Debian Bug report logs -
#1024669
libarchive: CVE-2022-36227: Null pointer dereference in archive_writec
Package:
src:libarchive;
Maintainer for src:libarchive is Peter Pentchev <roam@debianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 22 Nov 2022 21:42:12 UTC
Severity: normal
Tags: securit ...
In libarchive 361, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference or, in some cases, even arbitrary code execution (CVE-2022-36227) ...
In libarchive 361, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference or, in some cases, even arbitrary code execution (CVE-2022-36227) ...
DescriptionThe MITRE CVE dictionary describes this issue as: In libarchive 361, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference or, in some cases, even arbitrary code execution ...
Synopsis
Important: OpenShift Container Platform 41157 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 41157 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift ...
概述
Moderate: Red Hat OpenShift Dev Spaces Security Update
类型/严重性
Security Advisory: Moderate
标题
Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and abrowser-based IDE built for teams and organizations Dev Spaces runs inOpenShift and is well-suited for container-based developmentThe 371 release is ...
Synopsis
Important: Network observability 130 for Openshift
Type/Severity
Security Advisory: Important
Topic
Network Observability 130 for OpenShiftRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is ava ...
Synopsis
Important: Red Hat Advanced Cluster Security 374 for Kubernetes security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat Advanced Cluster Security for Kubernetes (RHACS) Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scor ...
Synopsis
Important: Red Hat Advanced Cluster Security for Kubernetes 373 security update
Type/Severity
Security Advisory: Important
Topic
Updated images are now available for Red Hat Advanced Cluster Security forKubernetes (RHACS) The updated image includes security fixesRed Hat Product Security has rated this update as having a security i ...
Synopsis
Critical: Multicluster Engine for Kubernetes 209 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 209 General Availability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as having a security ...
Synopsis
Moderate: Red Hat OpenShift Data Foundation 4123 Security and Bug fix update
Type/Severity
Security Advisory: Moderate
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4123 on Red Hat Enterprise Linux 8 from Red Hat Container RegistryRed Hat Product Security has rated this update ...
Synopsis
Critical: Multicluster Engine for Kubernetes 217 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 217 General Availability release images, which address security issues and update container imagesRed Hat Product Security has rated this update as having a secu ...
Synopsis
Moderate: Release of OpenShift Serverless 1290
Type/Severity
Security Advisory: Moderate
Topic
OpenShift Serverless version 1290 contains a moderate security impactThe References section contains CVE links providing detailed severity ratingsfor each vulnerability Ratings are based on a Common Vulnerability ScoringSystem (CVSS) ...
Synopsis
Low: libarchive security update
Type/Severity
Security Advisory: Low
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libarchive is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a securi ...
Synopsis
Critical: Red Hat Advanced Cluster Management 274 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Red Hat Advanced Cluster Management for Kubernetes 274 GeneralAvailability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as h ...
Synopsis
Moderate: OpenShift Container Platform 4134 CNF vRAN extras security update
Type/Severity
Security Advisory: Moderate
Topic
An update for ztp-site-generate-container, topology-aware-lifecycle-manager and bare-metal-event-relay is now available for Red Hat OpenShift Container Platform 413Red Hat Product Security has rated this upd ...
Synopsis
Important: OpenShift API for Data Protection (OADP) 115 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
OpenShift API for Data Protection (OADP) 115 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ba ...
Synopsis
Moderate: Red Hat OpenShift Service Mesh 227 security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Service Mesh 227Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is ...
Synopsis
Important: Red Hat OpenShift Service Mesh Containers for 240
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Service Mesh Containers for 240Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sev ...
Synopsis
Important: Self Node Remediation Operator 051 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Important: Node Health Check Operator 041
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Health Check Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: Node Maintenance Operator 501 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Maintenance Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerab ...
Synopsis
Low: Red Hat OpenShift support for Windows Containers 710 [security update]
Type/Severity
Security Advisory: Low
Topic
The components for Red Hat OpenShift support for Windows Containers 710 are now available This product release includes bug fixes and security updates for the following packages: windows-machine-config-operator ...
Synopsis
Moderate: Migration Toolkit for Runtimes security update
Type/Severity
Security Advisory: Moderate
Topic
An update for mtr-operator-bundle-container, mtr-operator-container, mtr-web-container, and mtr-web-executor-container is now available for Migration Toolkit for Runtimes 1 on RHEL 8Red Hat Product Security has rated this update ...
Synopsis
Moderate: Red Hat OpenShift Data Foundation 4119 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4119 on Red Hat Enterprise Linux 8 from Red Hat Container RegistryRed Hat Product Security has rated this update ...
