RLSA-2023:4708
Important: subscription-manager security update
Topic
An update is available for subscription-manager.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Description
The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Rocky Enterprise Software Foundation entitlement platform.
Security Fix(es):
* subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration (CVE-2023-3899)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Rocky Linux 9
SRPMs
- subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.src.rpm
RPMs
- libdnf-plugin-subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- libdnf-plugin-subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- python3-cloud-what-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- python3-subscription-manager-rhsm-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- python3-subscription-manager-rhsm-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- subscription-manager-debugsource-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- subscription-manager-plugin-ostree-0:1.29.33.1-2.el9_2.rocky.0.1.aarch64.rpm
- libdnf-plugin-subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- libdnf-plugin-subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- libdnf-plugin-subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- libdnf-plugin-subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- libdnf-plugin-subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- libdnf-plugin-subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- python3-cloud-what-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- python3-cloud-what-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- python3-cloud-what-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- python3-subscription-manager-rhsm-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- python3-subscription-manager-rhsm-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- python3-subscription-manager-rhsm-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- python3-subscription-manager-rhsm-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- python3-subscription-manager-rhsm-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- python3-subscription-manager-rhsm-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- subscription-manager-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- subscription-manager-debuginfo-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- subscription-manager-debugsource-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- subscription-manager-debugsource-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- subscription-manager-debugsource-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
- subscription-manager-plugin-ostree-0:1.29.33.1-2.el9_2.rocky.0.1.ppc64le.rpm
- subscription-manager-plugin-ostree-0:1.29.33.1-2.el9_2.rocky.0.1.s390x.rpm
- subscription-manager-plugin-ostree-0:1.29.33.1-2.el9_2.rocky.0.1.x86_64.rpm
Issued: 8/24/2023
Type: Security
Severity: Important
Affected Product
- Rocky Linux 9
Fixes
References
- No references