Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2022:0790 - Security Advisory
Issued:
2022-03-08
Updated:
2022-03-08

RHSA-2022:0790 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Low: Satellite 6.10.3 Async Bug Fix Update

Type/Severity

Security Advisory: Low

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated Satellite 6.10 packages that fix several bugs are now available for Red Hat Satellite.

Description

Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.

Security Fix(es):
2043714 - CVE-2021-4142 candlepin: Satellite: Allow unintended SCA certificate to authenticate Candlepin [rhn_satellite_6-default]

This update fixes the following bugs:

2043702 - Unable to sync EPEL repositories on Satellite 6.10 when 'Mirror on Sync' is enabled
2043710 - Syncing tens of repos to capsule can cause deadlock: while updating tuple (...) in relation "core_content"
2048306 - Satellite 6.10 may fail to sync content to capsule still in version 6.9
2049760 - No longer be able to import content into disconnected Satellite for existing content views
2053723 - Large repo sync failed with "Katello::Errors::Pulp3Error: Response payload is not completed"
2053726 - After upgrading to 6.10, Satellite fails to sync some repositories with large files with timeout error
2055660 - organization context fails to change in web UI
2055662 - Incremental CV update fails with 400 HTTP error
2027367 - Satellite doesn't forward the "If-Modified-Since" header for /accessible_content endpoint to Candlepin
2027786 - Satellite schedules one recurring InventorySync::Async::InventoryScheduledSync per org but each task syncs all orgs, resulting in harmless but unnecessary tasks
2043697 - null value in column "manifest_id" violates not-null constraint error while syncing RHOSP container images
2043698 - Remote Execution fails to honor remote_execution_connect_by_ip override on host
2043699 - Content view export failed with undefined method `first' for nil:NilClass
2043700 - webhook event "build_exited" never gets triggered
2043701 - Ansible roles are not starting automatically after provisioning
2043704 - Syncing sha-checksummed KS repository fails with: " Artifact() got an unexpected keyword argument 'sha' "
2043705 - db:seed can fail when there are host mismatches
2043706 - New OS created due to facts mismatch for operatingsystem for RHSM, Puppet and Ansible
2043707 - Satellite upgrade to 6.10.1 fails with multiple rubygem-sinatra package dependency errors
2043712 - pulpcore-workers grow very large when repositories have many changelog entries
2043715 - Limited CV docker tags cannot be pulled after syncing library repo with "limit sync tags"
2043716 - 406 error appears when running insights-client --compliance
2043719 - Incremental publish content view doesn't copy any contents
2043720 - ERROR: at least one Erratum record has migrated_pulp3_href NULL value
2047345 - New version of Candlepin now has org in entitlement certificate and causes authorization issues

Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For detailed instructions how to apply this update, refer to:

https://access.redhat.com/documentation/en-us/red_hat_satellite/6.10/html/upgrading_and_updating_red_hat_satellite/updating_satellite_server_capsule_server_and_content_hosts

