RHSA-2020:4847

Description

Red Hat Security Advisory: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Affected Systems

• redhat•apache-commons-collections

  < 0:3.2.2-10.module+el8.1.0+3366+6dfb954c

• redhat•apache-commons-lang

  < 0:2.6-21.module+el8.1.0+3366+6dfb954c

• redhat•apache-commons-net

  < 0:3.6-3.module+el8.3.0+6805+72837426

• redhat•bea-stax

  < 0:1.2.0-16.module+el8.1.0+3366+6dfb954c

• redhat•bea-stax-api

  < 0:1.2.0-16.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-fastinfoset

  < 0:1.2.13-9.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-jaxb

  < 0:2.2.11-11.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-jaxb-api

  < 0:2.2.12-8.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-jaxb-core

  < 0:2.2.11-11.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-jaxb-runtime

  < 0:2.2.11-11.module+el8.1.0+3366+6dfb954c

• redhat•glassfish-jaxb-txw2

  < 0:2.2.11-11.module+el8.1.0+3366+6dfb954c

• redhat•jackson-annotations

  < 0:2.10.0-1.module+el8.2.0+5059+3eb3af25

• redhat•jackson-core

  < 0:2.10.0-1.module+el8.2.0+5059+3eb3af25

• redhat•jackson-databind

  < 0:2.10.0-1.module+el8.2.0+5059+3eb3af25

• redhat•jackson-jaxrs-json-provider

  < 0:2.9.9-1.module+el8.1.0+3832+9784644d

• redhat•jackson-jaxrs-providers

  < 0:2.9.9-1.module+el8.1.0+3832+9784644d

• redhat•jackson-module-jaxb-annotations

  < 0:2.7.6-4.module+el8.1.0+3366+6dfb954c

• redhat•jakarta-commons-httpclient

  < 1:3.1-28.module+el8.1.0+3366+6dfb954c

• redhat•javassist

  < 0:3.18.1-8.module+el8.1.0+3366+6dfb954c

• redhat•javassist-javadoc

  < 0:3.18.1-8.module+el8.1.0+3366+6dfb954c

• redhat•jss

  < 0:4.7.3-1.module+el8.3.0+8058+d5cd4219

• redhat•jss-debuginfo

  < 0:4.7.3-1.module+el8.3.0+8058+d5cd4219

• redhat•jss-debugsource

  < 0:4.7.3-1.module+el8.3.0+8058+d5cd4219

• redhat•jss-javadoc

  < 0:4.7.3-1.module+el8.3.0+8058+d5cd4219

• redhat•ldapjdk

  < 0:4.22.0-1.module+el8.3.0+6784+6e1e4c62

• redhat•ldapjdk-javadoc

  < 0:4.22.0-1.module+el8.3.0+6784+6e1e4c62

• redhat•pki-base

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-base-java

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-ca

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-core

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-core-debuginfo

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-core-debugsource

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-kra

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-server

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-servlet-4.0-api

  < 1:9.0.30-1.module+el8.3.0+6730+8f9c6254

• redhat•pki-servlet-engine

  < 1:9.0.30-1.module+el8.3.0+6730+8f9c6254

• redhat•pki-symkey

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-symkey-debuginfo

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-tools

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•pki-tools-debuginfo

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•python-nss

  < 0:1.0.1-10.module+el8.1.0+3366+6dfb954c

• redhat•python-nss-debugsource

  < 0:1.0.1-10.module+el8.1.0+3366+6dfb954c

• redhat•python-nss-doc

  < 0:1.0.1-10.module+el8.1.0+3366+6dfb954c

• redhat•python3-nss

  < 0:1.0.1-10.module+el8.1.0+3366+6dfb954c

• redhat•python3-nss-debuginfo

  < 0:1.0.1-10.module+el8.1.0+3366+6dfb954c

• redhat•python3-pki

  < 0:10.9.4-1.module+el8.3.0+8058+d5cd4219

• redhat•relaxngDatatype

  < 0:2011.1-7.module+el8.1.0+3366+6dfb954c

• redhat•resteasy

  < 0:3.0.26-3.module+el8.2.0+5723+4574fbff

• redhat•slf4j

  < 0:1.7.25-4.module+el8.1.0+3366+6dfb954c

• redhat•slf4j-jdk14

  < 0:1.7.25-4.module+el8.1.0+3366+6dfb954c

Showing first 50 affected entries in server-rendered view.