Synopsis
Moderate: VolSync 054 security fixes and enhancements
Type/Severity
Security Advisory: Moderate
Topic
VolSync v054 security fixes and enhancementsRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is ...
Synopsis
Important: Security Update for cert-manager Operator for Red Hat OpenShift 1103
Type/Severity
Security Advisory: Important
Topic
cert-manager Operator for Red Hat OpenShift 1103Red Hat Product Security has rated this update as having a security impactof Important A Common Vulnerability Scoring System (CVSS) base score, whichgive ...
Synopsis
Critical: Multicluster Engine for Kubernetes 224 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 224 General Availability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as having a security ...
Synopsis
Low: libarchive security update
Type/Severity
Security Advisory: Low
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libarchive is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a securi ...
Synopsis
Moderate: Red Hat OpenShift Data Foundation 4124 security and Bug Fix update
Type/Severity
Security Advisory: Moderate
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4124 on Red Hat Enterprise Linux 8 from Red Hat Container RegistryRed Hat Product Security has rated this update ...
Synopsis
Moderate: Release of containers for OSP 162z (Train) director Operator
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenStack Platform (RHOSP) 162z (Train) director Operator containers are now available
Description
Release of Red Hat OpenStack Platform (RHOSP) 162z (Train) provides these changes:
Solution
Before ...
Synopsis
Low: libarchive security update
Type/Severity
Security Advisory: Low
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libarchive is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Security has rated this ...
Synopsis
Moderate: Secondary Scheduler Operator for Red Hat OpenShift 112 security update
Type/Severity
Security Advisory: Moderate
Topic
Secondary Scheduler Operator for Red Hat OpenShift 112Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, whi ...
概要
Important: OpenShift Container Platform 411 low-latency extras update
タイプ/重大度
Security Advisory: Important
トピック
An update for cnf-tests-container, dpdk-base-container and performance-addon-operator-must-gather-rhel8-container is now available for Red Hat OpenShift Container Platform 411 Secondary scheduler builds ...
Synopsis
Moderate: Migration Toolkit for Runtimes security update
Type/Severity
Security Advisory: Moderate
Topic
An update for mtr-operator-bundle-container, mtr-operator-container, mtr-web-container, and mtr-web-executor-container is now available for Migration Toolkit for Runtimes 1 on RHEL 8Red Hat Product Security has rated this update ...
Synopsis
Moderate: VolSync 063 security fixes and enhancements
Type/Severity
Security Advisory: Moderate
Topic
VolSync v063 security fixes and enhancementsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, ...
Synopsis
Moderate: Gatekeeper Operator v02 security fixes and enhancements
Type/Severity
Security Advisory: Moderate
Topic
Gatekeeper Operator v02 security fixes and enhancementsRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score,which gives a detaile ...
Synopsis
Moderate: Release of OpenShift Serverless 1291
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Serverless version 1291 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity ...
Synopsis
Moderate: Red Hat OpenShift support for Windows Containers 601[security update]
Type/Severity
Security Advisory: Moderate
Topic
The components for Red Hat OpenShift support for Windows Containers 601 are now available This product release includes bug fixes and security update for the following packages: windows-machine-config-o ...
Synopsis
Moderate: Logging Subsystem 572 - Red Hat OpenShift security update
Type/Severity
Security Advisory: Moderate
Topic
Logging Subsystem 572 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Synopsis
Important: Migration Toolkit for Containers (MTC) 1710 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
The Migration Toolkit for Containers (MTC) 1710 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ...
Synopsis
Critical: Red Hat Advanced Cluster Management 266 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Red Hat Advanced Cluster Management for Kubernetes 266 GeneralAvailability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as h ...
Synopsis
Moderate: OpenShift sandboxed containers 141 security update
Type/Severity
Security Advisory: Moderate
Topic
OpenShift sandboxed containers 141 is now availableRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed seve ...
Synopsis
Important: OpenShift Container Platform 41247 security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 41247 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container P ...
Synopsis
Critical: Red Hat Advanced Cluster Management 259 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Red Hat Advanced Cluster Management for Kubernetes 259 GeneralAvailability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as h ...
Synopsis
Moderate: OpenShift Jenkins image and Jenkins agent base image security update
Type/Severity
Security Advisory: Moderate
Topic
Release of Bug Advisories for the OpenShift Jenkins image and Jenkins agent base imageRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring Sys ...
Synopsis
Important: OpenShift Container Platform 4132 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4132 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Synopsis
Important: Red Hat OpenShift Data Foundation 4130 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available in Red Hat Container Registry for Red Hat OpenShift Data Foundation 4130 on Red Hat Enterprise Linux 9Red Hat ...
Vulmon