ALSA-2022:1851

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/8/ALSA-2022-1851.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1851.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2022:1851
Related
Published
2022-05-10T08:04:36Z
Modified
2022-05-10T08:04:34Z
Summary
Moderate: pki-core:10.6 security and bug fix update
Details

The Public Key Infrastructure (PKI) Core contains fundamental packages required by AlmaLinux Certificate System.

Security Fix(es):

  • JSS: memory leak in TLS connection leads to OOM (CVE-2021-4213)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

Affected packages

AlmaLinux:8 / jss

Package

Name
jss

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.9.3-1.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / jss-javadoc

Package

Name
jss-javadoc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.9.3-1.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / ldapjdk

Package

Name
ldapjdk

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.23.0-1.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / ldapjdk-javadoc

Package

Name
ldapjdk-javadoc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.23.0-1.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-acme

Package

Name
pki-acme

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-base

Package

Name
pki-base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-base-java

Package

Name
pki-base-java

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-ca

Package

Name
pki-ca

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-kra

Package

Name
pki-kra

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-server

Package

Name
pki-server

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-symkey

Package

Name
pki-symkey

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / pki-tools

Package

Name
pki-tools

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / python3-pki

Package

Name
python3-pki

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.12.0-2.module_el8.6.0+2764+9fc58d50

AlmaLinux:8 / tomcatjss

Package

Name
tomcatjss

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.7.1-1.module_el8.6.0+2764+9fc58d50