References (111)

• https://access.redhat.com/errata/RHSA-2020:4847
• https://access.redhat.com/security/updates/classification/#moderate
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/
• https://bugzilla.redhat.com/show_bug.cgi?id=1376706
• https://bugzilla.redhat.com/show_bug.cgi?id=1399546
• https://bugzilla.redhat.com/show_bug.cgi?id=1406505
• https://bugzilla.redhat.com/show_bug.cgi?id=1601614
• https://bugzilla.redhat.com/show_bug.cgi?id=1601617
• https://bugzilla.redhat.com/show_bug.cgi?id=1666907
• https://bugzilla.redhat.com/show_bug.cgi?id=1668097
• https://bugzilla.redhat.com/show_bug.cgi?id=1686454
• https://bugzilla.redhat.com/show_bug.cgi?id=1695901
• https://bugzilla.redhat.com/show_bug.cgi?id=1701972
• https://bugzilla.redhat.com/show_bug.cgi?id=1706521
• https://bugzilla.redhat.com/show_bug.cgi?id=1710171
• https://bugzilla.redhat.com/show_bug.cgi?id=1721684
• https://bugzilla.redhat.com/show_bug.cgi?id=1724433
• https://bugzilla.redhat.com/show_bug.cgi?id=1732565
• https://bugzilla.redhat.com/show_bug.cgi?id=1732981
• https://bugzilla.redhat.com/show_bug.cgi?id=1777579
• https://bugzilla.redhat.com/show_bug.cgi?id=1805541
• https://bugzilla.redhat.com/show_bug.cgi?id=1817247
• https://bugzilla.redhat.com/show_bug.cgi?id=1821851
• https://bugzilla.redhat.com/show_bug.cgi?id=1822246
• https://bugzilla.redhat.com/show_bug.cgi?id=1824939
• https://bugzilla.redhat.com/show_bug.cgi?id=1824948
• https://bugzilla.redhat.com/show_bug.cgi?id=1825998
• https://bugzilla.redhat.com/show_bug.cgi?id=1828406
• https://bugzilla.redhat.com/show_bug.cgi?id=1842734
• https://bugzilla.redhat.com/show_bug.cgi?id=1842736
• https://bugzilla.redhat.com/show_bug.cgi?id=1843537
• https://bugzilla.redhat.com/show_bug.cgi?id=1845447
• https://bugzilla.redhat.com/show_bug.cgi?id=1850004
• https://bugzilla.redhat.com/show_bug.cgi?id=1854043
• https://bugzilla.redhat.com/show_bug.cgi?id=1854959
• https://bugzilla.redhat.com/show_bug.cgi?id=1855273
• https://bugzilla.redhat.com/show_bug.cgi?id=1855319
• https://bugzilla.redhat.com/show_bug.cgi?id=1856368
• https://bugzilla.redhat.com/show_bug.cgi?id=1857933
• https://bugzilla.redhat.com/show_bug.cgi?id=1861911
• https://bugzilla.redhat.com/show_bug.cgi?id=1869893
• https://bugzilla.redhat.com/show_bug.cgi?id=1871064
• https://bugzilla.redhat.com/show_bug.cgi?id=1873235
• https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4847.json
• https://access.redhat.com/security/cve/CVE-2015-9251
• https://www.cve.org/CVERecord?id=CVE-2015-9251
• https://nvd.nist.gov/vuln/detail/CVE-2015-9251
• https://access.redhat.com/security/cve/CVE-2016-10735
• https://www.cve.org/CVERecord?id=CVE-2016-10735
• https://nvd.nist.gov/vuln/detail/CVE-2016-10735
• https://access.redhat.com/security/cve/CVE-2018-14040
• https://www.cve.org/CVERecord?id=CVE-2018-14040
• https://nvd.nist.gov/vuln/detail/CVE-2018-14040
• https://access.redhat.com/security/cve/CVE-2018-14042
• https://www.cve.org/CVERecord?id=CVE-2018-14042
• https://nvd.nist.gov/vuln/detail/CVE-2018-14042