Affected Products

  • Red Hat Satellite 6.10 x86_64
  • Red Hat Satellite Capsule 6.10 x86_64

Fixes

  • BZ - 2027367 - Satellite doesn't forward the "If-Modified-Since" header for /accessible_content endpoint to Candlepin
  • BZ - 2027786 - Satellite schedules one recurring InventorySync::Async::InventoryScheduledSync per org but each task syncs all orgs, resulting in harmless but unnecessary tasks
  • BZ - 2034346 - CVE-2021-4142 Satellite: Allow unintended SCA certificate to authenticate Candlepin
  • BZ - 2043697 - null value in column "manifest_id" violates not-null constraint error while syncing RHOSP container images
  • BZ - 2043698 - Remote Execution fails to honor remote_execution_connect_by_ip override on host
  • BZ - 2043699 - Content view export failed with undefined method `first' for nil:NilClass
  • BZ - 2043700 - webhook event "build_exited" never gets triggered
  • BZ - 2043701 - Ansible roles are not starting automatically after provisioning
  • BZ - 2043702 - Unable to sync EPEL repositories on Satellite 6.10 when 'Mirror on Sync' is enabled
  • BZ - 2043704 - Syncing sha-checksummed KS repository fails with: " Artifact() got an unexpected keyword argument 'sha' "
  • BZ - 2043705 - db:seed can fail when there are host mismatches
  • BZ - 2043706 - New OS created due to facts mismatch for operatingsystem for RHSM, Puppet and Ansible
  • BZ - 2043707 - Satellite upgrade to 6.10.1 fails with multiple rubygem-sinatra package dependency errors
  • BZ - 2043710 - syncing tens of repos to capsule can cause deadlock: while updating tuple (...) in relation "core_content"
  • BZ - 2043712 - pulpcore-workers grow very large when repositories have many changelog entries
  • BZ - 2043715 - Limited CV docker tags cannot be pulled after syncing library repo with "limit sync tags"
  • BZ - 2043716 - 406 error appears when running insights-client --compliance
  • BZ - 2043719 - Incremental publish content view doesn't copy any contents
  • BZ - 2043720 - ERROR: at least one Erratum record has migrated_pulp3_href NULL value
  • BZ - 2047345 - New version of Candlepin now has org in entitlement certificate and causes authorization issues
  • BZ - 2048306 - Satellite 6.10 may fail to sync content to capsule still in version 6.9
  • BZ - 2049760 - No longer be able to import content into disconnected Satellite for existing content views
  • BZ - 2053723 - Large repo sync failed with "Katello::Errors::Pulp3Error: Response payload is not completed"
  • BZ - 2053726 - After upgrading to 6.10, Satellite fails to sync some repositories with large files with timeout error
  • BZ - 2055660 - organization context fails to change in web UI
  • BZ - 2055662 - Incremental CV update fails with 400 HTTP error

CVEs

  • CVE-2021-4142

References

  • https://access.redhat.com/security/updates/classification/#low
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Satellite 6.10

