pki-core-10.5.18-24.el7
エラータID: AXSA:2022-4313:05
Release date:
Tuesday, December 6, 2022 - 20:56
Subject:
pki-core-10.5.18-24.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
The Public Key Infrastructure (PKI) Core contains fundamental packages required by Asianux Certificate System.
Security Fix(es):
* pki-core: access to external entities when parsing XML can lead to XXE (CVE-2022-2414)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2022-2414
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Solution:
Update packages.
CVEs:
CVE-2022-2414
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Access to external entities when parsing XML documents can lead to XML external entity (XXE) attacks. This flaw allows a remote attacker to potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests.
Additional Info:
N/A
Download:
SRPMS
- pki-core-10.5.18-24.el7.src.rpm
MD5: ad6fed4bbcfc6e7cbba97b4fce149d1b
SHA-256: 4a17d9bdd6ece99ee4e2a113e7993cb5a1a8a1ad57487996c0ebb40eeb025e4b
Size: 4.91 MB
Asianux Server 7 for x86_64
- pki-base-10.5.18-24.el7.noarch.rpm
MD5: 4c7e919f1c22116b4348d0018f2d679a
SHA-256: 088a0ccab0e594467cbed65df5d96db07aadc5703b3bc9a2d7c80470f22fafbd
Size: 438.83 kB - pki-base-java-10.5.18-24.el7.noarch.rpm
MD5: faf7a921086c051d299eb1eb9c5088c3
SHA-256: 602beaaf6aaf4ef8e329a8413945d71190a8b8df0aaffca56c1c714f902de70e
Size: 1.22 MB - pki-ca-10.5.18-24.el7.noarch.rpm
MD5: 83c433ebca28d4c78ffbdf9100d43f34
SHA-256: b5fdf7cf0387cdac56e403f1b98ae3d45560d71febe878132cf6009039570244
Size: 494.66 kB - pki-kra-10.5.18-24.el7.noarch.rpm
MD5: 021c8d268b1645f24741b843638ca9a3
SHA-256: 1339440adde588afc1794e7c897552a05981159698f1cd5e5c57455216e3d7fa
Size: 316.47 kB - pki-server-10.5.18-24.el7.noarch.rpm
MD5: b1a1d4d1d7ab44f4cd3ada659501140b
SHA-256: 3cc55ff1ff9f0f33f8ee358ba95106940a256d37e4d46d50407f289cdb32e0ca
Size: 2.95 MB - pki-symkey-10.5.18-24.el7.x86_64.rpm
MD5: 6136db695d584f9b02b2e8b5299f2a86
SHA-256: 0d8eb4bd9cb131b754729e3a907ee21b7a4bf1f54e238f933b0151604820d77a
Size: 178.43 kB - pki-tools-10.5.18-24.el7.x86_64.rpm
MD5: f436baabf793a6f88debfd5757ef524b
SHA-256: 8e8e0fc4db2f8e182def13c10c70b0ab6d781582b178e94e5f0f6f81ba4246e5
Size: 776.45 kB
日本語