Microsoft's latest round of monthly security updates has been released with fixes for 68 vulnerabilities spanning its software portfolio, including patches for six actively exploited zero-days.
12 of the issues are rated Critical, two are rated High, and 55 are rated Important in severity. This also includes the weaknesses that were closed out by OpenSSL the previous week.
Also separately

Microsoft's latest round of monthly security updates has been released with fixes for 68 vulnerabilities spanning its software portfolio, including patches for six actively exploited zero-days.

12 of the issues are rated Critical, two are rated High, and 55 are rated Important in severity. This also includes the weaknesses that were closed out by OpenSSL the previous week.

Also separately addressed at the start of the month is an actively exploited flaw in Chromium-based browsers (CVE-2022-3723) that was plugged by Google as part of an out-of-band update late last month.

"The big news is that two older zero-day CVEs affecting Exchange Server, made public at the end of September, have finally been fixed," Greg Wiseman, product manager at Rapid7, said in a statement shared with The Hacker News.

"Customers are advised to update their Exchange Server systems immediately, regardless of whether any previously recommended mitigation steps have been applied. The mitigation rules are no longer recommended once systems have been patched."

The list of actively exploited vulnerabilities, which allow privilege elevation and remote code execution, is as follows -

*   **CVE-2022-41040** (CVSS score: 8.8) - Microsoft Exchange Server Elevation of Privilege Vulnerability (aka ProxyNotShell)
*   **CVE-2022-41082** (CVSS score: 8.8) - Microsoft Exchange Server Elevation of Privilege Vulnerability (aka ProxyNotShell)
*   **CVE-2022-41128** (CVSS score: 8.8) - Windows Scripting Languages Remote Code Execution Vulnerability
*   **CVE-2022-41125** (CVSS score: 7.8) - Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
*   **CVE-2022-41073** (CVSS score: 7.8) - Windows Print Spooler Elevation of Privilege Vulnerability
*   **CVE-2022-41091** (CVSS score: 5.4) - Windows Mark of the Web Security Feature Bypass Vulnerability

Benoît Sevens and Clément Lecigne of Google's Threat Analysis Group (TAG) have been credited with reporting CVE-2022-41128, which resides in the JScript9 component and occurs when a target is tricked into visiting a specially crafted website.

CVE-2022-41091 is one of the two security bypass flaws in Windows Mark of the Web (MoTW) that came to light in recent months. It was recently discovered as weaponized by the Magniber ransomware actor to target users with fake software updates.

"An attacker can craft a malicious file that would evade Mark of the Web (MotW) defenses, resulting in a limited loss of integrity and availability of security features such as Protected View in Microsoft Office, which rely on MotW tagging," Microsoft said in an advisory.

The second MotW flaw to be resolved is CVE-2022-41049 (aka ZippyReads). Reported by Analygence security researcher Will Dormann, it relates to a failure to set the Mark of the Web flag to extracted archive files.

The two privilege escalation flaws in Print Spooler and the CNG Key Isolation Service are likely to be abused by threat actors as a follow-up to an initial compromise and gain SYSTEM privileges, Kev Breen, director of cyber threat research at Immersive Labs, said.

"This higher level of access is required to disable or tamper with security monitoring tools before running credential attacks with tools like Mimikatz that can allow attackers to move laterally across a network," Breen added.

Four other Critical-rated vulnerabilities in the November patch worth pointing out are privilege elevation flaws in Windows Kerberos (CVE-2022-37967), Kerberos RC4-HMAC (CVE-2022-37966), and Microsoft Exchange Server (CVE-2022-41080), and a denial-of-service flaw affecting Windows Hyper-V (CVE-2022-38015).

The list of fixes for Critical flaws is tailended by four remote code execution vulnerabilities in the Point-to-Point Tunneling Protocol (PPTP), all carrying CVSS scores of 8.1 (CVE-2022-41039, CVE-2022-41088, and CVE-2022-41044), and another impacting Windows scripting languages JScript9 and Chakra (CVE-2022-41118).

In addition to these issues, the Patch Tuesday update also resolves a number of remote code execution flaws in Microsoft Excel, Word, ODBC Driver, Office Graphics, SharePoint Server, and Visual Studio, as well as a number of privilege escalation bugs in Win32k, Overlay Filter, and Group Policy.

**Software Patches from Other Vendors**

Microsoft aside, security updates have also been released by other vendors since the start of the month to rectify several vulnerabilities, including —

*   AMD
*   Android
*   Apple
*   Cisco
*   Citrix
*   CODESYS
*   Dell
*   F5
*   Fortinet
*   GitLab
*   Google Chrome
*   HP
*   IBM
*   Intel
*   Juniper Networks
*   Linux distributions Debian, Oracle Linux, Red Hat, SUSE, and Ubuntu
*   MediaTek
*   NVIDIA
*   Qualcomm
*   SAP
*   Schneider Electric
*   Siemens
*   Trend Micro
*   VMware, and
*   WordPress

Found this article interesting? Follow THN on Facebook, Twitter __ and LinkedIn to read more exclusive content we post.

Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days

By Waqas
The new service is meant to solve the problem of trustlessly sharing identity data. 
This is a post from HackRead.com Read the original post: DeFi Startup AllianceBlock Debuts Trustless ID Verification Service For Dapps

AllianceBlock has just unveiled the next piece of its DeFi ecosystem puzzle, launching a new Trustless Identity Verification service that enables any DeFi users to prove their identity in a secure and decentralized way. 

The new app is meant to solve the problem of trustlessly sharing identity data. Users can prove their identity in a secure way just once, and then use the verifiable identity they create on-chain to sign up with any supported service in a fully compliant way.

In other words, TIDV helps DeFi service providers to avoid regulatory pitfalls without creating friction for their users, who may have concerns about sharing personal information and want to avoid having to prove their identity repeatedly, with every new dApp they sign up for. 

TIDV’s standout features include its flexibility and security. Each project that’s looking to verify the identity of a new user can approve requests based on specified criteria, while users have the benefit of protecting their anonymity by controlling access to their personal data. 

AllianceBlock says it’s a desperately needed solution for the DeFi industry, which is bracing itself for the inevitable introduction of regulations to protect investors. Because of this, institutional investors especially will require a compliant solution if they’re going to be able to participate in the DeFi sector. TIDV delivers that solution, giving users the ability to generate an encrypted but provable identity that can then be used with any DeFi service. 

To create TIDV, AllianceBlock said it is partnering with the identity verification solution provider GBG, which will carry out KYC checks for users on its behalf. When a user signs up with TIDV, they’ll need to undergo KYC to prove their identity.

Their credentials will then be encrypted and stored on their own web browser, with a provable identity stored on-chain via smart contracts. Users can then share these credentials with any supported service while retaining complete control over their personal information. 

AllianceBlock said the plan is to bring TIDV to all of its DeFi services, including the AllianceBlock DEX, Data Tunnel, and DeFi Terminal. Initially, though, TIDV is first being enabled with AllianceBlock’s crowdfunding platform Fundrs, which is an alternative to venture capital funding for Web3 startups.

Rather than seek traditional funding from accredited investors, crypto projects can seek the backing of their communities via a token sale on Fundrs. The first project to do this in a fully compliant manner using TIDV will be dua Token.

AllianceBlock CEO Rachid Ajaja could hardly contain his excitement about the service, saying that it has the potential to “revolutionize” the way DeFi and blockchain compliance is managed. 

“Our GBG partnership will streamline this verification process and ensure that regulatory compliance rules are satisfied,” he promised. “We are absolutely excited about this partnership and look forward to integrating a compliant and trustless solution for all.” 

1.  **Identity Theft Statistics You Need to Know in 2022**
2.  **Privacy Protocol Elusiv Raises $3.5 Million in Seed Funding**
3.  **Naoris Protocol to Use Blockchain To Plug Web3 Security Gaps**
4.  **3 Common Cybersecurity Mistakes that Can Lead to Identity Theft**

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

DeFi Startup AllianceBlock Debuts Trustless ID Verification Service For Dapps

User login brute force protection functionality bypass

CTX463706

{{tooltipText}}

Security Bulletin | Critical | {{likeCount}} found this helpful | Created: {{articleFormattedCreatedDate}} | Modified: {{articleFormattedModifiedDate}}

**Description of Problem**

Vulnerabilities have been discovered in Citrix Gateway and Citrix ADC, listed below. Note that only appliances that are operating as a Gateway (appliances using the SSL VPN functionality or deployed as an ICA proxy with authentication enabled) are affected by the first issue, which is rated as a Critical severity vulnerability. 

CVE-ID  

Description  

CWE  

Affected Products 

Pre-conditions 

CVE-2022-27510 

Unauthorized access to Gateway user capabilities 

CWE-288: Authentication Bypass Using an Alternate Path or Channel 

Citrix Gateway, Citrix ADC 

Appliance must be configured as a  

*   VPN (Gateway) 
    

CVE-2022-27513 

Remote desktop takeover via phishing 

CWE-345: Insufficient Verification of Data Authenticity 

Citrix Gateway, Citrix ADC 

Appliance must be configured as a  

*   VPN (Gateway) 
    

and the RDP proxy functionality must be configured

CVE-2022-27516 

User login brute force protection functionality bypass 

CWE-693: Protection Mechanism Failure 

Citrix Gateway, Citrix ADC 

Appliance must be configured as a  

*   VPN (Gateway)  
    

