Issued:: 2023-02-07
Updated:: 2023-02-07

RHSA-2023:0629 - Security Advisory

Overview
Updated Packages

Synopsis

Important: libksba security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libksba is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS.

Security Fix(es):

libksba: integer overflow to code executiona (CVE-2022-47629)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.0 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.0 ppc64le
Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.0 s390x
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.0 aarch64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x

Fixes

BZ - 2161571 - CVE-2022-47629 libksba: integer overflow to code execution

CVEs

CVE-2022-47629

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
x86_64
libksba-1.5.1-6.el9_0.i686.rpm	SHA-256: b96b325bbab9ce5d62fdf4c23e3826ef2c5be341766286f7808aeccbc224f97f
libksba-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 3654700334ebf16e744135c90552876c85f5bc14d4f9797ad64286a5ee8b3d9c
libksba-debuginfo-1.5.1-6.el9_0.i686.rpm	SHA-256: 49a77bee1866c7763db4176dbaeb9287be74d71b15394de3fda744aca5119969
libksba-debuginfo-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 68885fa33c94e7038a57730c9169ea8a21e61f4d87e6acaaa5c78b9cb94a2542
libksba-debugsource-1.5.1-6.el9_0.i686.rpm	SHA-256: 835c4280bdf33921c139b36c41e31ff68bb44556d7662b780a0e4c20b47d03ea
libksba-debugsource-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 74b87a1ede6aa62f53d05bad19757025414cc156c6bf30bcca352d88f61b5da1

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
s390x
libksba-1.5.1-6.el9_0.s390x.rpm	SHA-256: 8c8df94f9a695a0fa5972028c0550eb630a918c6ece41c957f49b87306d0917d
libksba-debuginfo-1.5.1-6.el9_0.s390x.rpm	SHA-256: 7a1f90b79d21e1252e63ea92c3593e96bf81b6c7aaf21af35ddcf9495c92824d
libksba-debugsource-1.5.1-6.el9_0.s390x.rpm	SHA-256: b6fbab6bbcca405587fb9dbd56fd9f6eede45c5369eddb686b0c683c5b9ff32f

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
ppc64le
libksba-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 86abeeb498c290dbe89970859562f2c35c7d2abdf722e467bbd6dd656e849b68
libksba-debuginfo-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: d33b5512ccf402bb17b75c0f62c096010149472c5f7932337a14167185ff415b
libksba-debugsource-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 4747dd98c12b4a111066780ea55696703b64b34e9f83fd1f768db479a91ddc91

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
aarch64
libksba-1.5.1-6.el9_0.aarch64.rpm	SHA-256: 53bc3e147521e70d68fa56887673b3c0c9a2de9cf70f1e5298671ecdecb6e452
libksba-debuginfo-1.5.1-6.el9_0.aarch64.rpm	SHA-256: e7aabd8c094ff54d79f15e4ef3416a9ad9c609a95da0e544498d838b36e4fde4
libksba-debugsource-1.5.1-6.el9_0.aarch64.rpm	SHA-256: f7067997066678eddc1d3bed41e99018bdc98d8f48aa21847ba455e733f8c36b

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
ppc64le
libksba-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 86abeeb498c290dbe89970859562f2c35c7d2abdf722e467bbd6dd656e849b68
libksba-debuginfo-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: d33b5512ccf402bb17b75c0f62c096010149472c5f7932337a14167185ff415b
libksba-debugsource-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 4747dd98c12b4a111066780ea55696703b64b34e9f83fd1f768db479a91ddc91

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
x86_64
libksba-1.5.1-6.el9_0.i686.rpm	SHA-256: b96b325bbab9ce5d62fdf4c23e3826ef2c5be341766286f7808aeccbc224f97f
libksba-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 3654700334ebf16e744135c90552876c85f5bc14d4f9797ad64286a5ee8b3d9c
libksba-debuginfo-1.5.1-6.el9_0.i686.rpm	SHA-256: 49a77bee1866c7763db4176dbaeb9287be74d71b15394de3fda744aca5119969
libksba-debuginfo-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 68885fa33c94e7038a57730c9169ea8a21e61f4d87e6acaaa5c78b9cb94a2542
libksba-debugsource-1.5.1-6.el9_0.i686.rpm	SHA-256: 835c4280bdf33921c139b36c41e31ff68bb44556d7662b780a0e4c20b47d03ea
libksba-debugsource-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 74b87a1ede6aa62f53d05bad19757025414cc156c6bf30bcca352d88f61b5da1

