Lucene search
OracleLinuxELSA-2024-4222HistoryJul 02, 2024 - 12:00 a.m.
pki-core security update
2024-07-0200:00:00
linux.oracle.com
pki-core
rhcs
security update
rhel 7.9
rhcs 9.7
7.5 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
[10.5.18-32]
- ##########################################################################
-
RHEL 7.9 (Async Security Update CY24Q2.4):
- ##########################################################################
- Updated nspr-devel and nss-devel build requirements as well as nss and
nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen)
- Added git build dependency (mharmsen)
- Additional trivial fix (jmagne)
- RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca:
token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly
translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett)
- ##########################################################################
-
RHCS 9.7 (Async Security Update CY24Q2.4):
- ##########################################################################
- Bug 2047831 - Coolkey Hardcoded RSA Max Key Size
[RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys
[RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request
message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest
HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable
between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password
[RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover
[RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS
during install despite adding pki_import_shared_secret=True param
at install [RHCS 9.7.z] (jmagne)
[10.5.18-31] - ##########################################################################
-
RHEL 7.9 (Async Security Update CY24Q2.3):
- ##########################################################################
- Updated nspr-devel and nss-devel build requirements as well as nss and
nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen)
- Added git build dependency (mharmsen)
- Additional trivial fix (jmagne)
- RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca:
token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly
translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett)
- ##########################################################################
-
RHCS 9.7 (Async Security Update CY24Q2.3):
- ##########################################################################
- Bug 2047831 - Coolkey Hardcoded RSA Max Key Size
[RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys
[RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request
message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest
HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable
between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password
[RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover
[RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS
during install despite adding pki_import_shared_secret=True param
at install [RHCS 9.7.z] (jmagne)
[10.5.18-30] - ##########################################################################
-
RHEL 7.9 (Async Security Update CY24Q2.2):
- ##########################################################################
- Updated nspr-devel and nss-devel build requirements as well as nss and
nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen)
- Added git build dependency (mharmsen)
- Additional trivial fix (jmagne)
- RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca:
token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly
translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett)
- ##########################################################################
-
RHCS 9.7 (Async Security Update CY24Q2.2):
- ##########################################################################
- Bug 2047831 - Coolkey Hardcoded RSA Max Key Size
[RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys
[RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request
message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest
HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable
between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password
[RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover
[RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS
during install despite adding pki_import_shared_secret=True param
at install [RHCS 9.7.z] (jmagne)
[10.5.18-29] - ##########################################################################
-
RHEL 7.9 (Async Security Update CY24Q2.1):
- ##########################################################################
- Updated nspr-devel and nss-devel build requirements as well as nss and
nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen)
- Added git build dependency (mharmsen)
- Additional trivial fix (jmagne)
- RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca:
token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly
translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett)
- ##########################################################################
-
RHCS 9.7 (Async Security Update CY24Q2.1):
- ##########################################################################
- Bug 2047831 - Coolkey Hardcoded RSA Max Key Size
[RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys
[RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request
message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest
HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable
between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password
[RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover
[RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS
during install despite adding pki_import_shared_secret=True param
at install [RHCS 9.7.z] (jmagne)
[10.5.18-28] - ##########################################################################
-
RHEL 7.9 (Async Security Update CY24Q2):
- ##########################################################################
- Updated nspr-devel and nss-devel build requirements as well as nss and
nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen)
- Added git build dependency (mharmsen)
- RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca:
token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly
translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett)
- ##########################################################################
-
RHCS 9.7 (Async Security Update CY24Q2):
- ##########################################################################
- Bug 2047831 - Coolkey Hardcoded RSA Max Key Size
[RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys
[RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request
message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest
HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable
between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password
[RHCS 9.7.z] (mfargett) - Bug 2265180 - Add Support for Symmetric Key Rollover
[RHCS 9.7.z] (jmagne)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | pki-core | < 10.5.18-32.el7_9 | pki-core-10.5.18-32.el7_9.src.rpm |
| oracle linux | 7 | src | pki-core | < 10.5.18-32.el7_9 | pki-core-10.5.18-32.el7_9.src.rpm |
| oracle linux | 7 | src | pki-core | < 10.5.18-32.el7_9 | pki-core-10.5.18-32.el7_9.src.rpm |
| oracle linux | 7 | noarch | pki-base | < 10.5.18-32.el7_9 | pki-base-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-base | < 10.5.18-32.el7_9 | pki-base-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-base-java | < 10.5.18-32.el7_9 | pki-base-java-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-base-java | < 10.5.18-32.el7_9 | pki-base-java-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-ca | < 10.5.18-32.el7_9 | pki-ca-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-ca | < 10.5.18-32.el7_9 | pki-ca-10.5.18-32.el7_9.noarch.rpm |
| oracle linux | 7 | noarch | pki-javadoc | < 10.5.18-32.el7_9 | pki-javadoc-10.5.18-32.el7_9.noarch.rpm |
Related
nessus
nessus
RHEL 9 : pki-core (RHSA-2024:4165)
2024-06-27 00:00:00
Oracle Linux 7 : pki-core (ELSA-2024-4222)
2024-07-02 00:00:00
RHEL 8 : pki-core (RHSA-2024:4179)
2024-07-01 00:00:00
osv
osv
Important: pki-core security update
2024-06-27 00:00:00
Important: pki-core security update
2024-07-03 21:27:28
debiancve
debiancve
CVE-2023-4727
2024-06-11 20:15:09
ubuntucve
ubuntucve
CVE-2023-4727
2024-06-11 00:00:00
almalinux
almalinux
Important: pki-core security update
2024-06-27 00:00:00
redhat
redhat
(RHSA-2024:4070) Important: Red Hat Certificate System 10.4 for RHEL 8 security and bug fix update
2024-06-24 15:46:32
(RHSA-2024:4051) Important: pki-core security update
2024-06-23 22:34:11
redhatcve
redhatcve
CVE-2023-4727
2024-06-11 19:24:16
nvd
nvd
CVE-2023-4727
2024-06-11 20:15:09
cvelist
cvelist
CVE-2023-4727 Dogtag ca: token authentication bypass vulnerability
2024-06-11 19:30:25
oraclelinux
oraclelinux
pki-core security update
2024-06-27 00:00:00
cve
cve
CVE-2023-4727
2024-06-11 20:15:09
rocky
rocky
pki-core security update
2024-07-03 21:27:28
vulnrichment
vulnrichment
CVE-2023-4727 Dogtag ca: token authentication bypass vulnerability
2024-06-11 19:30:25
7.5 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
Related for ELSA-2024-4222