Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2022:7927 - Security Advisory
Issued:
2022-11-14
Updated:
2022-11-14

RHSA-2022:7927 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: libksba security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libksba is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS.

Security Fix(es):

  • libksba: integer overflow may lead to remote code execution (CVE-2022-3515)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64
  • Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.4 x86_64
  • Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.4 ppc64le
  • Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.4 s390x
  • Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.4 aarch64

Fixes

  • BZ - 2135610 - CVE-2022-3515 libksba: integer overflow may lead to remote code execution

CVEs

  • CVE-2022-3515

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
x86_64
libksba-1.3.5-8.el8_4.i686.rpm SHA-256: d4054b24a408ba2cce531dd04387056b08372be6f7fa766d6db7c3ba7ae36d01
libksba-1.3.5-8.el8_4.x86_64.rpm SHA-256: fe12dd682bdfa1af7995ba11e919bc7181f841915e31c9f147b83ddf8bc8a662
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
x86_64
libksba-1.3.5-8.el8_4.i686.rpm SHA-256: d4054b24a408ba2cce531dd04387056b08372be6f7fa766d6db7c3ba7ae36d01
libksba-1.3.5-8.el8_4.x86_64.rpm SHA-256: fe12dd682bdfa1af7995ba11e919bc7181f841915e31c9f147b83ddf8bc8a662
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
x86_64
libksba-1.3.5-8.el8_4.i686.rpm SHA-256: d4054b24a408ba2cce531dd04387056b08372be6f7fa766d6db7c3ba7ae36d01
libksba-1.3.5-8.el8_4.x86_64.rpm SHA-256: fe12dd682bdfa1af7995ba11e919bc7181f841915e31c9f147b83ddf8bc8a662
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
s390x
libksba-1.3.5-8.el8_4.s390x.rpm SHA-256: 1dfaa89a907e69e8d7406ce2b9e8b0931f650d4d41dde879b00f8969f0f4e8b2
libksba-debuginfo-1.3.5-8.el8_4.s390x.rpm SHA-256: 5796702bdaff8ddbb392237c219a8bc96f9178353956d3b78e65aee60c3d743d
libksba-debugsource-1.3.5-8.el8_4.s390x.rpm SHA-256: 5a9b2de1d262ad555fb1a248a95bbef6197dc31ec0a29ec7c80dee4a77a0c590

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
ppc64le
libksba-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 2de55b93c78a70587a211d9aa59eab70a4b55590328813eb1380ef1fbf348250
libksba-debuginfo-1.3.5-8.el8_4.ppc64le.rpm SHA-256: aad1b833c67bec88256d873c7e31f014034d9b6df1e6447ae9cbc54fbefc2ab0
libksba-debugsource-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 64e71d08b7506a85bfa51ca637fa9e9ce15d105c610f23af4c84d16fdd975ab3

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
x86_64
libksba-1.3.5-8.el8_4.i686.rpm SHA-256: d4054b24a408ba2cce531dd04387056b08372be6f7fa766d6db7c3ba7ae36d01
libksba-1.3.5-8.el8_4.x86_64.rpm SHA-256: fe12dd682bdfa1af7995ba11e919bc7181f841915e31c9f147b83ddf8bc8a662
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
aarch64
libksba-1.3.5-8.el8_4.aarch64.rpm SHA-256: 8f9bc2797079e6596808cf6d8276d5e53dea9cdf276c7e9248fe6ecf18c84483
libksba-debuginfo-1.3.5-8.el8_4.aarch64.rpm SHA-256: 27cfc3a9ceab0983aa081fa68362cd65f97c367065c75d4d893fb53953f7848d
libksba-debugsource-1.3.5-8.el8_4.aarch64.rpm SHA-256: 0acd9ec179ea9903ea59c805d0ca338320b7295ed9813537050d5109d1f1c340

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
ppc64le
libksba-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 2de55b93c78a70587a211d9aa59eab70a4b55590328813eb1380ef1fbf348250
libksba-debuginfo-1.3.5-8.el8_4.ppc64le.rpm SHA-256: aad1b833c67bec88256d873c7e31f014034d9b6df1e6447ae9cbc54fbefc2ab0
libksba-debugsource-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 64e71d08b7506a85bfa51ca637fa9e9ce15d105c610f23af4c84d16fdd975ab3

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4

SRPM
libksba-1.3.5-8.el8_4.src.rpm SHA-256: 5b40620b05c94dbf77414c8f71fcda37d6cff35aa1ed5bdcd5cb68b9c0cd1438
x86_64
libksba-1.3.5-8.el8_4.i686.rpm SHA-256: d4054b24a408ba2cce531dd04387056b08372be6f7fa766d6db7c3ba7ae36d01
libksba-1.3.5-8.el8_4.x86_64.rpm SHA-256: fe12dd682bdfa1af7995ba11e919bc7181f841915e31c9f147b83ddf8bc8a662
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.4

SRPM
x86_64
libksba-debuginfo-1.3.5-8.el8_4.i686.rpm SHA-256: 85a0d4f9cca9fc3f4bc41ebbb76a7daf5626fe198dec4218e3c37a74bb29fb48
libksba-debuginfo-1.3.5-8.el8_4.x86_64.rpm SHA-256: 11baceaa702dc4a59c83a1a73230a351f79a65690261599785aee986142a7df2
libksba-debugsource-1.3.5-8.el8_4.i686.rpm SHA-256: 1f0d69d85ab84873f01936ea49f3cd249ff7a882dece1bbf8720870f82fff33a
libksba-debugsource-1.3.5-8.el8_4.x86_64.rpm SHA-256: 7ebf11d1896e580e12ef2029ed91538adb3c6be3c39dc85203e846c6972dd5ca
libksba-devel-1.3.5-8.el8_4.i686.rpm SHA-256: eb28471c601515d9697226e1ba1d25cc99244387b9a156126c55b8a219219f45
libksba-devel-1.3.5-8.el8_4.x86_64.rpm SHA-256: 22b129a00028d4c210d4a28e222aee37c3250a1e31817b69527920962cd4b2b1

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.4

SRPM
ppc64le
libksba-debuginfo-1.3.5-8.el8_4.ppc64le.rpm SHA-256: aad1b833c67bec88256d873c7e31f014034d9b6df1e6447ae9cbc54fbefc2ab0
libksba-debugsource-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 64e71d08b7506a85bfa51ca637fa9e9ce15d105c610f23af4c84d16fdd975ab3
libksba-devel-1.3.5-8.el8_4.ppc64le.rpm SHA-256: 222480f8679ea043964c3d46bb9e2065c746dfb608e75351a87894305eff4109

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.4

SRPM
s390x
libksba-debuginfo-1.3.5-8.el8_4.s390x.rpm SHA-256: 5796702bdaff8ddbb392237c219a8bc96f9178353956d3b78e65aee60c3d743d
libksba-debugsource-1.3.5-8.el8_4.s390x.rpm SHA-256: 5a9b2de1d262ad555fb1a248a95bbef6197dc31ec0a29ec7c80dee4a77a0c590
libksba-devel-1.3.5-8.el8_4.s390x.rpm SHA-256: af9d28fa0ccb458b5a34745ae855aa96df92a4a8e67648f9968e07deda500f1a

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.4

SRPM
aarch64
libksba-debuginfo-1.3.5-8.el8_4.aarch64.rpm SHA-256: 27cfc3a9ceab0983aa081fa68362cd65f97c367065c75d4d893fb53953f7848d
libksba-debugsource-1.3.5-8.el8_4.aarch64.rpm SHA-256: 0acd9ec179ea9903ea59c805d0ca338320b7295ed9813537050d5109d1f1c340
libksba-devel-1.3.5-8.el8_4.aarch64.rpm SHA-256: 1c9d2635cb0bbadfa1e4712d143764acea61fe7e0460c9ec7b496b8c41e8e014

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility