Описание
ELSA-2022-7326: pki-core security update (IMPORTANT)
[11.0.6-1.0.1]
- Replaced upstream graphical references [Orabug: 33952704]
[11.0.6-1]
- Bug #2107335 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE [rhel-9.0.0.z]
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
pki-acme
11.0.6-2.0.1.el9_0
pki-base
11.0.6-2.0.1.el9_0
pki-base-java
11.0.6-2.0.1.el9_0
pki-ca
11.0.6-2.0.1.el9_0
pki-kra
11.0.6-2.0.1.el9_0
pki-server
11.0.6-2.0.1.el9_0
pki-symkey
11.0.6-2.0.1.el9_0
pki-tools
11.0.6-2.0.1.el9_0
python3-pki
11.0.6-2.0.1.el9_0
Oracle Linux x86_64
pki-acme
11.0.6-2.0.1.el9_0
pki-base
11.0.6-2.0.1.el9_0
pki-base-java
11.0.6-2.0.1.el9_0
pki-ca
11.0.6-2.0.1.el9_0
pki-kra
11.0.6-2.0.1.el9_0
pki-server
11.0.6-2.0.1.el9_0
pki-symkey
11.0.6-2.0.1.el9_0
pki-tools
11.0.6-2.0.1.el9_0
python3-pki
11.0.6-2.0.1.el9_0
Связанные CVE
Связанные уязвимости
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Access to external entities when parsing XML documents can lead to XML ...