        OR 

*   AAA virtual server  
    

and the user lockout functionality “Max Login Attempts” must be configured 

The following supported versions of Citrix ADC and Citrix Gateway are affected by this vulnerability: 

*   Citrix ADC and Citrix Gateway 13.1 before 13.1-33.47 
    
*   Citrix ADC and Citrix Gateway 13.0 before 13.0-88.12 
    
*   Citrix ADC and Citrix Gateway 12.1 before 12.1.65.21
    
*   Citrix ADC 12.1-FIPS before 12.1-55.289 
    
*   Citrix ADC 12.1-NDcPP before 12.1-55.289 
    

This bulletin only applies to customer-managed Citrix ADC and Citrix Gateway appliances. Customers using Citrix-managed cloud services do not need to take any action. 

**What Customers Should Do**

Affected customers of Citrix ADC and Citrix Gateway are recommended to install the relevant updated versions of Citrix ADC or Citrix Gateway as soon as possible: 

*   Citrix ADC and Citrix Gateway 13.1-33.47 and later releases 
    
*   Citrix ADC and Citrix Gateway 13.0-88.12 and later releases of 13.0  
    
*   Citrix ADC and Citrix Gateway 12.1-65.21 and later releases of 12.1  
    
*   Citrix ADC 12.1-FIPS 12.1-55.289 and later releases of 12.1-FIPS  
    

*   Citrix ADC 12.1-NDcPP 12.1-55.289 and later releases of 12.1-NDcPP 
    

Please note that Citrix ADC and Citrix Gateway versions prior to 12.1 are EOL and customers on those versions are recommended to upgrade to one of the supported versions. 

Additionally, and unrelated to the aforementioned CVEs, security enhancements to help protect customers against HTTP Request Smuggling attacks have been added in the above versions of Citrix ADC, and Citrix Gateway. Customers may enable these enhancements using the Citrix ADC management interface. Please see https://support.citrix.com/article/CTX472830 for more information. 

**Acknowledgements**

Citrix would like to thank Jarosław Kamiński of Securitum for working with us to protect Citrix customers.

**What Citrix is Doing**

Citrix is notifying customers and channel partners about this potential security issue through the publication of this security bulletin on the Citrix Knowledge Center at https://support.citrix.com/securitybulletins.

**Obtaining Support on This Issue**

If you require technical assistance with this issue, please contact Citrix Technical Support. Contact details for Citrix Technical Support are available at https://www.citrix.com/support/open-a-support-case.

**Subscribe to Receive Alerts**

Citrix strongly recommends that all customers subscribe to receive alerts when a Citrix security bulletin is created or modified at https://support.citrix.com/user/alerts.

**Reporting Security Vulnerabilities to Citrix**

Citrix welcomes input regarding the security of its products and considers any and all potential vulnerabilities seriously. For details on our vulnerability response process and guidance on how to report security-related issues to Citrix, please see the following webpage: https://www.citrix.com/about/trust-center/vulnerability-process.html.

**Disclaimer**

This document is provided on an "as is" basis and does not imply any kind of guarantee or warranty, including the warranties of merchantability or fitness for a particular use. Your use of the information on the document is at your own risk. Citrix reserves the right to change or update this document at any time. Customers are therefore recommended to always view the latest version of this document directly from the Citrix Knowledge Center.

**Changelog**

Date

Change

2022-11-08

Initial Publication

CVE-2022-27516: Citrix Gateway and Citrix ADC Security Bulletin for CVE-2022-27510 CVE-2022-27513 and CVE-2022-27516

Server Side Request Forgery (SSRF) vulnerability in All in One SEO Pro plugin <= 4.2.5.1 on WordPress.

CVE-2022-42494: AIOSEO Changelog - AIOSEO

Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site Scripting (XSS) in David Anderson Testimonial Slider plugin <= 1.3.1 on WordPress.

*   Details
*   Reviews
*   Support
*   Development

This plugin has been closed as of November 7, 2022 and is not available for download. This closure is temporary, pending a full review.

worked first time, no issues, thank you 🙂

Its Awesome plugin. I highly recommend this.

Es facil de usar, cómodo y cumple su cometido con creces. Gracias por hacerlo

I have used this plugin for close to a year. It is the only one that I have used flawlessly with all my websites. I would recommend it to anyone who wants a simple plugin that creates wonderful testimonial sliders

They should tell you the free version is not responsive before you spend an hour setting it up.

Read all 68 reviews

“Testimonial Slider” is open source software. The following people have contributed to this plugin.

