pki-deps:10.6 security, bug fix, and enhancement update

エラータID: AXSA:2021-2278:01

リリース日: 
2021/08/03 Tuesday - 05:18
題名: 
pki-deps:10.6 security, bug fix, and enhancement update
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- resteasy には不適切な入力値検証が原因で、サーバーのレスポンスに不正なヘッダーが含ま
れる問題があり、その結果インジェクションが発生し、HTTP レスポンスが構築されるときに予期し
ない動作が発生する脆弱性があります。(CVE-2020-1695)

Modularity name: pki-deps
Stream name: 10.6

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2020-1695
A flaw was found in all resteasy 3.x.x versions prior to 3.12.0.Final and all resteasy 4.x.x versions prior to 4.6.0.Final, where an improper input validation results in returning an illegal header that integrates into the server's response. This flaw may result in an injection, which leads to unexpected behavior when the HTTP response is constructed.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. apache-commons-collections-3.2.2-10.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 6e20a844afd77145b5f92c6f038d5a44
    SHA-256: 58bc7bb391256bc9622583a15157858fa15a826e3fdb06a922476758163d4c1a
    Size: 631.56 kB
  2. apache-commons-lang-2.6-21.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 0ef91462bf3432131988133367842cfe
    SHA-256: e1b4ee14589039ae675288fc354ad2f31602b0328060d4bfedf3555406c17256
    Size: 564.17 kB
  3. apache-commons-net-3.6-3.module+el8+1258+4d8f3e1f.src.rpm
    MD5: b4030a577f613416e5116a4a3e67c0d3
    SHA-256: 0fcc4c8fbe18057ae8146007a3bc3dfc464d4eca66ea02d37a07b476379baca9
    Size: 433.48 kB
  4. bea-stax-1.2.0-16.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 4f5ec514a35992d5468176a60af5648c
    SHA-256: d66e59db0631463e1bc805c215fd1c0cf84e087e3801e499e09d22cb7d299e24
    Size: 295.02 kB
  5. fasterxml-oss-parent-26-6.module+el8+1258+4d8f3e1f.src.rpm
    MD5: fc7e96d8b41063a3804f830c3064076c
    SHA-256: 7810f0ed6c0939b727804d6c37c76e4bd241378218eef986f87a61a2c55b4815
    Size: 20.74 kB
  6. glassfish-fastinfoset-1.2.13-9.module+el8+1258+4d8f3e1f.src.rpm
    MD5: d243b6646a04a5b167a575455fcafe39
    SHA-256: af740d93be19cecbf80d6a9e3022acf78d7beb482c28b795e0df36b9ffeab0fb
    Size: 1.52 MB
  7. glassfish-jaxb-api-2.2.12-8.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 08b5a432cbf9c31a146eb0caa28c1ce5
    SHA-256: 0f495a612f7d82d8671a7f280afdb4c7c4243c5961af305e63d9a818a9921d7e
    Size: 241.91 kB
  8. glassfish-jaxb-2.2.11-11.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 86fd445328a0f67b4c355e80b40dc580
    SHA-256: fece463ea5f7527f9817acf349f7cad499568d7d7b580a07a51e97d516802a90
    Size: 4.40 MB
  9. glassfish-jax-rs-api-2.0.1-6.module+el8+1258+4d8f3e1f.src.rpm
    MD5: ab28519b4ba8b70842fa7d816550d4e9
    SHA-256: 90521de6fa1c579cad3c07822346c97c7d054f99735d76a92cb0486db76480dd
    Size: 230.21 kB
  10. jackson-annotations-2.10.0-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 32bdfbc64e0bee0ba3937f4d92c8067c
    SHA-256: 385290236757e2d5f416e5cf3c0337840c433f5271f9f2b1ac45aff521aa3602
    Size: 67.74 kB
  11. jackson-bom-2.10.0-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 5c640f6cae5e247f247073c63441ba11
    SHA-256: 4c5efce5d01a424812d323a37bd4eddb8863931c324609a5b9ca395dfae06e65
    Size: 22.36 kB
  12. jackson-core-2.10.0-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: f44f06747d553579fc457e5898cd7de7
    SHA-256: 3b0e482601e1ee63dad43ce70b5414c02cce4a99d935f6e7295d61840d75d5e1
    Size: 439.55 kB
  13. jackson-databind-2.10.0-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: eec862e3cf3961a2bd5b116be3e3c17a
    SHA-256: dba64dece8f53cae6bc98b391398938e27fee1d8d23edc489d8b58012e1a86e1
    Size: 1.25 MB
  14. jackson-jaxrs-providers-2.9.9-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 98867615cf25cd986509c4f05e0a2464
    SHA-256: 9efcbd7545361c282feb342790214c5277d94f8a7f734216624031552ecf53ea
    Size: 1.21 MB
  15. jackson-module-jaxb-annotations-2.7.6-4.module+el8+1258+4d8f3e1f.src.rpm
    MD5: ff765f20b675c03871a8dca882d320d1
    SHA-256: 273799008e63b16990e4aa104557b203a5c3a42dd12a4945831a80e89e54fa3b
    Size: 53.97 kB
  16. jackson-parent-2.10-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 3e473436202cbab11c3251279ba14618
    SHA-256: 6722cb774ad5097255495cecf347ff17c5f480b559d832df09743e5371d5b228
    Size: 17.28 kB
  17. jakarta-commons-httpclient-3.1-28.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 8396e27d33c3edee9478cadaeb95e1e8
    SHA-256: a44483cfa8af0ad51f3d94a392d703473406e6cbe3db85abea522f03a13df90f
    Size: 1.81 MB
  18. javassist-3.18.1-8.module+el8+1258+4d8f3e1f.src.rpm
    MD5: fa8142debd85081152b5680c5dde3ca6
    SHA-256: 8b809335356d74c73691565f4921002ce198bea21bf34eb960338e1f83c8caf9
    Size: 1.13 MB
  19. msv-2013.6.1-10.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 21ed1521cbb5c5c698676cde41e78ddf
    SHA-256: d1161dd841d1f649d42794eae2df7945b2f5034e898fd83dfaff2b0ed0ab61ff
    Size: 768.30 kB
  20. pki-servlet-engine-9.0.30-1.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 432f8a2b07a206828482a303575ed4f1
    SHA-256: fc4f82803f714e7c77f94ee7fbc990016c5714e62ff81fd4e6de4e727e29daf9
    Size: 13.74 MB
  21. python-nss-1.0.1-10.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 6341003984400f558f4db5dd118e6772
    SHA-256: 26fb556c9b82ce2753467dabfa2be6faa7dba6aff45851657d54104acaeb2837
    Size: 277.19 kB
  22. relaxngcc-1.12-14.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 1be69869adc58a26684a6637461504dc
    SHA-256: cd0affc04ca6a811d395d32529264c0acaf1eb243112fc2c4d4abc5883a5e397
    Size: 2.03 MB
  23. relaxngDatatype-2011.1-7.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 70b709126ff375a995f21ce2cdc61088
    SHA-256: 8860cb07938fb05155749f2fd8e942b229644d0d2ddbfb2e23423b38768a2e24
    Size: 22.20 kB
  24. resteasy-3.0.26-6.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 23b4a18890936c33e48965a5088a7a40
    SHA-256: 0fe2e14dcd1de2e3df00130cac6bd45ec5e8423f796e73691d08b2da5b4f8031
    Size: 7.46 MB
  25. slf4j-1.7.25-4.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 457cc05d9ae6ba7aea2b657a05f45353
    SHA-256: effac9bdff5fadeb96a269522b07a434b3de6a2c397f213f8e984150ecdb23a4
    Size: 3.29 MB
  26. stax-ex-1.7.7-8.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 2b35eb424f357b068294307b7fc86daf
    SHA-256: cf9ac871ae1f6879af4bfeb16eaa91c1f76e78dc4d4b6f430c1b7d1b41043096
    Size: 49.06 kB
  27. velocity-1.7-24.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 6f637c0cf0fbea6286d188babee653ad
    SHA-256: 8cb360db8c3ce6787bc355bce337794bc5bfdd3595c6d7df4c24d929ceaed2e6
    Size: 1.51 MB
  28. xalan-j2-2.7.1-38.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 9407ea6a31627c023c22e6dd8fdef295
    SHA-256: ccbdfbae709f27dce05404cc6ff8a1a9a9600c1b26d1cc06c953618c6ac23a13
    Size: 3.24 MB
  29. xerces-j2-2.11.0-34.module+el8+1258+4d8f3e1f.src.rpm
    MD5: f07ef57a68b91222d9e74d5235953746
    SHA-256: 0fdca0b8e28603abfe3d641862a7cc6a0aff082490af1a87c6312505464edee6
    Size: 1.74 MB
  30. xml-commons-apis-1.4.01-25.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 7642625fdc895db58add6eb7ad4bc436
    SHA-256: 1cf877937ea40ea684f3d1e7fba5b51365d31dbf1b4d8708bdecb128995a81b6
    Size: 941.10 kB
  31. xml-commons-resolver-1.2-26.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 7b708d93b96f1f097cc3dd500f4fef86
    SHA-256: e404be557e31943b7dc32418a48fc3c9de89259f6573572148333adce7bc446d
    Size: 273.45 kB
  32. xmlstreambuffer-1.5.4-8.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 2c17c1a25945e284d5b73a3e2a2ed367
    SHA-256: 9d536893a0180763bcfbb6d35a64db0e0e655c143a2cc58c3f97673c3feb0551
    Size: 64.57 kB
  33. xml-stylebook-1.0-0.25.b3_xalan2.svn313293.module+el8+1258+4d8f3e1f.src.rpm
    MD5: 17924cf0ae9080d5c5499b436b9d7b45
    SHA-256: c386e178fd45bc5533b0dbc42489e16f7f665815160a16996bf8d03cbd096c29
    Size: 1.13 MB
  34. xsom-0-19.20110809svn.module+el8+1258+4d8f3e1f.src.rpm
    MD5: a56718991577b93280762c327c15d813
    SHA-256: e409f21835bb7db716853a90a470dabc5c494075b217612e817c1b8474684f8f
    Size: 387.98 kB

Asianux Server 8 for x86_64
  1. apache-commons-collections-3.2.2-10.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 206ab902ae9b43d54d61ca865933acae
    SHA-256: e3a472f40d2f94c26f9c70d6ad5f85e79aa8375926d2c757acb38b6fa6184cf0
    Size: 535.75 kB
  2. apache-commons-lang-2.6-21.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 822fcd9ed11d7aa84bab9a30d29b6981
    SHA-256: 675ca0280749caa6a11420f7f39ca975cba1ea55f7c08ce45d424b058e89e9a0
    Size: 281.33 kB
  3. apache-commons-net-3.6-3.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 4c568ced0a4873a9e777e4bfa3d7740e
    SHA-256: 62dcb7b00a4b272a336eb859df57e167f2d292583530c889a19e20ffca4a7f7b
    Size: 295.55 kB
  4. bea-stax-api-1.2.0-16.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: ebad7134677aa85bd94b1f0788b4e88e
    SHA-256: 4f839fe6628d2d18508dbd7357ffb50b8a0f0b169f4249190096a5d7a2e4a1b6
    Size: 35.57 kB
  5. glassfish-fastinfoset-1.2.13-9.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 97412da291999025231925311f87d1af
    SHA-256: 4392dcead93d61244448fe89d454f834628ba8df6eb48d6f89dc5eec3978dece
    Size: 352.59 kB
  6. glassfish-jaxb-api-2.2.12-8.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 05bbcb7ae5b875cff2c58ad69f7641c0
    SHA-256: e33a20cac3388f4c267136b38574372d2ffcb4872b12af51094df41146cf2bd0
