Red Hat Product Errata RHSA-2020:1508 - Security Advisory
Issued:
2020-04-21
Updated:
2020-04-21

RHSA-2020:1508 - Security Advisory

Synopsis

Important: java-1.7.0-openjdk security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit.

Security Fix(es):

  • OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803)
  • OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805)
  • OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) (CVE-2020-2773)
  • OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) (CVE-2020-2781)
  • OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825) (CVE-2020-2800)
  • OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201) (CVE-2020-2830)
  • OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541) (CVE-2020-2756)
  • OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549) (CVE-2020-2757)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of OpenJDK Java must be restarted for this update to take effect.

Affected Products

  • Red Hat Enterprise Linux Server 6 x86_64
  • Red Hat Enterprise Linux Server 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
  • Red Hat Enterprise Linux Workstation 6 x86_64
  • Red Hat Enterprise Linux Workstation 6 i386
  • Red Hat Enterprise Linux Desktop 6 x86_64
  • Red Hat Enterprise Linux Desktop 6 i386
  • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386

Fixes

  • BZ - 1823215 - CVE-2020-2756 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)
  • BZ - 1823216 - CVE-2020-2757 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)
  • BZ - 1823224 - CVE-2020-2773 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)
  • BZ - 1823527 - CVE-2020-2800 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)
  • BZ - 1823542 - CVE-2020-2830 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)
  • BZ - 1823694 - CVE-2020-2803 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)
  • BZ - 1823844 - CVE-2020-2805 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)
  • BZ - 1823960 - CVE-2020-2781 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

Red Hat Enterprise Linux Server 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
i386
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: c1d8266a5344ad86fce18d246bb02b51fcb36f605f8b38a0af696385ce3d49d7
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 200005caabd4a8c095d8c8aa66327644f0292858b00f3d8f2ce24964315d36aa
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 5d9671dedd5f3ae5549a2b5e9f617d4fe5772dbc2b412030d49febb1a3637c40
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: b94834bffba8cc263350b1303809b93d0b8c471d7b775b2c51bc2e930888d880

Red Hat Enterprise Linux Server - Extended Life Cycle Support 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
i386
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: c1d8266a5344ad86fce18d246bb02b51fcb36f605f8b38a0af696385ce3d49d7
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 200005caabd4a8c095d8c8aa66327644f0292858b00f3d8f2ce24964315d36aa
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 5d9671dedd5f3ae5549a2b5e9f617d4fe5772dbc2b412030d49febb1a3637c40
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: b94834bffba8cc263350b1303809b93d0b8c471d7b775b2c51bc2e930888d880

Red Hat Enterprise Linux Workstation 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
i386
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: c1d8266a5344ad86fce18d246bb02b51fcb36f605f8b38a0af696385ce3d49d7
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 200005caabd4a8c095d8c8aa66327644f0292858b00f3d8f2ce24964315d36aa
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 5d9671dedd5f3ae5549a2b5e9f617d4fe5772dbc2b412030d49febb1a3637c40
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: b94834bffba8cc263350b1303809b93d0b8c471d7b775b2c51bc2e930888d880

Red Hat Enterprise Linux Desktop 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
i386
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: c1d8266a5344ad86fce18d246bb02b51fcb36f605f8b38a0af696385ce3d49d7
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 200005caabd4a8c095d8c8aa66327644f0292858b00f3d8f2ce24964315d36aa
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 5d9671dedd5f3ae5549a2b5e9f617d4fe5772dbc2b412030d49febb1a3637c40
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: b94834bffba8cc263350b1303809b93d0b8c471d7b775b2c51bc2e930888d880

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6

SRPM
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.src.rpm SHA-256: 299d0d4bb837f17d7fb32afbe81d3c6edd6298571b40841bee6dda44d1c111e9
x86_64
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: a2569724507ce266f4a92fc84ba5d06e6aac1c6f8ce850851538f8763b923556
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 27c299f1327fd08001e7248a146ca0ab5d3ea28529860597a5e00ea36c378c2b
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: e60e622e7a63ba8bcfb3ff9f4319ad14bcda3502012287207a2a1dab89bcbb7e
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: b9f317baa23364b0a38dd5cabae3700507744ef2ed5236baf1af29746a9d88c8
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.x86_64.rpm SHA-256: 0465cc53bc75c7ee8db3ee93c153d3a773da47f954ee5f52112ea9ba9243939e
i386
java-1.7.0-openjdk-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: c1d8266a5344ad86fce18d246bb02b51fcb36f605f8b38a0af696385ce3d49d7
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-debuginfo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: ebb9634137ad82aace414738c07e79446334c70c91c0120e51bcfc4a0e36f7c1
java-1.7.0-openjdk-demo-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 200005caabd4a8c095d8c8aa66327644f0292858b00f3d8f2ce24964315d36aa
java-1.7.0-openjdk-devel-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: 5d9671dedd5f3ae5549a2b5e9f617d4fe5772dbc2b412030d49febb1a3637c40
java-1.7.0-openjdk-javadoc-1.7.0.261-2.6.22.1.el6_10.noarch.rpm SHA-256: de8bee8cb82a29466bf0933b0e40735ef6806efe89a354c2122f57f46014f06a
java-1.7.0-openjdk-src-1.7.0.261-2.6.22.1.el6_10.i686.rpm SHA-256: b94834bffba8cc263350b1303809b93d0b8c471d7b775b2c51bc2e930888d880

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.