jss-5.3.0-1.el9, ldapjdk-5.3.0-1.el9, pki-core-11.3.0-1.el9, tomcatjss-8.3.0-1.el9

エラータID: AXSA:2023-5762:01

Release date: 
Thursday, June 1, 2023 - 13:22
Subject: 
jss-5.3.0-1.el9, ldapjdk-5.3.0-1.el9, pki-core-11.3.0-1.el9, tomcatjss-8.3.0-1.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The Public Key Infrastructure (PKI) Core contains fundamental packages required by Cybertrust Japan Co., Ltd. Certificate System.

Security Fix(es):

* pki-core: When using the caServerKeygen_DirUserCert profile, user can get certificates for other UIDs by entering name in Subject field (CVE-2022-2393)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-2393
A flaw was found in pki-core, which could allow a user to get a certificate for another user identity when directory-based authentication is enabled. This flaw allows an authenticated attacker on the adjacent network to impersonate another user within the scope of the domain, but they would not be able to decrypt message content.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. jss-5.3.0-1.el9.src.rpm
    MD5: a6d2432b92f3a88bdb372c498abfc651
    SHA-256: 147c07ff089ccd533bf3be7029abe18bdd5caf1c104f3daf61d26c9a89b792d0
    Size: 1.03 MB
  2. ldapjdk-5.3.0-1.el9.src.rpm
    MD5: 7d49e021e8a3ed767c784ba98579f414
    SHA-256: 0d07049f891fb0db8cd8760ae5bf808597685aa4d8d76ed2ec9610928024a8f4
    Size: 2.36 MB
  3. pki-core-11.3.0-1.el9.src.rpm
    MD5: d0fa2322194096955d536b70f8adfde0
    SHA-256: f7417c106bbae68a706639867831fedb126138f70ccadc1fc4c7273caf01b32e
    Size: 8.67 MB
  4. tomcatjss-8.3.0-1.el9.src.rpm
    MD5: 46f8910229712f48db0e40a8067edc02
    SHA-256: f2f01a07d3bb4c3d1fb504a6930a5590d86315999967bbdad54a83ef3dc1d23a
    Size: 47.67 kB

Asianux Server 9 for x86_64
  1. idm-jss-5.3.0-1.el9.x86_64.rpm
    MD5: 9f9926bb5ee971da7d615cfa6348095c
    SHA-256: 185db6e14f104adf0ac861a8a61ef046ed012ba250da10760057c2734e84ec27
    Size: 1.25 MB
  2. idm-ldapjdk-5.3.0-1.el9.noarch.rpm
    MD5: 0ac98e350943dc65b459030eace234ea
    SHA-256: 79f4d8862f242cfe6eddb46390cdd5dd9c2e8e93b01317ba2bd848c419426078
    Size: 340.75 kB
  3. idm-pki-acme-11.3.0-1.el9.noarch.rpm
    MD5: f1cdcf27a99a5e979485b61c957df413
    SHA-256: f5bf857db8e4e81b17844333f57a6c6b68730b603e17d3631ab94a46577e25e5
    Size: 963.64 kB
  4. idm-pki-base-11.3.0-1.el9.noarch.rpm
    MD5: 6762bcceaeb58c358414f14c19c8e419
    SHA-256: 3be8204634910ca9cf2be32736dbcf074ef5ba9970c258e9adc5b4867c59ab39
    Size: 258.06 kB
  5. idm-pki-ca-11.3.0-1.el9.noarch.rpm
    MD5: 740c2eef671c2f6465ccc430d9fede44
    SHA-256: cbe74e998e6b5c043355a7f62942a55564a26694e75251099d1e5b7164c561f6
    Size: 1.56 MB
  6. idm-pki-est-11.3.0-1.el9.noarch.rpm
    MD5: 6a45b2b4560a968bbf6980fb7f60daba
    SHA-256: 12105ecb794c2fc1b222aabdefa838bd8ebfdb86e93c2bab4390b3304cf48ca7
    Size: 39.62 kB
  7. idm-pki-java-11.3.0-1.el9.noarch.rpm
    MD5: 378eb2fcaeed5bf8441b31eaa23a6434
    SHA-256: 2caf10d310cb0934c6f2e52008ae7709f7f3514c7bf5bb692472010ce4d73683
    Size: 629.77 kB
  8. idm-pki-kra-11.3.0-1.el9.noarch.rpm
    MD5: e55981aa0ec679a9b2ed62209830eed7
    SHA-256: 7e6ef0055dd3999273eab7bb03839907134cedea0b0de6585ef7f50dee608eee
    Size: 285.55 kB
  9. idm-pki-server-11.3.0-1.el9.noarch.rpm
    MD5: d279be4b54b9fa18b0a576862222967b
    SHA-256: 4d8f1656b8bb52bced3d4bdf4add5d0611c8aa6de5a0b6117748b42c7e5a7688
    Size: 2.37 MB
  10. idm-pki-tools-11.3.0-1.el9.x86_64.rpm
    MD5: 17ba90ee420ddecf2a7e0f0336ddf12a
    SHA-256: 617f213686231546a968e8768d1e5bf6b27c2da16d5ca93add6bd3d8bba049b7
    Size: 937.33 kB
  11. idm-tomcatjss-8.3.0-1.el9.noarch.rpm
    MD5: 260202c42e1f59f60dad181ca4eba4a7
    SHA-256: 6a4ba64a0ed490bc4f4b118a4692a3ca30c8c0d09ceb90982be32ee67e28b8de
    Size: 37.71 kB
  12. python3-idm-pki-11.3.0-1.el9.noarch.rpm
    MD5: 8506f031ead611b675224c3653174b8a
    SHA-256: 133d3db45cb6395c0fe99741163ed97fd638cccf5f747f75e991ddd344b53acb
    Size: 153.20 kB