• https://access.redhat.com/security/cve/CVE-2019-8331
• https://www.cve.org/CVERecord?id=CVE-2019-8331
• https://nvd.nist.gov/vuln/detail/CVE-2019-8331
• https://access.redhat.com/security/cve/CVE-2019-10146
• https://www.cve.org/CVERecord?id=CVE-2019-10146
• https://nvd.nist.gov/vuln/detail/CVE-2019-10146
• https://access.redhat.com/security/cve/CVE-2019-10179
• https://www.cve.org/CVERecord?id=CVE-2019-10179
• https://nvd.nist.gov/vuln/detail/CVE-2019-10179
• https://access.redhat.com/security/cve/CVE-2019-10221
• https://www.cve.org/CVERecord?id=CVE-2019-10221
• https://nvd.nist.gov/vuln/detail/CVE-2019-10221
• https://access.redhat.com/security/cve/CVE-2019-11358
• https://www.cve.org/CVERecord?id=CVE-2019-11358
• https://nvd.nist.gov/vuln/detail/CVE-2019-11358
• https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/
• https://www.drupal.org/sa-core-2019-006
• https://access.redhat.com/security/cve/CVE-2020-1721
• https://www.cve.org/CVERecord?id=CVE-2020-1721
• https://nvd.nist.gov/vuln/detail/CVE-2020-1721
• https://access.redhat.com/security/cve/CVE-2020-1935
• https://bugzilla.redhat.com/show_bug.cgi?id=1806835
• https://www.cve.org/CVERecord?id=CVE-2020-1935
• https://nvd.nist.gov/vuln/detail/CVE-2020-1935
• https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.100
• https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.51
• https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.31
• https://access.redhat.com/security/cve/CVE-2020-1938
• https://bugzilla.redhat.com/show_bug.cgi?id=1806398
• https://www.cve.org/CVERecord?id=CVE-2020-1938
• https://nvd.nist.gov/vuln/detail/CVE-2020-1938
• https://meterpreter.org/cve-2020-1938-apache-tomcat-ajp-connector-remote-code-execution-vulnerability-alert/
• https://www.cnvd.org.cn/webinfo/show/5415
• https://www.tenable.com/blog/cve-2020-1938-ghostcat-apache-tomcat-ajp-file-readinclusion-vulnerability-cnvd-2020-10487
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog
• https://access.redhat.com/security/cve/CVE-2020-11022
• https://www.cve.org/CVERecord?id=CVE-2020-11022
• https://nvd.nist.gov/vuln/detail/CVE-2020-11022
• https://github.com/advisories/GHSA-gxr4-xjj5-5px2
• https://access.redhat.com/security/cve/CVE-2020-11023
• https://www.cve.org/CVERecord?id=CVE-2020-11023
• https://nvd.nist.gov/vuln/detail/CVE-2020-11023
• https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
• https://access.redhat.com/security/cve/CVE-2020-15720
• https://www.cve.org/CVERecord?id=CVE-2020-15720
• https://nvd.nist.gov/vuln/detail/CVE-2020-15720
• https://access.redhat.com/security/cve/CVE-2020-25715
• https://bugzilla.redhat.com/show_bug.cgi?id=1891016
• https://www.cve.org/CVERecord?id=CVE-2020-25715
• https://nvd.nist.gov/vuln/detail/CVE-2020-25715
• https://access.redhat.com/security/cve/CVE-2022-25762
• https://bugzilla.redhat.com/show_bug.cgi?id=2085304
• https://www.cve.org/CVERecord?id=CVE-2022-25762
• https://nvd.nist.gov/vuln/detail/CVE-2022-25762
• https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.76