Lucene search
RedHatRHSA-2023:5209HistorySep 19, 2023 - 1:04 a.m.
(RHSA-2023:5209) Important: Red Hat Virtualization Host 4.4.z SP 1 security update
2023-09-1901:04:12
access.redhat.com
25
red hat virtualization host
kernel
intel firmware
x.400 address type confusion
security update
0.003 Low
EPSS
Percentile
65.6%
The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host’s resources and performing administrative tasks.
Security Fix(es):
-
kernel: Intel firmware update for insufficient granularity of access control in out-of-band management in some Intel Atom and Intel Xeon Scalable Processors (CVE-2022-21216)
-
kernel: Intel firmware update for Incorrect default permissions in some memory controller configurations (CVE-2022-33196)
-
openssl: X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
nessus
nessus
RHEL 8 : Red Hat Virtualization Host 4.4.z SP 1 (RHSA-2023:5209)
2023-09-19 00:00:00
SUSE SLES12 Security Update : ucode-intel (SUSE-SU-2023:0455-1)
2023-02-21 00:00:00
SUSE SLES15 Security Update : ucode-intel (SUSE-SU-2023:0454-1)
2023-02-21 00:00:00
amazon
amazon
Important: microcode_ctl
2023-03-30 22:50:00
Medium: microcode_ctl
2023-05-25 17:41:00
Medium: microcode_ctl
2023-05-25 17:41:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0454-1)
2023-02-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0455-1)
2023-02-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0456-1)
2023-02-21 00:00:00
rocky
rocky
microcode_ctl bug fix and enhancement update
2023-08-31 16:55:39
microcode_ctl bug fix and enhancement update
2023-07-08 02:53:40
rosalinux
rosalinux
Advisory ROSA-SA-2023-2228
2023-09-05 09:37:11
Advisory ROSA-SA-2023-2152
2023-04-11 14:23:07
fedora
fedora
[SECURITY] Fedora 38 Update: microcode_ctl-2.1-55.fc38
2023-05-27 01:20:05
[SECURITY] Fedora 37 Update: microcode_ctl-2.1-53.1.fc37
2023-05-30 01:08:07
[SECURITY] Fedora 37 Update: microcode_ctl-2.1-53.2.fc37
2023-08-18 00:42:26
ubuntu
ubuntu
Intel Microcode vulnerabilities
2023-02-27 00:00:00
OpenSSL vulnerabilities
2023-02-07 00:00:00
OpenSSL vulnerabilities
2023-02-07 00:00:00
cloudfoundry
cloudfoundry
USN-5886-1: Intel Microcode vulnerabilities | Cloud Foundry
2023-04-20 00:00:00
USN-5845-1: OpenSSL vulnerabilities | Cloud Foundry
2023-02-24 00:00:00
osv
osv
intel-microcode vulnerabilities
2023-02-27 05:12:38
CVE-2022-21216
2023-02-16 20:15:12
intel-microcode - security update
2023-04-01 00:00:00
mageia
mageia
Updated microcode packages fix security vulnerabilities
2023-03-11 22:00:39
ubuntucve
ubuntucve
prion
prion
Authorization
2023-02-16 20:15:00
Design/Logic Flaw
2023-02-16 21:15:00
Type confusion
2023-02-08 20:15:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM M7 Appliances are vulnerable to CVE-2022-21216
2024-03-21 10:21:35
Security Bulletin: Vulnerability in cryptography affects IBM Cloud Pak for Data System 1.0(CPDS 1.0) [CVE-2023-0286]
2023-04-04 06:36:31
Security Bulletin: CVE-2023-0286 may affect IBM CICS TX Advanced 10.1
2023-05-09 17:32:10
intel
intel
2023.1 IPU - Intel® Atom® and Intel® Xeon® Scalable Processors Advisory
2023-02-14 00:00:00
2023.1 IPU - Intel® Xeon® Processor Advisory
2023-02-15 00:00:00
redhatcve
redhatcve
nvd
nvd
cve
cve
debian
debian
[SECURITY] [DLA 3379-1] intel-microcode security update
2023-04-01 09:13:22
f5
f5
K000133432 : Intel CPU vulnerability CVE-2022-21216
2023-04-06 00:00:00
K000133373 : Intel SGX vulnerability CVE-2022-33196
2023-04-04 00:00:00
K000132941 : OpenSSL vulnerability CVE-2023-0286
2023-03-13 00:00:00
debiancve
debiancve
veracode
veracode
Privilege Escalation
2023-02-18 22:24:10
Privilege Escalation
2023-02-19 10:27:45
Type Confusion
2023-02-09 20:56:17
alpinelinux
alpinelinux
cvelist
cvelist
CVE-2022-21216
2023-02-16 19:59:52
CVE-2022-33196
2023-02-16 20:00:22
CVE-2023-0286 X.400 address type confusion in X.509 GeneralName
2023-02-08 19:01:50
oraclelinux
oraclelinux
openssl security update
2023-03-20 00:00:00
openssl security update
2023-03-22 00:00:00
openssl security update
2023-03-22 00:00:00
redhat
redhat
(RHSA-2023:4124) Important: edk2 security update
2023-07-18 07:16:46
(RHSA-2023:1335) Important: openssl security update
2023-03-20 09:19:58
(RHSA-2023:4252) Important: edk2 security update
2023-07-25 07:32:43
cbl_mariner
cbl_mariner
CVE-2023-0286 affecting package reaper 3.1.1-6
2024-07-03 03:08:37
CVE-2023-0286 affecting package openssl 1.1.1k-16
2023-02-14 02:35:59
hivepro
hivepro
OpenSSL Releases Update to Address Several High-Severity Vulnerabilities
2023-02-10 12:55:54
ics
ics
Siemens Address Processing in SIMATIC
2023-08-10 12:00:00
wolfi
wolfi
CVE-2023-0286 vulnerabilities
2024-07-03 09:08:38
freebsd
freebsd
py-cryptography -- includes a vulnerable copy of OpenSSL
2023-02-08 00:00:00
cgr
cgr
CVE-2023-0286 vulnerabilities
2024-05-19 03:07:16
openssl
openssl
Vulnerability in OpenSSL CVE-2023-0286
2023-02-07 00:00:00
centos
centos
openssl security update
2023-03-22 14:01:44
github
github
Vulnerable OpenSSL included in sgx-dcap-quote-verify-python
2023-02-14 00:30:22
Vulnerable OpenSSL included in cryptography wheels
2023-02-08 22:17:06
rustsec
rustsec
X.400 address type confusion in X.509 `GeneralName`
2023-02-07 12:00:00
githubexploit
githubexploit
Exploit for Type Confusion in Openssl
2023-03-21 04:57:37
cloudlinux
cloudlinux
openssl: Fix of 2 CVEs
2023-02-10 10:39:56
redos
redos
ROS-20230620-06
2023-06-20 00:00:00