Advisory for RedHat Security Updates

  • NIC-CERT/2022-08/339
  • Date: 2022-08-03
  • CVE ID: Multiple
  • Severity: High

A. Description:

A vulnerability has been found in redhat products which could allow an attacker to take control of the affected system.

B. Security Issues Fixed:

Red Hat has rolled out various security updates which consist of go-toolset, java, vim, maria-db, kernel, openssl.

C. Affected Products & Solution:

CVE

Product

Synopsis

CVE-2022-1705

CVE-2022-1962

CVE-2022-28131

CVE-2022-30630

CVE-2022-30631

CVE-2022-30632

CVE-2022-30633

CVE-2022-30635

CVE-2022-32148

Red Hat Developer Tools (for RHEL Workstation) 1 x86_64

Red Hat Developer Tools (for RHEL Server) 1 x86_64

Red Hat Developer Tools (for RHEL Server for System Z) 1 s390x

Red Hat Developer Tools (for RHEL Server for IBM Power LE) 1 ppc64le

go-toolset-1.17 and go-toolset-1.17-golang security and bug fix update

CVE-2018-25032

CVE-2018-1000858

CVE-2019-13050

CVE-2019-17594

CVE-2019-17595

CVE-2019-18218

CVE-2019-20838

CVE-2020-14155

CVE-2020-28915

CVE-2020-29361

CVE-2020-29362

CVE-2020-29363

CVE-2021-36084

CVE-2021-36085

CVE-2021-36086

CVE-2021-36087

CVE-2021-40528

CVE-2021-41617

CVE-2022-0778

CVE-2022-1271

CVE-2022-1365

CVE-2022-1621

CVE-2022-1629

CVE-2022-22576

CVE-2022-24407

CVE-2022-24675

CVE-2022-25313

CVE-2022-25314

CVE-2022-27666

CVE-2022-27774

CVE-2022-27776

CVE-2022-27782

CVE-2022-28327

CVE-2022-29526

CVE-2022-29824

Red Hat Migration Toolkit 1 for RHEL 8 x86_64

Red Hat Migration Toolkit 1 for RHEL 7 x86_64

Migration Toolkit for Containers (MTC) 1.7.3 security and bug fix update

CVE-2022-32250

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

kpatch-patch security update

CVE-2021-35561

CVE-2022-21434

CVE-2022-21443

CVE-2022-21496

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems 8 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux for Power, little endian 8 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le

java-1.8.0-ibm security update

CVE-2022-1012

CVE-2022-32250

Red Hat Enterprise Linux for Real Time 8 x86_64

Red Hat Enterprise Linux for Real Time for NFV 8 x86_64

kernel-rt security and bug fix update

CVE-2021-46659

CVE-2021-46661

CVE-2021-46663

CVE-2021-46664

CVE-2021-46665

CVE-2021-46668

CVE-2021-46669

CVE-2022-24048

CVE-2022-24050

CVE-2022-24051

CVE-2022-24052

CVE-2022-27376

CVE-2022-27377

CVE-2022-27378

CVE-2022-27379

CVE-2022-27380

CVE-2022-27381

CVE-2022-27382

CVE-2022-27383

CVE-2022-27384

CVE-2022-27386

CVE-2022-27387

CVE-2022-27444

CVE-2022-27445

CVE-2022-27446

CVE-2022-27447

CVE-2022-27448

CVE-2022-27449

CVE-2022-27451

CVE-2022-27452

CVE-2022-27455

CVE-2022-27456

CVE-2022-27457

CVE-2022-27458

CVE-2022-31622

CVE-2022-31623

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

mariadb:10.5 security, bug fix, and enhancement update

CVE-2022-0918

CVE-2022-0996

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

389-ds:1.4 security update

CVE-2021-4206

CVE-2021-4207

CVE-2022-26353

CVE-2022-26354

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

CVE-2022-1012

CVE-2022-32250

Red Hat Virtualization Host 4 for RHEL 8 x86_64

kernel security and bug fix update

CVE-2022-1785

CVE-2022-1897

CVE-2022-1927

Red Hat Virtualization Host 4 for RHEL 8 x86_64

vim security update

CVE-2022-1729

CVE-2022-32250

Red Hat Enterprise Linux Server - AUS 7.3 x86_64

kernel security update

CVE-2022-32250

Red Hat Enterprise Linux Server - AUS 7.4 x86_64

Red Hat Enterprise Linux Server - AUS 7.6 x86_64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.6 x86_64