SRPM
candlepin-4.0.15-1.el7sat.src.rpm SHA-256: c8ff8416d2a200ed5308062fa9b7d1b0bbd463d1d85de79eb592d050202761a4
foreman-2.5.2.19-1.el7sat.src.rpm SHA-256: abe6bb7c24e35750cad41ffe1db85eb3fdfe2900ab39394bccfd235e365b8ff4
python-aiohttp-xmlrpc-1.3.2-0.1.el7pc.src.rpm SHA-256: fae8c8810cbfebc5770bce4a7be51dfcd22a46c534c829e56255075118f8c814
python-pulp-container-2.8.4-0.1.el7pc.src.rpm SHA-256: df7b7fcad5a285ae8f7f583ea9c6e663faccaac63f93be9c3e284076a951e0c8
python-pulp-rpm-3.14.12-1.el7pc.src.rpm SHA-256: b4f0c3f258cf6cb629829042c9209c4d9999947dce7f8ecb6b48d639681ddd97
python-pulpcore-3.14.12-1.el7pc.src.rpm SHA-256: 23b85352b277e2cf5d9afd34dcf2f2644ada6621bfda3191043de2206df58936
satellite-6.10.3-1.el7sat.src.rpm SHA-256: 204c16531aeb66e2b51127567867f36e2eced8d17292210c5b54cab973453ca3
tfm-rubygem-foreman_ansible-6.3.4.1-1.el7sat.src.rpm SHA-256: 5feed1858b23b3f1eb628e08c9387e55b286634a2c8e045215beabde8be21a21
tfm-rubygem-foreman_rh_cloud-4.0.31-1.el7sat.src.rpm SHA-256: 9d62b8e8883e804b90eb2ae92532642cd3a3ac2c02e8eb7bdc1ab173cbc0929a
tfm-rubygem-katello-4.1.1.48-1.el7sat.src.rpm SHA-256: ea245b6fe1d9e98e784add15db50862d47f616ee3d15502d2ce2393685633390
tfm-rubygem-pulp_rpm_client-3.14.12.1-1.el7sat.src.rpm SHA-256: 6ab6ce92ca708c165b13c0ab4aa4c9e955613ea1bf6236172e977396f4e1c4a1
x86_64
candlepin-4.0.15-1.el7sat.noarch.rpm SHA-256: 30101760449b68d899cc576f8185f3bdae39387ca0714f674f7aa115f8e74d7a
candlepin-selinux-4.0.15-1.el7sat.noarch.rpm SHA-256: 2cedd72af21f0466ce1da5c559eb711fd83938cc4891c26ab16629514c624d90
foreman-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 29dd598fc10a8132e9f414aaa20bb853d6d30343ee4dafd36d17c99755853ceb
foreman-cli-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 5dcd3c1b9c85738cffedce3ac72540c1f2ea6fd28e458a08c991dc71bde0f0a4
foreman-debug-2.5.2.19-1.el7sat.noarch.rpm SHA-256: c03b170dfb349c2887e729fa8cb38d94391e18036a8fe34d01969c0165862cbe
foreman-dynflow-sidekiq-2.5.2.19-1.el7sat.noarch.rpm SHA-256: ce5467490072d32512d9dd85cf247f4cb0571eda71c470877fb6fdff8ab39d3a
foreman-ec2-2.5.2.19-1.el7sat.noarch.rpm SHA-256: dc525c0aeb16fcc344df63ce958003e3caa80c261f54630aebeb7b7043f8c280
foreman-gce-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 2da1cd5a7421423568962a010a79fc57f082ad58c1728aa6e2f247207a948acb
foreman-journald-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 2ba73a3eba6f42f095491691546707cb063a5b9e15b0d8c1209ad0bf6de5e3bb
foreman-libvirt-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 506e8f34aa8ad86a7b4262742369c31406615242f1328fdb2b9301e1b69cf503
foreman-openstack-2.5.2.19-1.el7sat.noarch.rpm SHA-256: dbd65a9e1d974e1d0a6bf90c6b83a01de66d8030c0fb20ec95a3dc8a6b8f91ac
foreman-ovirt-2.5.2.19-1.el7sat.noarch.rpm SHA-256: ca2a19d4a52666787a341ca59d64ebd96e0cb75072e6a613c4dce044b9800331
foreman-postgresql-2.5.2.19-1.el7sat.noarch.rpm SHA-256: a626952ca54de39dd6637b334232bd51fc0ff40d37f00b637df2b39f5187cf84
foreman-service-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 8c4606caa581bfaf64205340f201b32387b9e004112cc55b26171b5d3c1d8a93
foreman-telemetry-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 45d74ce7678757781cda0ac49dc788988ea05292616e1a477e4ec36d49610eae
foreman-vmware-2.5.2.19-1.el7sat.noarch.rpm SHA-256: 6e3c99f5197c99f9e2b569a693c8e1c58180f2c66f3e5dc17012d4fc7182351e
python3-aiohttp-xmlrpc-1.3.2-0.1.el7pc.noarch.rpm SHA-256: 2d275ffa83054fbc1e836421628cf132b59e73b991c317df87f6cd5a2a14582a
python3-pulp-container-2.8.4-0.1.el7pc.noarch.rpm SHA-256: f5bd91bf19ecb6daf7b682a268832aa4126bdbf8c5023efef6816ee1e78c4e51
python3-pulp-rpm-3.14.12-1.el7pc.noarch.rpm SHA-256: 5cfaa7bf10ec38348a811a1326680ac5677d3efc44440a81f7407a94384c4d55
python3-pulpcore-3.14.12-1.el7pc.noarch.rpm SHA-256: 21a8026fbe23acd792a10a613204c559289c677a792f54bfcc2943bac32b0dec
satellite-6.10.3-1.el7sat.noarch.rpm SHA-256: 8a413535b38ca3fd5e2cb4a1b9e1b823f613e439f3252ee5328a9c82718121aa
satellite-cli-6.10.3-1.el7sat.noarch.rpm SHA-256: fcc9f8173912c150829199f609c1f6506613aabbf9284004f0e2d23d5dc7ef9d
satellite-common-6.10.3-1.el7sat.noarch.rpm SHA-256: a21bd0e7107b0e47ba72289cfde9b744a886e5ba6cd35bc0ee2dd94a3a2205bc
tfm-rubygem-foreman_ansible-6.3.4.1-1.el7sat.noarch.rpm SHA-256: 8599f245a632cab1fbfed6430bc7ca77833237b9936ab39f6305e9c54aab95cb
tfm-rubygem-foreman_rh_cloud-4.0.31-1.el7sat.noarch.rpm SHA-256: 9ca65b86ffe1aba5b5510db2a780633194bd764d86c9fcae5619b6cc37268aa7
tfm-rubygem-katello-4.1.1.48-1.el7sat.noarch.rpm SHA-256: fb9e6a02f32304d3c258a55151c042e1c2aa8eb63e0fd7d4b4ce420d5d2623ab
tfm-rubygem-pulp_rpm_client-3.14.12.1-1.el7sat.noarch.rpm SHA-256: 0d012e6065ab5aa7ddd92272e993b9437d8f40f6ddc930c70f539afbe158656f

