Issued:: 2022-02-07
Updated:: 2022-02-07

RHSA-2022:0441 - Security Advisory

Overview
Updated Packages

Synopsis

Important: aide security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for aide is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Advanced Intrusion Detection Environment (AIDE) is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions.

Security Fix(es):

aide: heap-based buffer overflow on outputs larger than B64_BUF (CVE-2021-45417)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6 x86_64
Red Hat Enterprise Linux Server - AUS 8.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat Enterprise Linux Server - TUS 8.8 x86_64
Red Hat Enterprise Linux Server - TUS 8.6 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

BZ - 2041489 - CVE-2021-45417 aide: heap-based buffer overflow on outputs larger than B64_BUF

CVEs

CVE-2021-45417

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
s390x
aide-0.16-14.el8_5.1.s390x.rpm	SHA-256: 1b1cccdc9580ae5ffebe7fdb62e8391e78a16aebbfe15f896c1ca27cab5d1ad1
aide-debuginfo-0.16-14.el8_5.1.s390x.rpm	SHA-256: e3988ef159bb16a06b1487cd30c2c5d1fa16a8e33ea46a1021c2cc5832eac0a0
aide-debugsource-0.16-14.el8_5.1.s390x.rpm	SHA-256: f3c8e6caee5f0ff485831e0205b78c14bcb599d31b2ac14db378375aad92bc60

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
s390x
aide-0.16-14.el8_5.1.s390x.rpm	SHA-256: 1b1cccdc9580ae5ffebe7fdb62e8391e78a16aebbfe15f896c1ca27cab5d1ad1
aide-debuginfo-0.16-14.el8_5.1.s390x.rpm	SHA-256: e3988ef159bb16a06b1487cd30c2c5d1fa16a8e33ea46a1021c2cc5832eac0a0
aide-debugsource-0.16-14.el8_5.1.s390x.rpm	SHA-256: f3c8e6caee5f0ff485831e0205b78c14bcb599d31b2ac14db378375aad92bc60

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
s390x
aide-0.16-14.el8_5.1.s390x.rpm	SHA-256: 1b1cccdc9580ae5ffebe7fdb62e8391e78a16aebbfe15f896c1ca27cab5d1ad1
aide-debuginfo-0.16-14.el8_5.1.s390x.rpm	SHA-256: e3988ef159bb16a06b1487cd30c2c5d1fa16a8e33ea46a1021c2cc5832eac0a0
aide-debugsource-0.16-14.el8_5.1.s390x.rpm	SHA-256: f3c8e6caee5f0ff485831e0205b78c14bcb599d31b2ac14db378375aad92bc60

Red Hat Enterprise Linux for Power, little endian 8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
ppc64le
aide-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: c4b93f0babb1dd253116f96a338c756f763dc23730961e031ac7082ac161a24f
aide-debuginfo-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: bff0a81e329b36a629c73fec6ec9b3187fdaba2ef43175c736b80143efdb6686
aide-debugsource-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: 58b7280dc49df865af2629addbe4ae5096c00b55f94baca1bb40090f3fcc5afa

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
ppc64le
aide-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: c4b93f0babb1dd253116f96a338c756f763dc23730961e031ac7082ac161a24f
aide-debuginfo-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: bff0a81e329b36a629c73fec6ec9b3187fdaba2ef43175c736b80143efdb6686
aide-debugsource-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: 58b7280dc49df865af2629addbe4ae5096c00b55f94baca1bb40090f3fcc5afa

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
ppc64le
aide-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: c4b93f0babb1dd253116f96a338c756f763dc23730961e031ac7082ac161a24f
aide-debuginfo-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: bff0a81e329b36a629c73fec6ec9b3187fdaba2ef43175c736b80143efdb6686
aide-debugsource-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: 58b7280dc49df865af2629addbe4ae5096c00b55f94baca1bb40090f3fcc5afa

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for ARM 64 8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
aarch64
aide-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 844fc18d16467cbc029efa4011eea9c3004824f0b6e5c0a2660987256c619a3b
aide-debuginfo-0.16-14.el8_5.1.aarch64.rpm	SHA-256: bcb89559f6ed2b723e386128e5ba1045e35930ca0d9ea3765eb1121aa1bc26a1
aide-debugsource-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 2a8467d6d47b31f6ed617eea43a620c70b44e829fe722093543e123cdaf22a2d

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
aarch64
aide-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 844fc18d16467cbc029efa4011eea9c3004824f0b6e5c0a2660987256c619a3b
aide-debuginfo-0.16-14.el8_5.1.aarch64.rpm	SHA-256: bcb89559f6ed2b723e386128e5ba1045e35930ca0d9ea3765eb1121aa1bc26a1
aide-debugsource-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 2a8467d6d47b31f6ed617eea43a620c70b44e829fe722093543e123cdaf22a2d

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
aarch64
aide-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 844fc18d16467cbc029efa4011eea9c3004824f0b6e5c0a2660987256c619a3b
aide-debuginfo-0.16-14.el8_5.1.aarch64.rpm	SHA-256: bcb89559f6ed2b723e386128e5ba1045e35930ca0d9ea3765eb1121aa1bc26a1
aide-debugsource-0.16-14.el8_5.1.aarch64.rpm	SHA-256: 2a8467d6d47b31f6ed617eea43a620c70b44e829fe722093543e123cdaf22a2d

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
ppc64le
aide-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: c4b93f0babb1dd253116f96a338c756f763dc23730961e031ac7082ac161a24f
aide-debuginfo-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: bff0a81e329b36a629c73fec6ec9b3187fdaba2ef43175c736b80143efdb6686
aide-debugsource-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: 58b7280dc49df865af2629addbe4ae5096c00b55f94baca1bb40090f3fcc5afa

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
ppc64le
aide-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: c4b93f0babb1dd253116f96a338c756f763dc23730961e031ac7082ac161a24f
aide-debuginfo-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: bff0a81e329b36a629c73fec6ec9b3187fdaba2ef43175c736b80143efdb6686
aide-debugsource-0.16-14.el8_5.1.ppc64le.rpm	SHA-256: 58b7280dc49df865af2629addbe4ae5096c00b55f94baca1bb40090f3fcc5afa

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
aide-0.16-14.el8_5.1.src.rpm	SHA-256: 7a88514676be72359c8282588e4ed0b732ae2471b2735d22199e19517b46aa31
x86_64
aide-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 52e941fc500df2b808ab6eb866a6e1e680a2f880f6f3aaffaea2006d4cd2851c
aide-debuginfo-0.16-14.el8_5.1.x86_64.rpm	SHA-256: c52d6a39709e8ca8be82fad8749765ace11ace58474a8a1645d00847bdd168bf
aide-debugsource-0.16-14.el8_5.1.x86_64.rpm	SHA-256: 76a88e05e7bbe0c176275d6a8eae41d2b442495b0f7102908a2967d0db73da76

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.