppc64le.rpm  
libwbclient-4.10.16-24.el7_9.ppc64le.rpm  
samba-4.10.16-24.el7_9.ppc64le.rpm  
samba-client-4.10.16-24.el7_9.ppc64le.rpm  
samba-client-libs-4.10.16-24.el7_9.ppc64le.rpm  
samba-common-libs-4.10.16-24.el7_9.ppc64le.rpm  
samba-common-tools-4.10.16-24.el7_9.ppc64le.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc64le.rpm  
samba-krb5-printing-4.10.16-24.el7_9.ppc64le.rpm  
samba-libs-4.10.16-24.el7_9.ppc64le.rpm  
samba-winbind-4.10.16-24.el7_9.ppc64le.rpm  
samba-winbind-clients-4.10.16-24.el7_9.ppc64le.rpm  
samba-winbind-modules-4.10.16-24.el7_9.ppc64le.rpm

s390x:  
libsmbclient-4.10.16-24.el7_9.s390.rpm  
libsmbclient-4.10.16-24.el7_9.s390x.rpm  
libwbclient-4.10.16-24.el7_9.s390.rpm  
libwbclient-4.10.16-24.el7_9.s390x.rpm  
samba-4.10.16-24.el7_9.s390x.rpm  
samba-client-4.10.16-24.el7_9.s390x.rpm  
samba-client-libs-4.10.16-24.el7_9.s390.rpm  
samba-client-libs-4.10.16-24.el7_9.s390x.rpm  
samba-common-libs-4.10.16-24.el7_9.s390.rpm  
samba-common-libs-4.10.16-24.el7_9.s390x.rpm  
samba-common-tools-4.10.16-24.el7_9.s390x.rpm  
samba-debuginfo-4.10.16-24.el7_9.s390.rpm  
samba-debuginfo-4.10.16-24.el7_9.s390x.rpm  
samba-krb5-printing-4.10.16-24.el7_9.s390x.rpm  
samba-libs-4.10.16-24.el7_9.s390.rpm  
samba-libs-4.10.16-24.el7_9.s390x.rpm  
samba-winbind-4.10.16-24.el7_9.s390x.rpm  
samba-winbind-clients-4.10.16-24.el7_9.s390x.rpm  
samba-winbind-modules-4.10.16-24.el7_9.s390.rpm  
samba-winbind-modules-4.10.16-24.el7_9.s390x.rpm

x86_64:  
libsmbclient-4.10.16-24.el7_9.i686.rpm  
libsmbclient-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-4.10.16-24.el7_9.i686.rpm  
libwbclient-4.10.16-24.el7_9.x86_64.rpm  
samba-4.10.16-24.el7_9.x86_64.rpm  
samba-client-4.10.16-24.el7_9.x86_64.rpm  
samba-client-libs-4.10.16-24.el7_9.i686.rpm  
samba-client-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-libs-4.10.16-24.el7_9.i686.rpm  
samba-common-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-tools-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-krb5-printing-4.10.16-24.el7_9.x86_64.rpm  
samba-libs-4.10.16-24.el7_9.i686.rpm  
samba-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-python-4.10.16-24.el7_9.i686.rpm  
samba-python-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-clients-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-modules-4.10.16-24.el7_9.i686.rpm  
samba-winbind-modules-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Resilient Storage (v. 7):

ppc64le:  
ctdb-4.10.16-24.el7_9.ppc64le.rpm  
ctdb-tests-4.10.16-24.el7_9.ppc64le.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc64le.rpm

s390x:  
ctdb-4.10.16-24.el7_9.s390x.rpm  
ctdb-tests-4.10.16-24.el7_9.s390x.rpm  
samba-debuginfo-4.10.16-24.el7_9.s390x.rpm

x86_64:  
ctdb-4.10.16-24.el7_9.x86_64.rpm  
ctdb-tests-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

noarch:  
samba-pidl-4.10.16-24.el7_9.noarch.rpm

ppc64:  
libsmbclient-devel-4.10.16-24.el7_9.ppc.rpm  
libsmbclient-devel-4.10.16-24.el7_9.ppc64.rpm  
libwbclient-devel-4.10.16-24.el7_9.ppc.rpm  
libwbclient-devel-4.10.16-24.el7_9.ppc64.rpm  
samba-dc-4.10.16-24.el7_9.ppc64.rpm  
samba-dc-libs-4.10.16-24.el7_9.ppc64.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc64.rpm  
samba-devel-4.10.16-24.el7_9.ppc.rpm  
samba-devel-4.10.16-24.el7_9.ppc64.rpm  
samba-python-4.10.16-24.el7_9.ppc.rpm  
samba-python-4.10.16-24.el7_9.ppc64.rpm  
samba-python-test-4.10.16-24.el7_9.ppc64.rpm  
samba-test-4.10.16-24.el7_9.ppc64.rpm  
samba-test-libs-4.10.16-24.el7_9.ppc.rpm  
samba-test-libs-4.10.16-24.el7_9.ppc64.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.ppc64.rpm

ppc64le:  
libsmbclient-devel-4.10.16-24.el7_9.ppc64le.rpm  
libwbclient-devel-4.10.16-24.el7_9.ppc64le.rpm  
samba-dc-4.10.16-24.el7_9.ppc64le.rpm  
samba-dc-libs-4.10.16-24.el7_9.ppc64le.rpm  
samba-debuginfo-4.10.16-24.el7_9.ppc64le.rpm  
samba-devel-4.10.16-24.el7_9.ppc64le.rpm  
samba-python-4.10.16-24.el7_9.ppc64le.rpm  
samba-python-test-4.10.16-24.el7_9.ppc64le.rpm  
samba-test-4.10.16-24.el7_9.ppc64le.rpm  
samba-test-libs-4.10.16-24.el7_9.ppc64le.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.ppc64le.rpm

s390x:  
libsmbclient-devel-4.10.16-24.el7_9.s390.rpm  
libsmbclient-devel-4.10.16-24.el7_9.s390x.rpm  
libwbclient-devel-4.10.16-24.el7_9.s390.rpm  
libwbclient-devel-4.10.16-24.el7_9.s390x.rpm  
samba-dc-4.10.16-24.el7_9.s390x.rpm  
samba-dc-libs-4.10.16-24.el7_9.s390x.rpm  
samba-debuginfo-4.10.16-24.el7_9.s390.rpm  
samba-debuginfo-4.10.16-24.el7_9.s390x.rpm  
samba-devel-4.10.16-24.el7_9.s390.rpm  
samba-devel-4.10.16-24.el7_9.s390x.rpm  
samba-python-4.10.16-24.el7_9.s390.rpm  
samba-python-4.10.16-24.el7_9.s390x.rpm  
samba-python-test-4.10.16-24.el7_9.s390x.rpm  
samba-test-4.10.16-24.el7_9.s390x.rpm  
samba-test-libs-4.10.16-24.el7_9.s390.rpm  
samba-test-libs-4.10.16-24.el7_9.s390x.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.s390x.rpm

x86_64:  
libsmbclient-devel-4.10.16-24.el7_9.i686.rpm  
libsmbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-devel-4.10.16-24.el7_9.i686.rpm  
libwbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-devel-4.10.16-24.el7_9.i686.rpm  
samba-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-python-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-libs-4.10.16-24.el7_9.i686.rpm  
samba-test-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-vfs-glusterfs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:  
samba-4.10.16-24.el7_9.src.rpm

