Red Hat Product Errata RHSA-2023:2193 - Security Advisory
Issued:
2023-05-09
Updated:
2023-05-09

RHSA-2023:2193 - Security Advisory

Synopsis

Moderate: butane security, bug fix, and enhancement update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for butane is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Butane translates human-readable Butane Configs into machine-readable Ignition configs for provisioning operating systems that use Ignition.

The following packages have been upgraded to a later upstream version: butane (0.16.0). (BZ#2135475)

Security Fix(es):

  • golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664)
  • golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service (CVE-2022-32189)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.2 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x

Fixes

  • BZ - 2113814 - CVE-2022-32189 golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service
  • BZ - 2124669 - CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY
  • BZ - 2135475 - Update butane to latest upstream version 0.16.0

Red Hat Enterprise Linux for x86_64 9

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2

SRPM
x86_64

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
x86_64

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
s390x
butane-0.16.0-1.el9.s390x.rpm SHA-256: 71665beb66d5c95dcdf54932550fefa5d190dc6a5964da10aa5b7bb6e07842f6
butane-debuginfo-0.16.0-1.el9.s390x.rpm SHA-256: 8af8e7e666c127f5e8b3f2015ac48054ce72dd172631e5f307dfcfc9c220badf
butane-debugsource-0.16.0-1.el9.s390x.rpm SHA-256: 5b553236cca6d309b53a2a99782d74f3168bda42892e8f0cb0f9668f7f1a8002

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
s390x
butane-0.16.0-1.el9.s390x.rpm SHA-256: 71665beb66d5c95dcdf54932550fefa5d190dc6a5964da10aa5b7bb6e07842f6
butane-debuginfo-0.16.0-1.el9.s390x.rpm SHA-256: 8af8e7e666c127f5e8b3f2015ac48054ce72dd172631e5f307dfcfc9c220badf
butane-debugsource-0.16.0-1.el9.s390x.rpm SHA-256: 5b553236cca6d309b53a2a99782d74f3168bda42892e8f0cb0f9668f7f1a8002

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
s390x
butane-0.16.0-1.el9.s390x.rpm SHA-256: 71665beb66d5c95dcdf54932550fefa5d190dc6a5964da10aa5b7bb6e07842f6
butane-debuginfo-0.16.0-1.el9.s390x.rpm SHA-256: 8af8e7e666c127f5e8b3f2015ac48054ce72dd172631e5f307dfcfc9c220badf
butane-debugsource-0.16.0-1.el9.s390x.rpm SHA-256: 5b553236cca6d309b53a2a99782d74f3168bda42892e8f0cb0f9668f7f1a8002

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2

SRPM
s390x

Red Hat Enterprise Linux for Power, little endian 9

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
ppc64le
butane-0.16.0-1.el9.ppc64le.rpm SHA-256: e9e5db9b1b19e5dcac4412ad5a5cf1e37c968406fe2f3f0cf7f0660fdf845231
butane-debuginfo-0.16.0-1.el9.ppc64le.rpm SHA-256: afa95e467f8c80d9da6c14f9c9ed8f364df330b05763f4f46a3bac3efe0a5eda
butane-debugsource-0.16.0-1.el9.ppc64le.rpm SHA-256: 747b003787fff6e2bbd3d8954093db1fba91af43c912c545c48366ad50dd9ad9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
ppc64le
butane-0.16.0-1.el9.ppc64le.rpm SHA-256: e9e5db9b1b19e5dcac4412ad5a5cf1e37c968406fe2f3f0cf7f0660fdf845231
butane-debuginfo-0.16.0-1.el9.ppc64le.rpm SHA-256: afa95e467f8c80d9da6c14f9c9ed8f364df330b05763f4f46a3bac3efe0a5eda
butane-debugsource-0.16.0-1.el9.ppc64le.rpm SHA-256: 747b003787fff6e2bbd3d8954093db1fba91af43c912c545c48366ad50dd9ad9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
ppc64le
butane-0.16.0-1.el9.ppc64le.rpm SHA-256: e9e5db9b1b19e5dcac4412ad5a5cf1e37c968406fe2f3f0cf7f0660fdf845231
butane-debuginfo-0.16.0-1.el9.ppc64le.rpm SHA-256: afa95e467f8c80d9da6c14f9c9ed8f364df330b05763f4f46a3bac3efe0a5eda
butane-debugsource-0.16.0-1.el9.ppc64le.rpm SHA-256: 747b003787fff6e2bbd3d8954093db1fba91af43c912c545c48366ad50dd9ad9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2

SRPM
ppc64le

Red Hat Enterprise Linux for ARM 64 9

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
aarch64
butane-0.16.0-1.el9.aarch64.rpm SHA-256: f8568d3c6faa37280cf75d09e2c7a6337f41dd0e3dc1bc04c33d72eb943a04f4
butane-debuginfo-0.16.0-1.el9.aarch64.rpm SHA-256: ce9e82e82c9239d62937ccd2d895b67880611dc8c9beb6d20199caed90da1385
butane-debugsource-0.16.0-1.el9.aarch64.rpm SHA-256: bd7b456a611261bb60cd56c1a8fef827f7c1a446a3d39ca5e9b0551569f64c10

