The official site for Saudi CERT
Red Hat Alert
2912
Warning Date
Severity Level
Warning Number
Target Sector
1 February, 2022
● Critical
2022-4303
All
Red Hat has released security updates to address serveral vulnerabilities in the following products:
- nginx:1.20
- Red Hat Enterprise Linux for x86_64
- Red Hat Enterprise Linux for ARM 64
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux for IBM z Syste
- virt:av and virt-devel:av
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM System Z) EUS
- Red Hat Enterprise Linux Advanced Virtualization (for RHEL Server for IBM Power LE) EUS
- Red Hat Enterprise Linux Advanced Virtualization EUS
- samba
- Red Hat CodeReady Linux Builder for ARM 64
- Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support
- Red Hat CodeReady Linux Builder for IBM z Systems
- Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support
- Red Hat CodeReady Linux Builder for Power, little endian
- Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support
- Red Hat CodeReady Linux Builder for x86_64
- Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support
- Red Hat Enterprise Linux Desktop
- Red Hat Enterprise Linux for ARM 64
- Red Hat Enterprise Linux for ARM 64 - Extended Update Support
- Red Hat Enterprise Linux for IBM z Systems
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support
- Red Hat Enterprise Linux for Power, big endian
- Red Hat Enterprise Linux for Power, little endian
- Red Hat Enterprise Linux for Power, little endian - Extended Update Support
- Red Hat Enterprise Linux for Scientific Computing
- Red Hat Enterprise Linux for x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support
- Red Hat Enterprise Linux Resilient Storage for IBM z Systems
- Red Hat Enterprise Linux Resilient Storage for Power, little endian
- Red Hat Enterprise Linux Resilient Storage for x86_64
- Red Hat Enterprise Linux Server
- Red Hat Enterprise Linux Server - AUS
- Red Hat Enterprise Linux Server - TUS
- Red Hat Enterprise Linux Server - Update Services for SAP Solutions
- Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions
- Red Hat Enterprise Linux Workstation
- Red Hat Virtualization Host
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- Execute arbitrary code
The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:
- https://access.redhat.com/errata/RHSA-2022:0332
- https://access.redhat.com/errata/RHSA-2022:0331
- https://access.redhat.com/errata/RHSA-2022:0330
- https://access.redhat.com/errata/RHSA-2022:0329
- https://access.redhat.com/errata/RHSA-2022:0328
- https://access.redhat.com/errata/RHSA-2022:0325
- https://access.redhat.com/errata/RHSA-2022:0323
Rate the content
Share the page
