Red Hat Product Errata RHBA-2022:6459 - Bug Fix Advisory
Issued:
2022-09-13
Updated:
2022-09-13

RHBA-2022:6459 - Bug Fix Advisory

Synopsis

ca-certificates bug fix and enhancement update

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for ca-certificates is now available for Red Hat Enterprise Linux 8.

Description

The ca-certificates package contains a set of Certificate Authority (CA) certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure (PKI).

Bug Fix(es) and Enhancement(s):

  • Update ca-certificates package in RHEL-8.6.0.Z.MAIN+EUS to CA trust list version (2022) 2.54 from Firefox 102 (bug 2100189)
  • QuoVadis Root Certification Authority certificate is expired in March. (BZ#2118462)
  • Expiring O = Digital Signature Trust Co., CN = DST Root CA X3 (BZ#2118463)
  • ca-certificates need to add support for signing certs for .NET (BZ#2121485)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

  • BZ - 2100189 - Annual 2022 ca-certificates update version 2.54 from NSS 3.79 for Firefox 103 [rhel-8.6.0.z]
  • BZ - 2118462 - QuoVadis Root Certification Authority certificate is expired in March. [rhel-8.6.0.z]
  • BZ - 2118463 - Expiring O = Digital Signature Trust Co., CN = DST Root CA X3 [rhel-8.6.0.z]
  • BZ - 2121485 - ca-certificates need to add support for signing certs for .NET [rhel-8.6.0.z]

CVEs

(none)

References

(none)

Red Hat Enterprise Linux for x86_64 8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
s390x
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
s390x
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
s390x
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for Power, little endian 8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
ppc64le
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
ppc64le
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
ppc64le
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for ARM 64 8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
aarch64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
aarch64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
aarch64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
ppc64le
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
ppc64le
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
ca-certificates-2022.2.54-80.2.el8_6.src.rpm SHA-256: 8f562003ef43e76ba9c9671e90c986a42f03418dcefdff3dec176cb7db5edb48
x86_64
ca-certificates-2022.2.54-80.2.el8_6.noarch.rpm SHA-256: f919f03ff9531f0fb912925442d808b597fcafa798e04c605ba8debd18385b64

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.