[CLSA-2022:1671124065] rpm: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2022-12-15
Description:
- CVE-2021-35939: validate intermediate symlinks during installation - CVE-2021-35938: set file metadata via fd-based ops for everything but symlinks - Fix file descriptor leak recently introduced in rpmPackageFilesInstall()
Updated packages:
  • python3-rpm-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:def6eaf9c63528af6e9b0bd28ddcc53a246d7bc3
  • rpm-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:2df68f02059246b23807db4e41b9447667d470fe
  • rpm-apidocs-4.14.3-19.el8_5.tuxcare.els2.noarch.rpm
    sha:cc79cdbf0042864de9dda78010ea4cf8c8595948
  • rpm-build-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:a6eb933740e631bcc70d0eab1ba60d2dd9ef3bef
  • rpm-build-libs-4.14.3-19.el8_5.tuxcare.els2.i686.rpm
    sha:12e73b41d40f84d4e8fb4ba9c9991933b80e7bd3
  • rpm-build-libs-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:646e5021f42a2e7ca6b8e1c0dc03bc725a11908d
  • rpm-cron-4.14.3-19.el8_5.tuxcare.els2.noarch.rpm
    sha:0a284d598607f7bcdc4c321d13aaf811f20369d2
  • rpm-devel-4.14.3-19.el8_5.tuxcare.els2.i686.rpm
    sha:a8a54219f97689195a511a4df22f6c0691bae213
  • rpm-devel-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:61d5a0187d139459b272210151ac4647f4a01079
  • rpm-libs-4.14.3-19.el8_5.tuxcare.els2.i686.rpm
    sha:39a3da62f1f7c6ac7ee8abfbe999dbc1711e4c05
  • rpm-libs-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:68624cd64f39de3d89a68fdbd136bf88f19f4248
  • rpm-plugin-fapolicyd-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:f26f3454f88f7fbf2989a03ec7f4cf8b00bdccd3
  • rpm-plugin-ima-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:18ad275d63607d6e1651d71fdbccd706140f3a53
  • rpm-plugin-prioreset-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:805e7089e92348629c4e0c0ff959d64a88ef1f90
  • rpm-plugin-selinux-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:99b7458852126fe79baf87de8f7296b8e9acda4e
  • rpm-plugin-syslog-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:0eed8ba55c481110b0b829c6ea0897bea1ef45d0
  • rpm-plugin-systemd-inhibit-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:e3088c47d63efb1e0fa129d167a4b6075e4b615b
  • rpm-sign-4.14.3-19.el8_5.tuxcare.els2.x86_64.rpm
    sha:14ba0f01e811759c31c55981acb5ca1c750482da
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.