[Apollo] Advisories Statistics light light Login

RLSA-2023:1067

Security Mirrored from RHSA-2023:1067
Issued at: 2023-03-08
Updated at: 2023-03-08

Synopsis

Important: pesign security update



Description

The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools.

Security Fix(es):

* pesign: Local privilege escalation on pesign systemd service (CVE-2022-3560)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 x86_64

Fixes

2135420

CVEs

CVE-2022-3560

Affected packages

Rocky Linux 9 aarch64 - AppStream

pesign-0:115-6.el9_1.rocky.2.aarch64.rpm pesign-0:115-6.el9_1.rocky.2.src.rpm pesign-debuginfo-0:115-6.el9_1.rocky.2.aarch64.rpm pesign-debugsource-0:115-6.el9_1.rocky.2.aarch64.rpm

Rocky Linux 9 x86_64 - AppStream

pesign-0:115-6.el9_1.rocky.2.src.rpm pesign-0:115-6.el9_1.rocky.2.x86_64.rpm pesign-debuginfo-0:115-6.el9_1.rocky.2.x86_64.rpm pesign-debugsource-0:115-6.el9_1.rocky.2.x86_64.rpm