noarch:  
samba-common-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-4.10.16-24.el7_9.i686.rpm  
libsmbclient-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-4.10.16-24.el7_9.i686.rpm  
libwbclient-4.10.16-24.el7_9.x86_64.rpm  
samba-4.10.16-24.el7_9.x86_64.rpm  
samba-client-4.10.16-24.el7_9.x86_64.rpm  
samba-client-libs-4.10.16-24.el7_9.i686.rpm  
samba-client-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-libs-4.10.16-24.el7_9.i686.rpm  
samba-common-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-common-tools-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-krb5-printing-4.10.16-24.el7_9.x86_64.rpm  
samba-libs-4.10.16-24.el7_9.i686.rpm  
samba-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-python-4.10.16-24.el7_9.i686.rpm  
samba-python-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-clients-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-modules-4.10.16-24.el7_9.i686.rpm  
samba-winbind-modules-4.10.16-24.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

noarch:  
samba-pidl-4.10.16-24.el7_9.noarch.rpm

x86_64:  
libsmbclient-devel-4.10.16-24.el7_9.i686.rpm  
libsmbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
libwbclient-devel-4.10.16-24.el7_9.i686.rpm  
libwbclient-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-4.10.16-24.el7_9.x86_64.rpm  
samba-dc-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-debuginfo-4.10.16-24.el7_9.i686.rpm  
samba-debuginfo-4.10.16-24.el7_9.x86_64.rpm  
samba-devel-4.10.16-24.el7_9.i686.rpm  
samba-devel-4.10.16-24.el7_9.x86_64.rpm  
samba-python-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-4.10.16-24.el7_9.x86_64.rpm  
samba-test-libs-4.10.16-24.el7_9.i686.rpm  
samba-test-libs-4.10.16-24.el7_9.x86_64.rpm  
samba-vfs-glusterfs-4.10.16-24.el7_9.x86_64.rpm  
samba-winbind-krb5-locator-4.10.16-24.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-38023  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuEtzjgjWX9erEAQhUDw//Qi/qcd3ku8l1Wyj9u1RjzBSaFG5ziUiS  
jMOVFpqpJKXEn0NKQTRlARwkKNlEAOsKj0d+JMWm7g2K3eVl+5QMF0mBDs71aLH0  
huWacphmH+r5zwuBQoqSGRTSFfO1Ue579szk/FeL3bZMe4hfA88OFsPAgiBeqryO  
/97gmKB5vVafJBlCTc0bQPFvICsEDK8yFKWuj6TjAPcGlMVpP8KqrlxRy+fVcAFC  
pHB4oOI87ZRzu9wlE4ZnpnyrWVwTo5fCpwRBlrxV6KpagkMUvcf6zzpJLH5CqKMr  
zJ0SUcyoU/9bFC6iO2+3WLi5JGiF4UHNb19iGJRcB7OOl8uvue8IpOxTVdwXhAys  
tqw3LaII3hEij82A6rB8o6dH8gPSU21vJoxqF8xbzeOATPrDb6ZXPTbsWQKm+CJC  
BAfTlUxw/5qSaKTL/ckqLomicfc0ZQ4tVndk3oveOVzGzek0QGI1sGcP+l/u7jBx  
9lbLR/bdBHynskJ+p2uNwo9qH9Esa0tQ1ljBKhfyB+sERMEA/V5o+YRgBNv1rurN  
Uw41Aste32UQlrTb4HAeEbDkLOKTxdiGmV4QomBGvDLvWO3cG7sapMER5VxDa/Xn  
Undn9vqL07YUqLirbKJ0HIrMmCMFkJPQtpi8N55lxB1X+oafS/AQy/RNVws2OGza  
dAmAptTwZ1I=2JAI  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-1090-01

Red Hat Security Advisory 2023-1103-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: kpatch-patch security update  
Advisory ID:       RHSA-2023:1103-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1103  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-4378  
====================================================================  
1. Summary:

An update for kpatch-patch is now available for Red Hat Enterprise Linux  
8.2 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS E4S (v. 8.2) - ppc64le, x86_64

3. Description:

This is a kernel live patch module which is automatically loaded by the RPM  
post-install script to modify the code of a running kernel.

