CVE-2022-3515
Description
RHSA-2022:7089: libksba security update (Important)
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Description libksba: integer overflow may lead to remote code execution CVSS v3: 8.6 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H) Errata / fixed releases ProductPackageAdvisoryReleased Red Hat Enterprise Linux 7libksba-0:1.3.0-6.el7_9RHSA-2022:70882022-10-24T00:00:00Z Red Hat Enterprise Linux 8libksba-0:1.3.5-8.el8_6RHSA-2022:70892022-10-24T00:00:00Z Red Hat Enterprise Linux 8.1 Update Services…
Description
libksba: integer overflow may lead to remote code execution
CVSS v3: 8.6 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H)
Errata / fixed releases
| Product | Package | Advisory | Released |
|---|---|---|---|
| Red Hat Enterprise Linux 7 | libksba-0:1.3.0-6.el7_9 | RHSA-2022:7088 | 2022-10-24T00:00:00Z |
| Red Hat Enterprise Linux 8 | libksba-0:1.3.5-8.el8_6 | RHSA-2022:7089 | 2022-10-24T00:00:00Z |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | libksba-0:1.3.5-8.el8_1 | RHSA-2022:7209 | 2022-10-26T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | libksba-0:1.3.5-8.el8_2 | RHSA-2022:7283 | 2022-11-01T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Telecommunications Update Service | libksba-0:1.3.5-8.el8_2 | RHSA-2022:7283 | 2022-11-01T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions | libksba-0:1.3.5-8.el8_2 | RHSA-2022:7283 | 2022-11-01T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Extended Update Support | libksba-0:1.3.5-8.el8_4 | RHSA-2022:7927 | 2022-11-14T00:00:00Z |
| Red Hat Enterprise Linux 9 | libksba-0:1.5.1-5.el9_0 | RHSA-2022:7090 | 2022-10-24T00:00:00Z |
| Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 | redhat-virtualization-host-0:4.5.3-202211170828_8.6 | RHSA-2022:8598 | 2022-11-22T00:00:00Z |
Package state
| Product | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 6 | libksba | Out of support scope |
Apply commands
yum update -y libksba
# or:
dnf upgrade -y libksbaOS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| arch | fixed | 1.6.3-1 | |
| rhel | 9 | fixed | |
| sles | affected | | |
| rocky | 8 | fixed | |
| debian | bookworm | fixed | 1.6.2-1 |
| debian | bullseye | fixed | 1.5.0-3+deb11u1 |
| debian | forky | fixed | 1.6.2-1 |
| debian | sid | fixed | 1.6.2-1 |
| debian | trixie | fixed | 1.6.2-1 |
| rocky | 9 | fixed | |
| rhel | 8 | fixed | |
References
- https://access.redhat.com/errata/RHSA-2022:7090
- https://www.suse.com/security/cve/CVE-2022-3515.html
- https://errata.rockylinux.org/RLSA-2022:7089
- https://security-tracker.debian.org/tracker/CVE-2022-3515
- https://errata.rockylinux.org/RLSA-2022:7090
- https://access.redhat.com/errata/RHSA-2022:7089
- https://bugzilla.redhat.com/2135610
- https://errata.almalinux.org/8/ALSA-2022-7089.html
- https://errata.almalinux.org/9/ALSA-2022-7090.html
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.