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.0

SRPM
x86_64
libksba-debuginfo-1.5.1-6.el9_0.i686.rpm	SHA-256: 49a77bee1866c7763db4176dbaeb9287be74d71b15394de3fda744aca5119969
libksba-debuginfo-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 68885fa33c94e7038a57730c9169ea8a21e61f4d87e6acaaa5c78b9cb94a2542
libksba-debugsource-1.5.1-6.el9_0.i686.rpm	SHA-256: 835c4280bdf33921c139b36c41e31ff68bb44556d7662b780a0e4c20b47d03ea
libksba-debugsource-1.5.1-6.el9_0.x86_64.rpm	SHA-256: 74b87a1ede6aa62f53d05bad19757025414cc156c6bf30bcca352d88f61b5da1
libksba-devel-1.5.1-6.el9_0.i686.rpm	SHA-256: 0d55284f66c393d785553fa3f8c4f9cd1ca7fa4afd4df9c05be01bdc18d6a4f4
libksba-devel-1.5.1-6.el9_0.x86_64.rpm	SHA-256: e3df6444fd840cbcccea01d484334edc1e7aa0d90c29d8adee41c94bb5b10d02

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.0

SRPM
ppc64le
libksba-debuginfo-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: d33b5512ccf402bb17b75c0f62c096010149472c5f7932337a14167185ff415b
libksba-debugsource-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 4747dd98c12b4a111066780ea55696703b64b34e9f83fd1f768db479a91ddc91
libksba-devel-1.5.1-6.el9_0.ppc64le.rpm	SHA-256: 52b8f3ccdbc9abc3c8e88fa2ac1f2bf8e2bfc978a005b5b985636b33f0dd8c3f

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.0

SRPM
s390x
libksba-debuginfo-1.5.1-6.el9_0.s390x.rpm	SHA-256: 7a1f90b79d21e1252e63ea92c3593e96bf81b6c7aaf21af35ddcf9495c92824d
libksba-debugsource-1.5.1-6.el9_0.s390x.rpm	SHA-256: b6fbab6bbcca405587fb9dbd56fd9f6eede45c5369eddb686b0c683c5b9ff32f
libksba-devel-1.5.1-6.el9_0.s390x.rpm	SHA-256: 0edf4b231baf588a0e55c3138e6cc26a4df1716dc617475a82e2f7d1ba3f9584

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.0

SRPM
aarch64
libksba-debuginfo-1.5.1-6.el9_0.aarch64.rpm	SHA-256: e7aabd8c094ff54d79f15e4ef3416a9ad9c609a95da0e544498d838b36e4fde4
libksba-debugsource-1.5.1-6.el9_0.aarch64.rpm	SHA-256: f7067997066678eddc1d3bed41e99018bdc98d8f48aa21847ba455e733f8c36b
libksba-devel-1.5.1-6.el9_0.aarch64.rpm	SHA-256: 830f59e303c3a003560caf0871c5e53db14ac8d14b6f2ffc0ced676de6d7b86d

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
aarch64
libksba-1.5.1-6.el9_0.aarch64.rpm	SHA-256: 53bc3e147521e70d68fa56887673b3c0c9a2de9cf70f1e5298671ecdecb6e452
libksba-debuginfo-1.5.1-6.el9_0.aarch64.rpm	SHA-256: e7aabd8c094ff54d79f15e4ef3416a9ad9c609a95da0e544498d838b36e4fde4
libksba-debugsource-1.5.1-6.el9_0.aarch64.rpm	SHA-256: f7067997066678eddc1d3bed41e99018bdc98d8f48aa21847ba455e733f8c36b

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0

SRPM
libksba-1.5.1-6.el9_0.src.rpm	SHA-256: f0ad58da0f4cfd58795fe41c377b5b8375641d11f696b092a9099c341f02adbf
s390x
libksba-1.5.1-6.el9_0.s390x.rpm	SHA-256: 8c8df94f9a695a0fa5972028c0550eb630a918c6ece41c957f49b87306d0917d
libksba-debuginfo-1.5.1-6.el9_0.s390x.rpm	SHA-256: 7a1f90b79d21e1252e63ea92c3593e96bf81b6c7aaf21af35ddcf9495c92824d
libksba-debugsource-1.5.1-6.el9_0.s390x.rpm	SHA-256: b6fbab6bbcca405587fb9dbd56fd9f6eede45c5369eddb686b0c683c5b9ff32f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation