تحديثات Red Hat
1786تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
12 ديسمبر, 2021
● عالي
2021-4016
الكل
الوصف:
أصدرت Red Hat عدّة تحديثات لمعالجة عددٍ من الثغرات في المنتجات التالية:
- thunderbird
- Red Hat Enterprise Linux for x86_64 8 x86_64
- Red Hat Enterprise Linux for IBM z Systems 8 s390x
- Red Hat Enterprise Linux for Power, little endian 8 ppc64le
- Red Hat Enterprise Linux for ARM 64 8 aarch64
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
- Red Hat Enterprise Linux Server - AUS 8.2 x86_64
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le
- Red Hat Enterprise Linux Server - TUS 8.2 x86_64
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.2 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.2 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
- Red Hat Enterprise Linux Server - AUS 8.4 x86_64
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
- Red Hat Enterprise Linux Server - TUS 8.4 x86_64
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64
- virt:av and virt-devel:av
- Red Hat Enterprise Linux Advanced Virtualization EUS 8.4 x86_64
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE) EUS 8.4 ppc64le
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z) EUS 8.4 s390x
- Red Hat OpenStack Platform 16.1
- Red Hat OpenStack 16.1 x86_64
- Red Hat OpenStack for IBM Power 16.1 ppc64le
التهديدات:
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- هجمة حجب الخدمة (DoS attack)
- تجاوز القيود الأمنية
الإجراءات الوقائية:
يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت Red Hat توضيحًا لهذه التحديثات:
- https://access.redhat.com/errata/RHSA-2021:5045
- https://access.redhat.com/errata/RHSA-2021:5046
- https://access.redhat.com/errata/RHSA-2021:5047
- https://access.redhat.com/errata/RHSA-2021:5048
- https://access.redhat.com/errata/RHSA-2021:5055
- https://access.redhat.com/errata/RHSA-2021:5065
- https://access.redhat.com/errata/RHSA-2021:5070