Issued:: 2022-02-08
Updated:: 2022-02-08

RHSA-2022:0464 - Security Advisory

Overview
Updated Packages

Synopsis

Important: aide security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for aide is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Advanced Intrusion Detection Environment (AIDE) is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions.

Security Fix(es):

aide: heap-based buffer overflow on outputs larger than B64_BUF (CVE-2021-45417)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64

Fixes

BZ - 2041489 - CVE-2021-45417 aide: heap-based buffer overflow on outputs larger than B64_BUF

CVEs

CVE-2021-45417

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1

SRPM
aide-0.16-11.el8_1.1.src.rpm	SHA-256: 509a64c320ee19748e1a1945a5069e29f47cd3ff12493bf748da57f7ae2e1dd2
ppc64le
aide-0.16-11.el8_1.1.ppc64le.rpm	SHA-256: a49f4ca602669eb7a5d3c7763c0237b2120b5985cad097fd7826aebe8ea4f7aa
aide-debuginfo-0.16-11.el8_1.1.ppc64le.rpm	SHA-256: 638a37e4bfee472fdfb5c213f397f7d5d8082a89cdb15a588d453c3c0eb2efb2
aide-debugsource-0.16-11.el8_1.1.ppc64le.rpm	SHA-256: 5fcad1ba21ea3417fe253a5e8002cc7ef90bb33e1e46077103f6c6d6e08b0a8e

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1

SRPM
aide-0.16-11.el8_1.1.src.rpm	SHA-256: 509a64c320ee19748e1a1945a5069e29f47cd3ff12493bf748da57f7ae2e1dd2
x86_64
aide-0.16-11.el8_1.1.x86_64.rpm	SHA-256: fb4453ad24731839b530073016c8b9c314f55d9edf5c98142ee37e3c5d90864d
aide-debuginfo-0.16-11.el8_1.1.x86_64.rpm	SHA-256: c23bd9a6372fe4b47d5ad60796005204fe3717453a819bec1ebc2e29497316db
aide-debugsource-0.16-11.el8_1.1.x86_64.rpm	SHA-256: 1d6117e419ce08c72917da66d6bf6875ad03f2815737cdba8620e4838db2be4f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation