ALSA-2022:0290
- Source
- https://errata.almalinux.org/8/ALSA-2022-0290.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:0290.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2022:0290
- Related
- Published
- 2022-01-26T14:27:19Z
- Modified
- 2022-01-27T20:23:26Z
- Summary
- Important: parfait:0.5 security update
- Details
-
Parfait is a Java performance monitoring library that collects metrics and exposes them through a variety of outputs. It provides APIs for extracting performance metrics from the JVM and other sources. It interfaces to Performance Co-Pilot (PCP) using the Memory Mapped Value (MMV) machinery for extremely lightweight instrumentation.
Security Fix(es):
log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender (CVE-2022-23305)
log4j: Unsafe deserialization flaw in Chainsaw log viewer (CVE-2022-23307)
log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender (CVE-2021-4104)
log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink (CVE-2022-23302)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
Affected packages
AlmaLinux:8 / parfait
Package
- Name
- parfait
AlmaLinux:8 / parfait
Package
- Name
- parfait
AlmaLinux:8 / parfait-examples
Package
- Name
- parfait-examples
AlmaLinux:8 / parfait-examples
Package
- Name
- parfait-examples
AlmaLinux:8 / parfait-javadoc
Package
- Name
- parfait-javadoc
AlmaLinux:8 / parfait-javadoc
Package
- Name
- parfait-javadoc
AlmaLinux:8 / pcp-parfait-agent
Package
- Name
- pcp-parfait-agent
AlmaLinux:8 / pcp-parfait-agent
Package
- Name
- pcp-parfait-agent
AlmaLinux:8 / si-units
Package
- Name
- si-units
AlmaLinux:8 / si-units
Package
- Name
- si-units
AlmaLinux:8 / si-units-javadoc
Package
- Name
- si-units-javadoc
AlmaLinux:8 / si-units-javadoc
Package
- Name
- si-units-javadoc
AlmaLinux:8 / unit-api
Package
- Name
- unit-api
AlmaLinux:8 / unit-api
Package
- Name
- unit-api
AlmaLinux:8 / unit-api-javadoc
Package
- Name
- unit-api-javadoc
AlmaLinux:8 / unit-api-javadoc
Package
- Name
- unit-api-javadoc
AlmaLinux:8 / uom-lib
Package
- Name
- uom-lib
AlmaLinux:8 / uom-lib
Package
- Name
- uom-lib
AlmaLinux:8 / uom-lib-javadoc
Package
- Name
- uom-lib-javadoc
AlmaLinux:8 / uom-lib-javadoc
Package
- Name
- uom-lib-javadoc
AlmaLinux:8 / uom-parent
Package
- Name
- uom-parent
AlmaLinux:8 / uom-parent
Package
- Name
- uom-parent
AlmaLinux:8 / uom-se
Package
- Name
- uom-se
AlmaLinux:8 / uom-se
Package
- Name
- uom-se
AlmaLinux:8 / uom-se-javadoc
Package
- Name
- uom-se-javadoc
AlmaLinux:8 / uom-se-javadoc
Package
- Name
- uom-se-javadoc
AlmaLinux:8 / uom-systems
Package
- Name
- uom-systems
AlmaLinux:8 / uom-systems
Package
- Name
- uom-systems
AlmaLinux:8 / uom-systems-javadoc
Package
- Name
- uom-systems-javadoc