Red Hat Satellite Capsule 6.10

SRPM
foreman-2.5.2.19-1.el7sat.src.rpm SHA-256: abe6bb7c24e35750cad41ffe1db85eb3fdfe2900ab39394bccfd235e365b8ff4
python-aiohttp-xmlrpc-1.3.2-0.1.el7pc.src.rpm SHA-256: fae8c8810cbfebc5770bce4a7be51dfcd22a46c534c829e56255075118f8c814
python-pulp-container-2.8.4-0.1.el7pc.src.rpm SHA-256: df7b7fcad5a285ae8f7f583ea9c6e663faccaac63f93be9c3e284076a951e0c8
python-pulp-rpm-3.14.12-1.el7pc.src.rpm SHA-256: b4f0c3f258cf6cb629829042c9209c4d9999947dce7f8ecb6b48d639681ddd97
python-pulpcore-3.14.12-1.el7pc.src.rpm SHA-256: 23b85352b277e2cf5d9afd34dcf2f2644ada6621bfda3191043de2206df58936
satellite-6.10.3-1.el7sat.src.rpm SHA-256: 204c16531aeb66e2b51127567867f36e2eced8d17292210c5b54cab973453ca3
x86_64
foreman-debug-2.5.2.19-1.el7sat.noarch.rpm SHA-256: c03b170dfb349c2887e729fa8cb38d94391e18036a8fe34d01969c0165862cbe
python3-aiohttp-xmlrpc-1.3.2-0.1.el7pc.noarch.rpm SHA-256: 2d275ffa83054fbc1e836421628cf132b59e73b991c317df87f6cd5a2a14582a
python3-pulp-container-2.8.4-0.1.el7pc.noarch.rpm SHA-256: f5bd91bf19ecb6daf7b682a268832aa4126bdbf8c5023efef6816ee1e78c4e51
python3-pulp-rpm-3.14.12-1.el7pc.noarch.rpm SHA-256: 5cfaa7bf10ec38348a811a1326680ac5677d3efc44440a81f7407a94384c4d55
python3-pulpcore-3.14.12-1.el7pc.noarch.rpm SHA-256: 21a8026fbe23acd792a10a613204c559289c677a792f54bfcc2943bac32b0dec
satellite-capsule-6.10.3-1.el7sat.noarch.rpm SHA-256: 47f5c5f81dd6ee32723635618c3a7582fc7baccbfb0144e77e64ca2699e67837
satellite-common-6.10.3-1.el7sat.noarch.rpm SHA-256: a21bd0e7107b0e47ba72289cfde9b744a886e5ba6cd35bc0ee2dd94a3a2205bc

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat, Inc.

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility