Вход на сайт

Просмотр новости

Найдите то, что Вас интересует

Ausführen beliebiger Kommandos in compat-openssl10 (Red Hat)

Дата публикации: 08-07-2026 04:38:17



Основное содержимое страницы с новостью.

Sicherheit: Ausführen beliebiger Kommandos in compat-openssl10

Aktuelle Meldungen Distributionen

Name: Ausführen beliebiger Kommandos in compat-openssl10
ID: RHSA-2026:36215
Distribution: Red Hat
Plattformen: Red Hat Enterprise Linux AppStream (v. 8)
Datum: Mi, 8. Juli 2026, 06:38
Referenzen: https://bugzilla.redhat.com/show_bug.cgi?id=2481898
https://access.redhat.com/security/cve/CVE-2026-45447
https://access.redhat.com/errata/RHSA-2026:36215
Applikationen: OpenSSL

Originalnachricht

An update for compat-openssl10 is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The OpenSSL toolkit provides support for secure communications between
machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1.

Security Fix(es):

* openssl: Heap Use-After-Free in OpenSSL PKCS7_verify() (CVE-2026-45447)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-45447: Expired Pointer Dereference (CWE-825)

Pro-Linux @Facebook

Схожие новости

#Наименование новостиТональностьИнформативностьДата публикации
1Ausführen beliebiger Kommandos in nginx (Red Hat)0508-07-2026
2Ausführen beliebiger Kommandos in nginx (Red Hat)0508-07-2026
3Ausführen von Code mit höheren Privilegien in cifs-utils (Fedora)0508-07-2026
4Ausführen von Code mit höheren Privilegien in cifs-utils (Fedora)0508-07-2026
5Preisgabe von Informationen in Linux (Red Hat)0508-07-2026
6Denial of Service in aardvark-dns (Red Hat)0508-07-2026
7Mehrere Probleme in Linux (Red Hat)0508-07-2026
8Denial of Service in freeipmi (Red Hat)-5708-07-2026
9Denial of Service in freeipmi (Red Hat)0508-07-2026
10Zwei Probleme in skopeo (Red Hat)0508-07-2026

Классификация: Пресс-релизы. Схожих патентов: 0. Схожих новостей: 10. Тональность: 0. Информативность: 5. Источник: www.pro-linux.de.