ELSA-2024-5294

Опубликовано: 13 авг. 2024

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2024-5294: jose security update (MODERATE)

[10-2.3]

Backport fix for CVE-2024-28176 Resolves: RHEL-28719

[10-2.2]

Fix tests on s390x Related: RHEL-29857

[10-2.1]

Fixes CVE-2023-50967

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

jose

10-2.el8_10.3

libjose

10-2.el8_10.3

libjose-devel

10-2.el8_10.3

Oracle Linux x86_64

jose

10-2.el8_10.3

libjose

10-2.el8_10.3

libjose-devel

10-2.el8_10.3

Связанные CVE

CVE-2023-50967

CVE-2024-28176

Ссылки на источники

Связанные уязвимости

RLSA-2024:5294

rocky

2 месяца назад

Moderate: jose security update

ELSA-2024-9181

oracle-oval

8 месяцев назад

ELSA-2024-9181: jose security update (MODERATE)

CVE-2023-50967

CVSS3: 7.5

ubuntu

больше 1 года назад

latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.

CVE-2023-50967

CVSS3: 7.5

redhat

больше 1 года назад

latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.

CVE-2023-50967

CVSS3: 7.5

nvd

больше 1 года назад

latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.