Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:3444-1

Опубликовано: 15 окт. 2021
Источник: suse-cvrf

Описание

Security update for rpm

This update for rpm fixes the following issues:

Security issues fixed:

  • CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements (bsc#1183543, bsc#1183545, bsc#1183632)
  • PGP hardening changes (bsc#1185299)
  • Fixed potential access of freed mem in ndb's glue code (bsc#1179416)

Maintaince issues fixed:

  • Fixed zstd detection (bsc#1187670)
  • Added ndb rofs support (bsc#1188548)
  • Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659)

Список пакетов

Container ses/7/ceph/grafana:latest
rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-alertmanager:latest
rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-node-exporter:latest
rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-server:latest
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/cephcsi:latest
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-attacher:v3.3.0
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-livenessprobe:v1.1.0
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-node-driver-registrar:v2.3.0
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-provisioner:v3.0.0
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-resizer:v1.3.0
rpm-4.14.1-22.4.2
Container ses/7/cephcsi/csi-snapshotter:v4.2.0
rpm-4.14.1-22.4.2
Container ses/7/prometheus-webhook-snmp:latest
rpm-4.14.1-22.4.2
Container ses/7/rook/ceph:latest
rpm-4.14.1-22.4.2
Container suse/sle15:15.2
rpm-4.14.1-22.4.2
Image SLES15-SP2-BYOS-Azure
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-BYOS-EC2-HVM
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-BYOS-GCE
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-CHOST-BYOS-Aliyun
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-CHOST-BYOS-Azure
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-CHOST-BYOS-EC2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-CHOST-BYOS-GCE
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-HPC-BYOS-Azure
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-HPC-BYOS-EC2-HVM
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
python2-rpm-4.14.1-22.4.1
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
python2-rpm-4.14.1-22.4.1
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
python2-rpm-4.14.1-22.4.1
python3-rpm-4.14.1-22.4.1
rpm-build-4.14.1-22.4.2
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-Azure
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-BYOS-Azure
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-BYOS-EC2-HVM
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-BYOS-GCE
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-EC2-HVM
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
Image SLES15-SP2-SAP-GCE
python3-rpm-4.14.1-22.4.1
rpm-ndb-4.14.1-22.4.2
SUSE Linux Enterprise Micro 5.0
python3-rpm-4.14.1-22.4.1
rpm-4.14.1-22.4.2
SUSE Linux Enterprise Module for Basesystem 15 SP2
python3-rpm-4.14.1-22.4.1
rpm-4.14.1-22.4.2
rpm-32bit-4.14.1-22.4.2
rpm-devel-4.14.1-22.4.2
SUSE Linux Enterprise Module for Development Tools 15 SP2
rpm-build-4.14.1-22.4.2
SUSE Linux Enterprise Module for Public Cloud 15 SP2
rpm-ndb-4.14.1-22.4.2
SUSE Linux Enterprise Module for Python 2 15 SP2
python2-rpm-4.14.1-22.4.1
SUSE Manager Proxy Module 4.1
rpm-build-4.14.1-22.4.2
SUSE Manager Server Module 4.1
rpm-build-4.14.1-22.4.2

Ссылки

Описание

A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.

Затронутые продукты
Container ses/7/ceph/grafana:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-alertmanager:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-node-exporter:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-server:latest:rpm-4.14.1-22.4.2
Ссылки

Описание

A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability.

Затронутые продукты
Container ses/7/ceph/grafana:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-alertmanager:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-node-exporter:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-server:latest:rpm-4.14.1-22.4.2
Ссылки

Описание

A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity. This flaw affects RPM versions before 4.17.0-alpha.

Затронутые продукты
Container ses/7/ceph/grafana:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-alertmanager:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-node-exporter:latest:rpm-4.14.1-22.4.2
Container ses/7/ceph/prometheus-server:latest:rpm-4.14.1-22.4.2
Ссылки
Уязвимость SUSE-SU-2021:3444-1