Описание
ELSA-2022-1851: pki-core:10.6 security and bug fix update (MODERATE)
jss [4.9.3-1]
- Rebase to JSS 4.9.3
- Bug 2046022 - CVE-2021-4213 pki-core:10.6/jss: memory leak in TLS connection leads to OOM [rhel-8]
[4.9.2-1]
- Rebase to JSS 4.9.2
ldapjdk [4.23.0-1]
- Rebase to LDAP SDK 4.23.0
[4.23.0-0.1]
- Rebase to LDAP SDK 4.23.0-alpha1
pki-core [10.12.0-2.0.1]
- Remove upstream reference.
[10.12.0-2]
- Bug 2027470 - pki-healthcheck ClonesConnectivyAndDataCheck fails
[10.12.0-0.1]
- Rebase to PKI 10.12.0
- Bug 1904112 - pki fails to start if empty dir /var/lib/pki/pki-tomcat/kra exists
- Bug 1984455 - [RFE] Date Format on the TPS Agent Page
- Bug 1980378 - 'keyctl_search: Required key not available' message when running 'ipa-healthcheck'
- Bug 2004084 - Reinstall of the same ipa-replica fails with 'RuntimeError: CA configuration failed.'
- Bug 2006070 - Upgrades incorrectly add secret attribute to connectors
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module pki-core:10.6 is enabled
jss
4.9.3-1.module+el8.6.0+20558+60d461b7
jss-javadoc
4.9.3-1.module+el8.6.0+20558+60d461b7
ldapjdk
4.23.0-1.module+el8.5.0+20349+9cc212a8
ldapjdk-javadoc
4.23.0-1.module+el8.5.0+20349+9cc212a8
pki-acme
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-base
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-base-java
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-ca
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-kra
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-server
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-symkey
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-tools
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
python3-pki
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
tomcatjss
7.7.1-1.module+el8.6.0+20558+60d461b7
Oracle Linux x86_64
Module pki-core:10.6 is enabled
jss
4.9.3-1.module+el8.6.0+20558+60d461b7
jss-javadoc
4.9.3-1.module+el8.6.0+20558+60d461b7
ldapjdk
4.23.0-1.module+el8.5.0+20349+9cc212a8
ldapjdk-javadoc
4.23.0-1.module+el8.5.0+20349+9cc212a8
pki-acme
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-base
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-base-java
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-ca
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-kra
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-server
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-symkey
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
pki-tools
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
python3-pki
10.12.0-2.0.1.module+el8.6.0+20558+60d461b7
tomcatjss
7.7.1-1.module+el8.6.0+20558+60d461b7
Связанные CVE
Связанные уязвимости
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an out-of-memory process, causing a denial of service.
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an out-of-memory process, causing a denial of service.
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an out-of-memory process, causing a denial of service.
A flaw was found in JSS, where it did not properly free up all memory. ...