Security Fix(es):

* kernel: stack overflow in do_proc_dointvec and proc_skip_spaces  
(CVE-2022-4378)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2152548 - CVE-2022-4378 kernel: stack overflow in do_proc_dointvec and proc_skip_spaces

6. Package List:

Red Hat Enterprise Linux BaseOS E4S (v. 8.2):

Source:  
kpatch-patch-4_18_0-193_90_1-1-4.el8_2.src.rpm  
kpatch-patch-4_18_0-193_91_1-1-4.el8_2.src.rpm  
kpatch-patch-4_18_0-193_93_1-1-3.el8_2.src.rpm  
kpatch-patch-4_18_0-193_95_1-1-2.el8_2.src.rpm  
kpatch-patch-4_18_0-193_98_1-1-1.el8_2.src.rpm

ppc64le:  
kpatch-patch-4_18_0-193_90_1-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_90_1-debuginfo-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_90_1-debugsource-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_91_1-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_91_1-debuginfo-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_91_1-debugsource-1-4.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_93_1-1-3.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_93_1-debuginfo-1-3.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_93_1-debugsource-1-3.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_95_1-1-2.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_95_1-debuginfo-1-2.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_95_1-debugsource-1-2.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_98_1-1-1.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_98_1-debuginfo-1-1.el8_2.ppc64le.rpm  
kpatch-patch-4_18_0-193_98_1-debugsource-1-1.el8_2.ppc64le.rpm

x86_64:  
kpatch-patch-4_18_0-193_90_1-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_90_1-debuginfo-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_90_1-debugsource-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_91_1-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_91_1-debuginfo-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_91_1-debugsource-1-4.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_93_1-1-3.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_93_1-debuginfo-1-3.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_93_1-debugsource-1-3.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_95_1-1-2.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_95_1-debuginfo-1-2.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_95_1-debugsource-1-2.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_98_1-1-1.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_98_1-debuginfo-1-1.el8_2.x86_64.rpm  
kpatch-patch-4_18_0-193_98_1-debugsource-1-1.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4378  
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAcuF9zjgjWX9erEAQiXgRAApccr26Oub6U9TlUdxdqDFprKVYzBfeDq  
G16IDPwGU+szcSUtV/+q1WS6Qg44/vLdhq8VDP960NZdxdADosvXUd9l0pDoi5Mz  
Smmntkjokf7SDtTVr0VEmGU1dxD4aWkyGmV6vYGjcYxx+/U4hFR7JLH6GRh203zV  
uY/fkJBeQjxHL+5xfeHxX4DIeO+kChSmbESl9D0I39zRt78yuZk9uuFS2jEaDvAK  
Qk9VgL8c2v/RjUZqgXU/Vf6KODryjk+SC1p7OOCt9vO6ytF2gr2C9F6VQlUt9xe2  
GPds9nZh4qPaLbRIAj3k7uYpH8TIdbJ9KflCAj1SU+J1pYZKQGuGQCyUfJAXLMF3  
MQzm9Gq9TWb4OcUV10pZRGcYKKP/hcqh2J4ssh8mOcMen9mNvi1pv8PrJJVkahCO  
1pGRLKG88XMKECTSMyRtgjwnx0yYZyZN+JuMHjX74dmglIYgqp+HKh7u2iL0NYEX  
v6DwIrG/ealgpx4DNENQmfHsr+0z7O6TQWtPNiECfyORuJG/7g1MjCMB5o1RtAgj  
LcHL8/UbuWTifCk7rJ1Z1F2cJrpJ5fHKZ922U1JDbiPtK2mBw2I/RiVbYlMzPmPF  
itlD7NMz6jaVcDR1ogNPkQnJnI4JSwvPuT2HlWLyprKBEqk3Q/VwQKiwcTg6DArC  
Piyibz2Gyrw=tAzH  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#sap