    Size: 100.31 kB
  7. glassfish-jaxb-core-2.2.11-11.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: afcbc1ca994ed680d2e7664d40132f1c
    SHA-256: 3adfc0c9aad00cbfd50ec239fe685c6bbc823e41c40f31402d61e1b944f5db5c
    Size: 156.80 kB
  8. glassfish-jaxb-runtime-2.2.11-11.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: f1dd22044fec51750e559dede45059ec
    SHA-256: 8217f74c35c0ceac19b53f4825e75776a4984539ddb13c8a95bb5f47604c51ae
    Size: 935.91 kB
  9. glassfish-jaxb-txw2-2.2.11-11.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 46dfccdc5ed3ed6eb6832833e08c5e96
    SHA-256: 46c957423263f9ce75a6ce4cffdeac13a82ddb07136e85dc1227e75ef4553450
    Size: 89.04 kB
  10. jackson-annotations-2.10.0-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: f6734482842051ec5ad7298287055110
    SHA-256: c51cb9db8e96fc01ff4e050eab1575dfb9f64286ac268b92adb2a2ea1f3e9d8a
    Size: 70.05 kB
  11. jackson-core-2.10.0-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 5fe96b2d2ac80a61cf68a39ec2c6c9c9
    SHA-256: fa2d61f31446ccdc014fe2d666c637c52f45d4f1327917fa6231d8cf0f8cd452
    Size: 343.97 kB
  12. jackson-databind-2.10.0-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 0b1dffdc4eecb4f3a872330e76d86b64
    SHA-256: 142443eb1177db560478468de106bed69cbd4a7bf2ccff919970092f8ac93617
    Size: 1.27 MB
  13. jackson-jaxrs-json-provider-2.9.9-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: d40b21de3400315d46f3375b660b9e6b
    SHA-256: 04a37f8d4ad0553e66731a503324d18b296b3aa221693cc25be3ffa203f488e6
    Size: 23.14 kB
  14. jackson-jaxrs-providers-2.9.9-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: baf672563a915565dc1d92ef011f440c
    SHA-256: f3c1b4af6e857bf1a065c2fae981eca5cd4e3d889c291b512bfa0eb4eeef4ee9
    Size: 43.57 kB
  15. jackson-module-jaxb-annotations-2.7.6-4.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 2ed9843a0a921c3bff55c46cdf2ee8f0
    SHA-256: 0f93c7358968687b94945d506707bbbb43c8ca5ec9f293c8cadd91954fd453e4
    Size: 44.57 kB
  16. jakarta-commons-httpclient-3.1-28.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: f88d0cf4e4cc33d43b20fcd087417781
    SHA-256: 839ca904923929d425fa8f4941721d3b816b19547c007433711fdee0d78eaf43
    Size: 246.57 kB
  17. javassist-3.18.1-8.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 6a39eeb48e6104253b44f1e41ae63503
    SHA-256: 9bd96acb7bba5ea3db58c9bbca70a9a2ee91e4d5e0cb29d74ca0fbfe8327f143
    Size: 680.85 kB
  18. javassist-javadoc-3.18.1-8.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: b157146d3aa10cf49a5f15295d47f137
    SHA-256: 077968930f3e4103925b5bcf65a99676111cbabaccbbf109cf6a568e404b900f
    Size: 780.88 kB
  19. pki-servlet-4.0-api-9.0.30-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 0bc095cd71e86e4788012d5446482e5c
    SHA-256: 0b6f8e6273a320227a3627bf9e5c99899f75f0678b26c3aafc84ba0515ee53ba
    Size: 280.65 kB
  20. pki-servlet-engine-9.0.30-1.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: f1c6ee080bb3120395609f3b50235251
    SHA-256: 7defba12737aa759b48270185f786e63672374f9c9ab23d02911a2b373194482
    Size: 5.45 MB
  21. python3-nss-1.0.1-10.module+el8+1258+4d8f3e1f.x86_64.rpm
    MD5: c9c3eef502ef2f471869d3c016e0c19f
    SHA-256: 870dc4d6e081d043374c562b4a62b4ba5f603c01488bcd5ecc6310df4edd77ab
    Size: 285.03 kB
  22. python-nss-debugsource-1.0.1-10.module+el8+1258+4d8f3e1f.x86_64.rpm
    MD5: a2376a79983fe81210a27e7e5c240ba0
    SHA-256: f6c853713259bd2ae270726f3d77710fed76ee70270ea5d76d91a91c5cf2fcaf
    Size: 205.19 kB
  23. python-nss-doc-1.0.1-10.module+el8+1258+4d8f3e1f.x86_64.rpm
    MD5: 499542560255b87c3e136a824e7bf26b
    SHA-256: 3a0094cc55b9961eb4876e17bd58c031d303833e0ef28124b646dd6f4a17a7dc
    Size: 315.94 kB
  24. relaxngDatatype-2011.1-7.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 6f74438470d4e1c6995a303b649ea515
    SHA-256: 201ae50a5b2f96951efabd714bc56a4c1bcaba2ccbec09e961b578baf9d636de
    Size: 26.28 kB
  25. resteasy-3.0.26-6.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 7d519d561979e6bf41bd00ec3063cfd0
    SHA-256: 451243681532ff92c64057c2d2749201cffc64d14f3d3d8bf2fa40c51c1236ab
    Size: 1.06 MB
  26. slf4j-1.7.25-4.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 0dbe220e61790ace0a3b7590f01a7cfc
    SHA-256: 0995499f3fb35c771dca2845a5f999ddb0ad075ba644746e7fafbe1a9a28f1e2
    Size: 75.55 kB
  27. slf4j-jdk14-1.7.25-4.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 0619fc00d715cabc2d6b8209656fd542
    SHA-256: 57d7ce5c7bbea9738d7a42990c20c2cff902f3b8e20672e79833c95aca7de0cd
    Size: 23.62 kB
  28. stax-ex-1.7.7-8.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: ab910317ee8ae93c0928cdfa79358cd4
    SHA-256: cae526d7cc0f66ac416d63e9d305a79b1bff8573f9e8d9e2a603822166c9624e
    Size: 54.35 kB
  29. velocity-1.7-24.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 98e74c9228c2aed7c79cc925871655a4
    SHA-256: 3feb2cd040309535fa2281fad00192f810515afc7716b3f0ebb59932326e6b61
    Size: 435.44 kB
  30. xalan-j2-2.7.1-38.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: d57888bb1d4489a7185b53788a6fbeaf
    SHA-256: e0cdaffb5ca5b2e8971d659d48c337886f853cbdd0eb29c4c5c61472751e1db0
    Size: 1.89 MB
  31. xerces-j2-2.11.0-34.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: a5bc6a135e9caf41179c83ffcf103889
    SHA-256: 3f664b08c8ad28810cc35d23b03830f80c4d3ff8cc83bb283362f4780ca0a785
    Size: 1.16 MB
  32. xml-commons-apis-1.4.01-25.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 024e90a6a98dc8f02264df1d5850985a
    SHA-256: 11942e8f7350173c04112715c00dcb33baaaf214221f4b89a57fb675611048eb
    Size: 233.02 kB
  33. xml-commons-resolver-1.2-26.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 577f6a58e187fdd19ea56b2dab8ccbd3
    SHA-256: 8f8413e931d7549cd4f48f195c97b1d59b8e906b0505b90906e6c19378beb2a8
    Size: 114.25 kB
  34. xmlstreambuffer-1.5.4-8.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 5ac2497b969d1bc08234be0eb25bbff3
    SHA-256: eda26dc568d4a97562128f90970ea52ca80f99efa34a51110e2872f7d0914bb0
    Size: 85.96 kB
  35. xsom-0-19.20110809svn.module+el8+1258+4d8f3e1f.noarch.rpm
    MD5: 4a6cf3e90e47422a361fca042a6f902e
    SHA-256: 85f7a5122040bc11e5bf65964f6b09ef6c109b21ef197cbc1a3a2bd3a9eab65a
    Size: 397.28 kB