ALSA-2022:1851

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/8/ALSA-2022-1851.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:1851.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2022:1851

Related

CVE-2021-4213

Published

2022-05-10T08:04:36Z

Modified

2022-05-10T08:04:34Z

Summary

Moderate: pki-core:10.6 security and bug fix update

Details

The Public Key Infrastructure (PKI) Core contains fundamental packages required by AlmaLinux Certificate System.

Security Fix(es):

JSS: memory leak in TLS connection leads to OOM (CVE-2021-4213)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

Affected packages

AlmaLinux:8

jss

Package

Name: jss
Purl: pkg:rpm/almalinux/jss

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.9.3-1.module_el8.6.0+2764+9fc58d50

jss-javadoc

Package

Name: jss-javadoc
Purl: pkg:rpm/almalinux/jss-javadoc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.9.3-1.module_el8.6.0+2764+9fc58d50

ldapjdk

Package

Name: ldapjdk
Purl: pkg:rpm/almalinux/ldapjdk

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.23.0-1.module_el8.6.0+2764+9fc58d50

ldapjdk-javadoc

Package

Name: ldapjdk-javadoc
Purl: pkg:rpm/almalinux/ldapjdk-javadoc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.23.0-1.module_el8.6.0+2764+9fc58d50

pki-acme

Package

Name: pki-acme
Purl: pkg:rpm/almalinux/pki-acme

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-base

Package

Name: pki-base
Purl: pkg:rpm/almalinux/pki-base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-base-java

Package

Name: pki-base-java
Purl: pkg:rpm/almalinux/pki-base-java

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-ca

Package

Name: pki-ca
Purl: pkg:rpm/almalinux/pki-ca

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-kra

Package

Name: pki-kra
Purl: pkg:rpm/almalinux/pki-kra

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-server

Package

Name: pki-server
Purl: pkg:rpm/almalinux/pki-server

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-symkey

Package

Name: pki-symkey
Purl: pkg:rpm/almalinux/pki-symkey

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

pki-tools

Package

Name: pki-tools
Purl: pkg:rpm/almalinux/pki-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

python3-pki

Package

Name: python3-pki
Purl: pkg:rpm/almalinux/python3-pki

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

10.12.0-2.module_el8.6.0+2764+9fc58d50

tomcatjss

Package

Name: tomcatjss
Purl: pkg:rpm/almalinux/tomcatjss

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.7.1-1.module_el8.6.0+2764+9fc58d50