Contributors

CVE-2022-44741: Testimonial Slider

Rapid remedy follows reawakening of long-dormant bug threat

Rapid remedy follows reawakening of long-dormant bug threat

A critical vulnerability arising from improper input validation has been addressed in XMLDOM, the JavaScript implementation of W3C DOM for Node.js, Rhino, and browsers.

The flawed behavior was seemingly first flagged as potentially in need of remedy in 2016. But it was only with the recent discovery of an authentication bypass in Passport-SAML, the SAML 2.0 authentication provider for Node.js library Passport, that XMLDOM maintainers tackled the root cause of the problem.

“Xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the childNodes collection of the Document, without reporting any error or throwing,” an XMLDOM advisory published on November 1 explained.

**Breaking the assumption**

“This breaks the assumption that there is only a single root node in the tree,” it continues, and poses “a potential issue for dependents”.

The bug was assigned CVE-2022-39353 and a severity rating of CVSS 9.4 by GitHub CVE Numbering Authority, later uprated in severity to CVSS 9.8 by the NIST National Vulnerability Database.

XMLDOM is widely used, with NPM detecting 2.8 million weekly downloads (albeit caveats apply regarding the accuracy of download counts).

DON’T MISS Gatsby patches SSRF, XSS bugs in Cloud Image CDN

Kurt Boberg, a maintainer on the project, told The Daily Swig: “Any security-critical workflow that accepts partial signatures on XML and reads a child node is likely affected by this issue.

“The core problem is that you can supply two XML documents to a request (one valid, one forged) and as long as the validator accepts the legitimate one, a property read via xmldom can potentially read a node value out of the forged document.”

**Passport-SAML bypass**

Passport-SAML, which has 167,000 weekly NPM downloads, mishandled cryptographic signature verification because of the XMLDOM flaw. Tracked as CVE-2022-39299, the high severity Passport-SAML issue potentially enabled an attacker “to bypass SAML authentication on a website using passport-saml,” The CVE description said.

“A successful attack requires that the attacker is in possession of an arbitrary IDP signed XML element. Depending on the IDP used, fully unauthenticated attacks (e.g without access to a valid user) might also be feasible if generation of a signed message can be triggered.”

The bug, assigned a severity score of CVSS 8.1, was patched on October 11.

**‘Worst possible outcome’**

Asked what other damage an attacker might potentially cause downstream of the XMLDOM bug, Boberg said it “really depends on the expectations around the XML parsing. The aforementioned SAML issue is pretty much the worst possible outcome.

Read more of the latest cybersecurity vulnerability news

“It really hinges on the parsing application making a security decision based on XML input from the user that it expects to be signed. It’s like stapling an additional page to a notarized document, and passing it through a verification process that only checks if the first page is notarized.”

He added: “The downstream impact depends entirely on what the legitimate document would let you do.”

**Path to a patch**

The related GitHub bug thread began in 2016, when an XMLDOM maintainer said the issue “appears to me to be a violation of the W3C DOM Level 2 Core Specification”.

Speculating that the flaw “might be a ‘false-positive’ bug”, he suggested “there is some utility in being able to parse multiple documents in a single stream, if the API can be re-tooled just a bit”. He also described doing so “silently without issuing even so much as a warning to consumers” as “odd”.

The thread then remained dormant until the emergence of the Passport-SAML vulnerability and its root cause quickly became apparent, prompting the rapid deployment of patches within @xmldom/xmldom NPM versions 0.7.7, 0.8.4, and 0.9.0-beta.4, together with mitigations, fix details, and advice to developers to align with the specs to avoid code breakage.

YOU MIGHT ALSO LIKE OpenSSL vulnerability downgraded to ‘high’ severity

Passport-SAML auth bypass triggers fix of critical, upstream XMLDOM bug

AppSec and Cybersecurity veteran will leverage his strong institutional experience as demand for crowdsourced cybersecurity solutions grows.

**SAN FRANCISCO, Nov. 8, 2022 /PRNewswire/ —** Bugcrowd, the leader in crowdsourced cybersecurity, today announced the appointment of Dave Gerry as Chief Executive Officer (CEO). As CEO, Gerry will oversee operations, drive growth and profitability, and manage the company's overall strategy. This appointment follows another year of rapid growth for the company, which has experienced record customer adoption of its crowdsourced cybersecurity solutions and represents the next step in Bugcrowd's global expansion strategy. Bugcrowd partners with hundreds of clients including: CISA/Department of Homeland Security, BigCommerce, Monash University, TX Group, and Comcast.

"Security organizations are facing an incredible challenge securing their companies in the digital era," said Gerry. "Now, more than ever, there is a need for continuous, real-time vulnerability insights across today's expanding digital attack surface. Bugcrowd has pioneered crowdsourced security through a platform-powered approach that connects the untapped talent of the global security community into an organization's security strategy in a trusted, efficient way. Our innovation is second to none in the cybersecurity industry and I'm excited to lead the company in its next growth stage."

Gerry is a highly regarded technology executive with a proven track record of leadership at several high-growth companies in the AppSec space. Most recently, Gerry served as Chief Operating Officer at Bugcrowd. Prior to Bugcrowd, Gerry was the Chief Revenue Officer and Head of Global Operations of WhiteHat Security which was first acquired by NTT and most recently by Synopsys. Previously, he held key growth-driving positions in sales, marketing, and business development at Veracode and Sumo Logic.

"From our inception, the mission of the Bugcrowd platform has been to connect the latent potential of the good-faith hacker community with cybersecurity's unmet demands—unlocking an army of allies to outsmart an army of adversaries," said Casey Ellis, Founder, Chairperson, and CTO. "In 2022 the need for this has never been more obvious. As the Board considered the best CEO to lead Bugcrowd's coming season of acceleration and innovation, Dave's track record of operational excellence, deep cybersecurity experience, go-to-market and partnership prowess, and profound enthusiasm for the space our company pioneered all shone through. Personally, I'm thrilled to welcome him to the CEO role, and very excited to partner with him in continuing to level the cybersecurity playing field."

"After considering and interviewing several candidates for the job, it became obvious Dave is the clear choice to lead Bugcrowd," said Mike Jennings, Venture Partner, Rally Ventures. "In addition to the knowledge that Dave has gathered since joining Bugcrowd, he brings strong institutional experience in cybersecurity making him a natural fit for the CEO role. He is a proven leader with over a decade of experience in the AppSec market, and his familiarity with Bugcrowd allows him to seamlessly assume the new responsibilities of the position. We are confident that he is well-positioned to lead the team in accelerating Bugcrowd's growth strategy moving forward."

Gerry will help Bugcrowd continue its momentum after recently announcing the appointment of Robert Taccini as Chief Financial Officer. To learn more about how some of the biggest brands in the world rely on Bugcrowd, visit www.bugcrowd.com/customers.

"Bugcrowd" is a trademark of Bugcrowd Inc. and its subsidiaries. All other trademarks, trade names, service marks and logos referenced herein belong to their respective companies.

**About Bugcrowd**

Bugcrowd is the leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world. Today's enterprise demands an offensive approach to cybersecurity—and Bugcrowd offers the only solution that orchestrates data, technology, and human intelligence to expose blind spots. The Bugcrowd Security Knowledge Platform™ enables businesses to do everything proactively possible to protect their organization, reputation and customers with products like Bug Bounty, Penetration Testing-as-a-Service, and more. Trusted by organizations across the globe, Bugcrowd uncovers and remediates vulnerabilities before they interrupt business by leveraging expert ingenuity and the knowledge of world-class security researchers. Based in San Francisco, Bugcrowd is backed by Blackbird Ventures, Costanoa Ventures, Industry Ventures, Paladin Capital Group, Rally Ventures, Salesforce Ventures and Triangle Peak Partners. Learn more at www.bugcrowd.com.

Bugcrowd Names David Gerry Chief Executive Officer

Red Hat Security Advisory 2022-7793-01 - The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Issues addressed include a buffer over-read vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: rsync security and enhancement update  
Advisory ID:       RHSA-2022:7793-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7793  
Issue date:        2022-11-08  
CVE Names:         CVE-2022-37434  
====================================================================  
1. Summary:

An update for rsync is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The rsync utility enables the users to copy and synchronize files locally  
or across a network. Synchronization with rsync is fast because rsync only  
sends the differences in files over the network instead of sending whole  
files. The rsync utility is also used as a mirroring tool.

Security Fix(es):

* zlib: heap-based buffer over-read and overflow in inflate() in inflate.c  
via a large gzip header extra field (CVE-2022-37434)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat  
Enterprise Linux 8.7 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2043753 - [RFE] Improve defaults for sparse file buffering.  
2116639 - CVE-2022-37434 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

6. Package List:

Red Hat Enterprise Linux BaseOS (v. 8):

Source:  
rsync-3.1.3-19.el8.src.rpm

aarch64:  
rsync-3.1.3-19.el8.aarch64.rpm  
rsync-debuginfo-3.1.3-19.el8.aarch64.rpm  
rsync-debugsource-3.1.3-19.el8.aarch64.rpm

noarch:  
rsync-daemon-3.1.3-19.el8.noarch.rpm

ppc64le:  
rsync-3.1.3-19.el8.ppc64le.rpm  
rsync-debuginfo-3.1.3-19.el8.ppc64le.rpm  
rsync-debugsource-3.1.3-19.el8.ppc64le.rpm

s390x:  
rsync-3.1.3-19.el8.s390x.rpm  
rsync-debuginfo-3.1.3-19.el8.s390x.rpm  
rsync-debugsource-3.1.3-19.el8.s390x.rpm

x86_64:  
rsync-3.1.3-19.el8.x86_64.rpm  
rsync-debuginfo-3.1.3-19.el8.x86_64.rpm  
rsync-debugsource-3.1.3-19.el8.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-37434  
https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2pSJ9zjgjWX9erEAQhctA/+LG9CKJG+ronMeYqaYry5AZbiLDWwxSoI  
N2WXEREzS8K0QNNPXpDVUGvaPcH45veL2eSxboIyarv9HzYrgB9QmEMB6TlLQdah  
T0bign9+51kyZXzP+QNxO09pv5ps0AUTZADy67pw2YCz3/NFVLKxAY35BoyBS7po  
eqvWSQXYrNjFzDrDfPL8hpPBQN+l6fZ4d3loF9aq06DNC/LYIDJ68JJLTkiwehjV  
ad/MqywMu26entrvK/CO1veaQkWi64WeKQSC8lCf97HONvgQKk75xJ20Z6p/RNou  
82WQd2pKa9m6NwZPgIA6H+/S2yNGZnDLHitWzT5V7OfPpoOrh1sQnReuhT0F8bXh  
vsoGCyj+aVO/J4o/CdxWIcGxjd6SPx5wnmQPUdRNgbL/tBIxUIHjLj2CDrHgIH8S  
YikOcfquQ6os9OPdVS6P2KIIZJngmwCrxoJgk6fIgSSh+KcVhvjtLsqV6juGpuPw  
Jp0PK86R11LwjvCIHHUZbvTTIa4zpsQw+PQyIIv0N3qxnji5iog90zAm4MmTvjnA  
OJJu8CX1ayVzSc4Vh5wzDVaJG5wneHvVKmEa39OF+RGOB8vx5Dvn3dLFZNdK5Uko  
qINCliFhY2+nAj0wkUyhi8a2Ycsllerh4U5suqigGtzQXU6+hF9le2qymERCmkaT  
VzceG5KCVt4=u5mb  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7793-01

Red Hat Security Advisory 2022-7813-01 - The zlib packages provide a general-purpose lossless data compression library that is used by many different programs.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Important: mingw-zlib security update  
Advisory ID:       RHSA-2022:7813-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7813  
Issue date:        2022-11-08  
CVE Names:         CVE-2018-25032  
====================================================================  
1. Summary:

An update for mingw-zlib is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat CodeReady Linux Builder (v. 8) - noarch

3. Description:

The zlib packages provide a general-purpose lossless data compression  
library that is used by many different programs.

Security Fix(es):

* zlib: A flaw found in zlib when compressing (not decompressing) certain  
inputs (CVE-2018-25032)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat  
Enterprise Linux 8.7 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2067945 - CVE-2018-25032 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

6. Package List:

Red Hat CodeReady Linux Builder (v. 8):

Source:  
mingw-zlib-1.2.8-10.el8.src.rpm

noarch:  
mingw32-zlib-1.2.8-10.el8.noarch.rpm  
mingw32-zlib-debuginfo-1.2.8-10.el8.noarch.rpm  
mingw32-zlib-static-1.2.8-10.el8.noarch.rpm  
mingw64-zlib-1.2.8-10.el8.noarch.rpm  
mingw64-zlib-debuginfo-1.2.8-10.el8.noarch.rpm  
mingw64-zlib-static-1.2.8-10.el8.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2018-25032  
https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2pSGdzjgjWX9erEAQgUwA/+I0Yfh7SE/3ex1OCbDRi+Y7TQV6LPIfaY  
Wf+3Kq1gTm3ApB7ZgN8oTrIEfIN/NjQ+NUKhLM6X3jEi8gVxzZloOnk3B6liK1wg  
0N3LY0PW1VdJB44WaX/ZfB/vu2sTEJfux9CgKphAm10G7vIv9gxlbRRZ8+vRXeMN  
/ATsBoATo8OaK9yzAMBLnSpbxHJvimEr0AGoU4ixZTeF91p9ypMT59yuF+GmOu+r  
Qw7DxvJSnhrz2RrekBuBCqli84SzM8y9w8PCPojrIuIkcZDmZfgXhplAgZNCs2Tm  
j8KGbjHawDhgHQEs5zHJMI+3uBjsrm6bq9G81qdUQto8o/GmLkZj36B6CpmSfk6Z  
lIUItBHDd9gEt4aHNJzBoOIPUq6KMyKqOK20t4o95Nx+Uyoww6VQoVfDaGS+x/Th  
DIufW2cA53/3r47jF91Hm2365WkEKfF2Jx1oAJFdBwaaIp2JRk0WtKkHOmsDN1//  
h0dMMMo/+sUeIAHBz0xpiP9AMLhujmCPfObU29GaB2HNPhz7SffcE6vDPs2Zq6pC  
DwivNCrBfiVDfPpC2CMwK0FZSuV3UFq56MeCbSMaqUczsPWWxESeEVxOV9AJXl6Y  
jhyoYbtM1/n8L05zLXU7d50ig6oKZ/eZoMULg7Q2LboKYjWMk0+ashgqhdOigTup  
tIaNurRUEawioM  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2022-7813-01

Red Hat Security Advisory 2022-7647-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include buffer overflow, denial of service, information leakage, and out of bounds read vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: httpd:2.4 security update  
Advisory ID:       RHSA-2022:7647-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:7647  
Issue date:        2022-11-08  
CVE Names:         CVE-2022-22719 CVE-2022-22721 CVE-2022-23943  
                   CVE-2022-26377 CVE-2022-28614 CVE-2022-28615  
                   CVE-2022-29404 CVE-2022-30522 CVE-2022-30556  
                   CVE-2022-31813  
====================================================================  
1. Summary:

An update for the httpd:2.4 module is now available for Red Hat Enterprise  
Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The httpd packages provide the Apache HTTP Server, a powerful, efficient,  
and extensible web server.

Security Fix(es):

* httpd: mod_sed: Read/write beyond bounds (CVE-2022-23943)

* httpd: mod_lua: Use of uninitialized value of in r:parsebody  
(CVE-2022-22719)

* httpd: core: Possible buffer overflow with very large or unlimited  
LimitXMLRequestBody (CVE-2022-22721)

* httpd: mod_proxy_ajp: Possible request smuggling (CVE-2022-26377)

* httpd: mod_lua: DoS in r:parsebody (CVE-2022-29404)

* httpd: mod_sed: DoS vulnerability (CVE-2022-30522)

* httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism  
(CVE-2022-31813)

* httpd: Out-of-bounds read via ap_rwrite() (CVE-2022-28614)

* httpd: Out-of-bounds read in ap_strcmp_match() (CVE-2022-28615)

* httpd: mod_lua: Information disclosure with websockets (CVE-2022-30556)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat  
Enterprise Linux 8.7 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted  
automatically.

5. Bugs fixed (https://bugzilla.redhat.com/):

2064319 - CVE-2022-23943 httpd: mod_sed: Read/write beyond bounds  
2064320 - CVE-2022-22721 httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody  
2064322 - CVE-2022-22719 httpd: mod_lua: Use of uninitialized value of in r:parsebody  
2094997 - CVE-2022-26377 httpd: mod_proxy_ajp: Possible request smuggling  
2095002 - CVE-2022-28614 httpd: Out-of-bounds read via ap_rwrite()  
2095006 - CVE-2022-28615 httpd: Out-of-bounds read in ap_strcmp_match()  
2095012 - CVE-2022-29404 httpd: mod_lua: DoS in r:parsebody  
2095015 - CVE-2022-30522 httpd: mod_sed: DoS vulnerability  
2095018 - CVE-2022-30556 httpd: mod_lua: Information disclosure with websockets  
2095020 - CVE-2022-31813 httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:  
httpd-2.4.37-51.module+el8.7.0+16050+02173b8e.src.rpm  
mod_http2-1.15.7-5.module+el8.6.0+13996+01710940.src.rpm  
mod_md-2.0.8-8.module+el8.3.0+6814+67d1e611.src.rpm

aarch64:  
httpd-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
httpd-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
httpd-debugsource-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
httpd-devel-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
httpd-tools-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
httpd-tools-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_http2-1.15.7-5.module+el8.6.0+13996+01710940.aarch64.rpm  
mod_http2-debuginfo-1.15.7-5.module+el8.6.0+13996+01710940.aarch64.rpm  
mod_http2-debugsource-1.15.7-5.module+el8.6.0+13996+01710940.aarch64.rpm  
mod_ldap-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_ldap-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_md-2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64.rpm  
mod_md-debuginfo-2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64.rpm  
mod_md-debugsource-2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64.rpm  
mod_proxy_html-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_proxy_html-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_session-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_session-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_ssl-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm  
mod_ssl-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.aarch64.rpm

noarch:  
httpd-filesystem-2.4.37-51.module+el8.7.0+16050+02173b8e.noarch.rpm  
httpd-manual-2.4.37-51.module+el8.7.0+16050+02173b8e.noarch.rpm

