Advisory for RedHat Security Updates

NIC-CERT/2022-12/513
Date: 2022-12-20
CVE ID: Multiple
Severity: High

Advisory for RedHat Security Updates

Description:

A vulnerability has been found in redhat products which could allow an attacker to take control of the affected system.

Security Issues Fixed:

Redhat has issued security advisories which contains important updates like OpenShift Container Platform 4.11.20 security update

Affected Products & Solution:

CVE

Product

Synopsis

CVE-2021-22570

CVE-2022-1158

CVE-2022-2639

CVE-2022-24302

CVE-2022-27191

CVE-2022-42010

CVE-2022-42011

CVE-2022-42012

CVE-2022-42898

Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64

Red Hat OpenShift Container Platform for Power 4.11 for RHEL 8 ppc64le

Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.11 for RHEL 8 s390x

Red Hat OpenShift Container Platform for ARM 64 4.11 aarch64

OpenShift Container Platform 4.11.20 security update

CVE-2022-1158

CVE-2022-2639

CVE-2022-2959

CVE-2022-43945

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

kpatch-patch security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 9 x86_64

Red Hat Enterprise Linux for IBM z Systems 9 s390x

Red Hat Enterprise Linux for Power, little endian 9 ppc64le

Red Hat Enterprise Linux for ARM 64 9 aarch64

thunderbird security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux Server 7 x86_64

Red Hat Enterprise Linux Workstation 7 x86_64

Red Hat Enterprise Linux Desktop 7 x86_64

Red Hat Enterprise Linux for Power, little endian 7 ppc64le

thunderbird security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

thunderbird security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64

thunderbird security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Red Hat Enterprise Linux Server - TUS 8.2 x86_64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64

thunderbird security update

CVE-2022-45414

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64

Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le

Red Hat Enterprise Linux Server - TUS 8.4 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64

thunderbird security update

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux Server 7 x86_64

Red Hat Enterprise Linux Workstation 7 x86_64

Red Hat Enterprise Linux Desktop 7 x86_64

Red Hat Enterprise Linux for IBM z Systems 7 s390x

Red Hat Enterprise Linux for Power, big endian 7 ppc64

Red Hat Enterprise Linux for Power, little endian 7 ppc64le

firefox security update

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Red Hat Enterprise Linux Server - TUS 8.2 x86_64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64

firefox security update

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64

Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le

Red Hat Enterprise Linux Server - TUS 8.4 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64

firefox security update

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64

Red Hat Enterprise Linux Server - AUS 8.6 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le

Red Hat Enterprise Linux Server - TUS 8.6 x86_64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

firefox security update

CVE-2022-46872

CVE-2022-46874

CVE-2022-46878

CVE-2022-46880

CVE-2022-46881

CVE-2022-46882

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64

Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.0 aarch64

Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.0 s390x

firefox security update

CVE-2022-1471

CVE-2022-42003

CVE-2022-42004

Red Hat Openshift Application Runtimes Text-Only Advisories x86_64

Red Hat build of Eclipse Vert.x 4.3.4 security update

CVE-2022-42898

Red Hat Virtualization 4 for RHEL 8 x86_64

Red Hat Virtualization Host 4 for RHEL 8 x86_64

Red Hat Virtualization Host security update [ovirt-4.5.3-3]

CVE-2020-5404

CVE-2021-4178

CVE-2021-22569

CVE-2022-1259

CVE-2022-1319

CVE-2022-22950

Red Hat Openshift Application Runtimes Text-Only Advisories x86_64

Red Hat support for Spring Boot 2.7.2 update

CVE-2022-3171

CVE-2022-4116

CVE-2022-4147

CVE-2022-31197

CVE-2022-37734

CVE-2022-42003

CVE-2022-42004

CVE-2022-42889

Red Hat Build of Quarkus Text-Only Advisories x86_64

Red Hat build of Quarkus 2.13.5 release and security update

Users are advised to visit following URL and follow the steps to apply fixes.

https://access.redhat.com/articles/11258

References:

https://access.redhat.com/security/security-updates/#/

https://access.redhat.com/security/updates/classification/#important