Red Hat Enterprise Linux Server - AUS 7.6 x86_64

Red Hat Enterprise Linux Server - TUS 7.6 x86_64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 7.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 7.6 x86_64

kernel security update

CVE-2022-1292

CVE-2022-2068

CVE-2022-2097

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems 8 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

openssl security update

CVE-2022-1586

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems 8 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

pcre2 security update

CVE-2020-29368

CVE-2021-4197

CVE-2021-4203

CVE-2022-1012

CVE-2022-1729

CVE-2022-21540

CVE-2022-21541

CVE-2022-23772

CVE-2022-24675

CVE-2022-24921

CVE-2022-32250

CVE-2022-34169

Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64

Red Hat OpenShift Container Platform for Power 4.10 for RHEL 8 ppc64le

Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.10 for RHEL 8 s390x

Red Hat OpenShift Container Platform for ARM 64 4.10 aarch64

OpenShift Container Platform 4.10.25 bug fix and security update

CVE-2022-24675

CVE-2022-24921

Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64

Red Hat OpenShift Container Platform 4.10 for RHEL 7 x86_64

Red Hat OpenShift Container Platform for Power 4.10 for RHEL 8 ppc64le

Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.10 for RHEL 8 s390x

Red Hat OpenShift Container Platform for ARM 64 4.10 aarch64

OpenShift Container Platform 4.10.25 security update

CVE-2021-41817

CVE-2021-41819

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

ruby:2.5 security update

CVE-2022-2505

CVE-2022-36318

CVE-2022-36319

Red Hat Enterprise Linux for x86_64 9 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64

Red Hat Enterprise Linux for IBM z Systems 9 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems 8 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux for Power, little endian 8 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Red Hat Enterprise Linux Server 7 x86_64

Red Hat Enterprise Linux Workstation 7 x86_64

Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64

Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le

Red Hat Enterprise Linux Server - TUS 8.4 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le

Red Hat Enterprise Linux Server - TUS 8.2 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64

Red Hat Enterprise Linux for x86_64 9 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64

Red Hat Enterprise Linux for IBM z Systems 9 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x

Red Hat Enterprise Linux for Power, little endian 9 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le

Red Hat Enterprise Linux for ARM 64 9 aarch64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.0 aarch64

Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.0 s390x

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.2 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le

Red Hat Enterprise Linux Server - TUS 8.2 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64

thunderbird security update

CVE-2022-1705

CVE-2022-1962

CVE-2022-28131

CVE-2022-30630

CVE-2022-30631

CVE-2022-30632

CVE-2022-30633

CVE-2022-30635

CVE-2022-32148

Red Hat Enterprise Linux for x86_64 8 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems 8 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux for Power, little endian 8 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for ARM 64 8 aarch64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Red Hat Enterprise Linux for x86_64 9 x86_64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64

Red Hat Enterprise Linux for IBM z Systems 9 s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x

Red Hat Enterprise Linux for Power, little endian 9 ppc64le

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le

Red Hat Enterprise Linux for ARM 64 9 aarch64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.0 aarch64

Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.0 s390x

go-toolset:rhel8 security and bug fix update

Users are advised to visit following URL and follow the steps to apply fixes.

https://access.redhat.com/articles/11258

D. References:

https://access.redhat.com/security/security-updates/#/

https://access.redhat.com/security/updates/classification/#important