ppc64le:  
httpd-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
httpd-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
httpd-debugsource-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
httpd-devel-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
httpd-tools-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
httpd-tools-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_http2-1.15.7-5.module+el8.6.0+13996+01710940.ppc64le.rpm  
mod_http2-debuginfo-1.15.7-5.module+el8.6.0+13996+01710940.ppc64le.rpm  
mod_http2-debugsource-1.15.7-5.module+el8.6.0+13996+01710940.ppc64le.rpm  
mod_ldap-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_ldap-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_md-2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le.rpm  
mod_md-debuginfo-2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le.rpm  
mod_md-debugsource-2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le.rpm  
mod_proxy_html-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_proxy_html-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_session-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_session-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_ssl-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm  
mod_ssl-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.ppc64le.rpm

s390x:  
httpd-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
httpd-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
httpd-debugsource-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
httpd-devel-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
httpd-tools-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
httpd-tools-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_http2-1.15.7-5.module+el8.6.0+13996+01710940.s390x.rpm  
mod_http2-debuginfo-1.15.7-5.module+el8.6.0+13996+01710940.s390x.rpm  
mod_http2-debugsource-1.15.7-5.module+el8.6.0+13996+01710940.s390x.rpm  
mod_ldap-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_ldap-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_md-2.0.8-8.module+el8.3.0+6814+67d1e611.s390x.rpm  
mod_md-debuginfo-2.0.8-8.module+el8.3.0+6814+67d1e611.s390x.rpm  
mod_md-debugsource-2.0.8-8.module+el8.3.0+6814+67d1e611.s390x.rpm  
mod_proxy_html-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_proxy_html-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_session-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_session-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_ssl-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm  
mod_ssl-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.s390x.rpm

x86_64:  
httpd-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
httpd-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
httpd-debugsource-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
httpd-devel-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
httpd-tools-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
httpd-tools-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_http2-1.15.7-5.module+el8.6.0+13996+01710940.x86_64.rpm  
mod_http2-debuginfo-1.15.7-5.module+el8.6.0+13996+01710940.x86_64.rpm  
mod_http2-debugsource-1.15.7-5.module+el8.6.0+13996+01710940.x86_64.rpm  
mod_ldap-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_ldap-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_md-2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64.rpm  
mod_md-debuginfo-2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64.rpm  
mod_md-debugsource-2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64.rpm  
mod_proxy_html-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_proxy_html-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_session-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_session-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_ssl-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm  
mod_ssl-debuginfo-2.4.37-51.module+el8.7.0+16050+02173b8e.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-22719  
https://access.redhat.com/security/cve/CVE-2022-22721  
https://access.redhat.com/security/cve/CVE-2022-23943  
https://access.redhat.com/security/cve/CVE-2022-26377  
https://access.redhat.com/security/cve/CVE-2022-28614  
https://access.redhat.com/security/cve/CVE-2022-28615  
https://access.redhat.com/security/cve/CVE-2022-29404  
https://access.redhat.com/security/cve/CVE-2022-30522  
https://access.redhat.com/security/cve/CVE-2022-30556  
https://access.redhat.com/security/cve/CVE-2022-31813  
https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBY2pSVdzjgjWX9erEAQjeQQ/9HLdj+CQQi/1gKtbOj+m9kscI7Mqeb/7S  
7N/UEFvrH/HI5SEcL8QIIvE/OweXHJHK6/njUOOTdO4fHjWJ9ZxbMCxCBMdqQhrn  
YHPB//XGIHy0Myo5+iXcOdpKiIlZTubrNTXglyriKf7UJTWKtYb71t5xwLQV9U5T  
2zbGrGpkVwU20N3Oy4mHHQs7nvuqb21waxwpr54gIVzMkfQnYc5d9rLYwsrddZEi  
dPeqH2AVHAU7TvwNPjKrZudC2X0k3p4r/sYu3Tksp7C2Qo10/x7ekcFYEqZfhYcK  
xsyEq0qqVYM1v7SC8MTCmFp9nx1zuHzAcH3r2kXwtG3dSXiHmA3/HYen8k8qFM8L  
fX/XH9lVckvpruoGi4I5bsS0plO1IuOz70MFVh+ImgtrCzvDH/tNxHA/0tKlDDao  
lvIg9KOKlH/y/J1SofUP26Pfcyhwo4gZdjOYCghsWtLIWEYgcawZn3ooPM//xA5w  
Lb5/cSDlmEv6MnG8tbJ9IGsG9W15/A9Jqoyx+TEXyXRpBjqT9/ElvA88UA8uciKJ  
ZoHYmhJgn9C5dxnmweuCvXS+CnJaK8qgQ5lJy6OjeLgP2b7AB73TqEcuIJm2izvX  
wbJYUElIU9QDHihmK8c3qjiW4Kr0Bz5H56U6in6DKLuAKXqH2NpdHFOihDOg7Uzv  
muAF//BBtP4=x6q/  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Tag

#ssl