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
aarch64
butane-0.16.0-1.el9.aarch64.rpm SHA-256: f8568d3c6faa37280cf75d09e2c7a6337f41dd0e3dc1bc04c33d72eb943a04f4
butane-debuginfo-0.16.0-1.el9.aarch64.rpm SHA-256: ce9e82e82c9239d62937ccd2d895b67880611dc8c9beb6d20199caed90da1385
butane-debugsource-0.16.0-1.el9.aarch64.rpm SHA-256: bd7b456a611261bb60cd56c1a8fef827f7c1a446a3d39ca5e9b0551569f64c10

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
aarch64
butane-0.16.0-1.el9.aarch64.rpm SHA-256: f8568d3c6faa37280cf75d09e2c7a6337f41dd0e3dc1bc04c33d72eb943a04f4
butane-debuginfo-0.16.0-1.el9.aarch64.rpm SHA-256: ce9e82e82c9239d62937ccd2d895b67880611dc8c9beb6d20199caed90da1385
butane-debugsource-0.16.0-1.el9.aarch64.rpm SHA-256: bd7b456a611261bb60cd56c1a8fef827f7c1a446a3d39ca5e9b0551569f64c10

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2

SRPM
aarch64

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
ppc64le
butane-0.16.0-1.el9.ppc64le.rpm SHA-256: e9e5db9b1b19e5dcac4412ad5a5cf1e37c968406fe2f3f0cf7f0660fdf845231
butane-debuginfo-0.16.0-1.el9.ppc64le.rpm SHA-256: afa95e467f8c80d9da6c14f9c9ed8f364df330b05763f4f46a3bac3efe0a5eda
butane-debugsource-0.16.0-1.el9.ppc64le.rpm SHA-256: 747b003787fff6e2bbd3d8954093db1fba91af43c912c545c48366ad50dd9ad9

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
ppc64le
butane-0.16.0-1.el9.ppc64le.rpm SHA-256: e9e5db9b1b19e5dcac4412ad5a5cf1e37c968406fe2f3f0cf7f0660fdf845231
butane-debuginfo-0.16.0-1.el9.ppc64le.rpm SHA-256: afa95e467f8c80d9da6c14f9c9ed8f364df330b05763f4f46a3bac3efe0a5eda
butane-debugsource-0.16.0-1.el9.ppc64le.rpm SHA-256: 747b003787fff6e2bbd3d8954093db1fba91af43c912c545c48366ad50dd9ad9

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
ppc64le

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
x86_64
butane-0.16.0-1.el9.x86_64.rpm SHA-256: 9c2ae07e437ab1b409ea882b7838bea8dc6fe3953209a36ff7c3dc9d73e0119c
butane-debuginfo-0.16.0-1.el9.x86_64.rpm SHA-256: b88d5c2254c0bf66dce5d2ce4c33a64e1ed3a7eb85aee0fb064fece89acdccb0
butane-debugsource-0.16.0-1.el9.x86_64.rpm SHA-256: 558fac2a9429451f6c837748d600c506aabc4c84eb54eb5d87dabb15c3732e5b

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
x86_64

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
aarch64
butane-0.16.0-1.el9.aarch64.rpm SHA-256: f8568d3c6faa37280cf75d09e2c7a6337f41dd0e3dc1bc04c33d72eb943a04f4
butane-debuginfo-0.16.0-1.el9.aarch64.rpm SHA-256: ce9e82e82c9239d62937ccd2d895b67880611dc8c9beb6d20199caed90da1385
butane-debugsource-0.16.0-1.el9.aarch64.rpm SHA-256: bd7b456a611261bb60cd56c1a8fef827f7c1a446a3d39ca5e9b0551569f64c10

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
aarch64
butane-0.16.0-1.el9.aarch64.rpm SHA-256: f8568d3c6faa37280cf75d09e2c7a6337f41dd0e3dc1bc04c33d72eb943a04f4
butane-debuginfo-0.16.0-1.el9.aarch64.rpm SHA-256: ce9e82e82c9239d62937ccd2d895b67880611dc8c9beb6d20199caed90da1385
butane-debugsource-0.16.0-1.el9.aarch64.rpm SHA-256: bd7b456a611261bb60cd56c1a8fef827f7c1a446a3d39ca5e9b0551569f64c10

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
aarch64

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
s390x
butane-0.16.0-1.el9.s390x.rpm SHA-256: 71665beb66d5c95dcdf54932550fefa5d190dc6a5964da10aa5b7bb6e07842f6
butane-debuginfo-0.16.0-1.el9.s390x.rpm SHA-256: 8af8e7e666c127f5e8b3f2015ac48054ce72dd172631e5f307dfcfc9c220badf
butane-debugsource-0.16.0-1.el9.s390x.rpm SHA-256: 5b553236cca6d309b53a2a99782d74f3168bda42892e8f0cb0f9668f7f1a8002

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
butane-0.16.0-1.el9.src.rpm SHA-256: a1398ba2eda49601b209cff7ce5bd6289211a7c3f75dcefcd7511c9037f849e4
s390x
butane-0.16.0-1.el9.s390x.rpm SHA-256: 71665beb66d5c95dcdf54932550fefa5d190dc6a5964da10aa5b7bb6e07842f6
butane-debuginfo-0.16.0-1.el9.s390x.rpm SHA-256: 8af8e7e666c127f5e8b3f2015ac48054ce72dd172631e5f307dfcfc9c220badf
butane-debugsource-0.16.0-1.el9.s390x.rpm SHA-256: 5b553236cca6d309b53a2a99782d74f3168bda42892e8f0cb0f9668f7f1a8002

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
s390x

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.