Issued:: 2023-02-06
Updated:: 2023-02-06

RHSA-2023:0594 - Security Advisory

Overview
Updated Packages

Synopsis

Important: libksba security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libksba is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS.

Security Fix(es):

libksba: integer overflow to code executiona (CVE-2022-47629)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
Red Hat Enterprise Linux Server - AUS 8.6 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat Enterprise Linux Server - TUS 8.6 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64
Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6 ppc64le
Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.6 s390x
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6 aarch64

Fixes

BZ - 2161571 - CVE-2022-47629 libksba: integer overflow to code execution

CVEs

CVE-2022-47629

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
x86_64
libksba-1.3.5-9.el8_6.i686.rpm	SHA-256: f3f4e6b9a8c2eed20db21e6070576b68cede1409f1d31c377d10e18dbf44577d
libksba-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 2ca2ebaba24ec75c3444596667a94b8d70dcfa5e4dc31b0f133bcef8c9168ced
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
x86_64
libksba-1.3.5-9.el8_6.i686.rpm	SHA-256: f3f4e6b9a8c2eed20db21e6070576b68cede1409f1d31c377d10e18dbf44577d
libksba-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 2ca2ebaba24ec75c3444596667a94b8d70dcfa5e4dc31b0f133bcef8c9168ced
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
x86_64
libksba-1.3.5-9.el8_6.i686.rpm	SHA-256: f3f4e6b9a8c2eed20db21e6070576b68cede1409f1d31c377d10e18dbf44577d
libksba-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 2ca2ebaba24ec75c3444596667a94b8d70dcfa5e4dc31b0f133bcef8c9168ced
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
s390x
libksba-1.3.5-9.el8_6.s390x.rpm	SHA-256: 9db53fa5d1ba084669149a610e9d7bf07828b63af3f01c840b5bdf18d1ce5056
libksba-debuginfo-1.3.5-9.el8_6.s390x.rpm	SHA-256: 9b2708c2cc7ef897e7415a1fc2eddbe939f64862a2be318b3b3036b04fffad5f
libksba-debugsource-1.3.5-9.el8_6.s390x.rpm	SHA-256: 5a9888dc9c9f93e005e39fa83ce06192755ec81ce20e63a7848a3b8963e40bc3

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
ppc64le
libksba-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: da3fe320be7247eeb2e5ed5b3bcfda17f8cdb59ea0d4aaa622f61f902b63d404
libksba-debuginfo-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: 14d9adc2fb5d5529d3d66e42f9c43fa2d1bd11694e04a6029b5811bce9cb1924
libksba-debugsource-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: e9e103428fd450edfd818d8a3b25f75bb8dd56328e4608312af4be01acf99554

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
x86_64
libksba-1.3.5-9.el8_6.i686.rpm	SHA-256: f3f4e6b9a8c2eed20db21e6070576b68cede1409f1d31c377d10e18dbf44577d
libksba-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 2ca2ebaba24ec75c3444596667a94b8d70dcfa5e4dc31b0f133bcef8c9168ced
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
aarch64
libksba-1.3.5-9.el8_6.aarch64.rpm	SHA-256: 14251b2f527a288b2e6dc53b5427237fa78606031f232ad5f4c7c65088366063
libksba-debuginfo-1.3.5-9.el8_6.aarch64.rpm	SHA-256: d00a3396cc7a19c518e6e1ab0acac61d2c3c3fc7cf423971e21beae1745f49e4
libksba-debugsource-1.3.5-9.el8_6.aarch64.rpm	SHA-256: 60813e4d50a19866b0b0396c44fb39ea3546caea4390ded3afce6c40f7e91c3c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
ppc64le
libksba-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: da3fe320be7247eeb2e5ed5b3bcfda17f8cdb59ea0d4aaa622f61f902b63d404
libksba-debuginfo-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: 14d9adc2fb5d5529d3d66e42f9c43fa2d1bd11694e04a6029b5811bce9cb1924
libksba-debugsource-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: e9e103428fd450edfd818d8a3b25f75bb8dd56328e4608312af4be01acf99554

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
libksba-1.3.5-9.el8_6.src.rpm	SHA-256: a7cf2ee6d013f158693bc047371d18095fa83ad31b97eefa5dd7e98a610b426f
x86_64
libksba-1.3.5-9.el8_6.i686.rpm	SHA-256: f3f4e6b9a8c2eed20db21e6070576b68cede1409f1d31c377d10e18dbf44577d
libksba-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 2ca2ebaba24ec75c3444596667a94b8d70dcfa5e4dc31b0f133bcef8c9168ced
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6

SRPM
x86_64
libksba-debuginfo-1.3.5-9.el8_6.i686.rpm	SHA-256: e349b2edbd085d27203b608068388febc34cb6dbcfc9a60a88baf0da66fc2998
libksba-debuginfo-1.3.5-9.el8_6.x86_64.rpm	SHA-256: 38f801b743bcf50389009027ff59212e3dcb081ef4fa67384225a3483ac627b4
libksba-debugsource-1.3.5-9.el8_6.i686.rpm	SHA-256: ac1b6d4f80dd51df8c2c363924e19ad82e663682cf591cdcee79aa775c20b968
libksba-debugsource-1.3.5-9.el8_6.x86_64.rpm	SHA-256: b9153ce174c3fd22b5dfe5d6968300d8790110420bc114d5f1b86ea506efa746
libksba-devel-1.3.5-9.el8_6.i686.rpm	SHA-256: 8da3da447b12117b06778223d26292c83b340edd47436ba2c58c75787071b895
libksba-devel-1.3.5-9.el8_6.x86_64.rpm	SHA-256: f81489235de06ee90cd3a9bf1f5fd66ff91168dea80c188db4b12037694e3e14

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6

SRPM
ppc64le
libksba-debuginfo-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: 14d9adc2fb5d5529d3d66e42f9c43fa2d1bd11694e04a6029b5811bce9cb1924
libksba-debugsource-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: e9e103428fd450edfd818d8a3b25f75bb8dd56328e4608312af4be01acf99554
libksba-devel-1.3.5-9.el8_6.ppc64le.rpm	SHA-256: e378de0816d2dfe36f9024eeaf2459ecc5b4059df370d4c9958f7bb652fae98e

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.6

SRPM
s390x
libksba-debuginfo-1.3.5-9.el8_6.s390x.rpm	SHA-256: 9b2708c2cc7ef897e7415a1fc2eddbe939f64862a2be318b3b3036b04fffad5f
libksba-debugsource-1.3.5-9.el8_6.s390x.rpm	SHA-256: 5a9888dc9c9f93e005e39fa83ce06192755ec81ce20e63a7848a3b8963e40bc3
libksba-devel-1.3.5-9.el8_6.s390x.rpm	SHA-256: 59700bab15abcf55031603caa4a8f672ddead70435f44855447cfd640fa25f4b

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6

SRPM
aarch64
libksba-debuginfo-1.3.5-9.el8_6.aarch64.rpm	SHA-256: d00a3396cc7a19c518e6e1ab0acac61d2c3c3fc7cf423971e21beae1745f49e4
libksba-debugsource-1.3.5-9.el8_6.aarch64.rpm	SHA-256: 60813e4d50a19866b0b0396c44fb39ea3546caea4390ded3afce6c40f7e91c3c
libksba-devel-1.3.5-9.el8_6.aarch64.rpm	SHA-256: d925053c6b36bbc75a05f4f9c828dd6a7b10b523cd0ec2715dc366386e6446c8

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation