ID

VAR-202102-1093

CVE

CVE-2021-27219

TITLE

GNOME GLib  Vulnerability in conversion between numeric types in

DESCRIPTION

An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption. GNOME GLib Is vulnerable to a conversion error between numeric types.Denial of service (DoS) It may be put into a state. Currently there is no information about this vulnerability. Please keep an eye on CNNVD or manufacturer announcements. Description: Red Hat Advanced Cluster Management for Kubernetes 2.3.0 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. See the following Release Notes documentation, which will be updated shortly for this release, for additional details about this release: https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_mana gement_for_kubernetes/2.3/html/release_notes/ Security: * fastify-reply-from: crafted URL allows prefix scape of the proxied backend service (CVE-2021-21321) * fastify-http-proxy: crafted URL allows prefix scape of the proxied backend service (CVE-2021-21322) * nodejs-netmask: improper input validation of octal input data (CVE-2021-28918) * redis: Integer overflow via STRALGO LCS command (CVE-2021-29477) * redis: Integer overflow via COPY command for large intsets (CVE-2021-29478) * nodejs-glob-parent: Regular expression denial of service (CVE-2020-28469) * nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions (CVE-2020-28500) * golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing - -u- extension (CVE-2020-28851) * golang.org/x/text: Panic in language.ParseAcceptLanguage while processing bcp47 tag (CVE-2020-28852) * nodejs-ansi_up: XSS due to insufficient URL sanitization (CVE-2021-3377) * oras: zip-slip vulnerability via oras-pull (CVE-2021-21272) * redis: integer overflow when configurable limit for maximum supported bulk input size is too big on 32-bit platforms (CVE-2021-21309) * nodejs-lodash: command injection via template (CVE-2021-23337) * nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() (CVE-2021-23362) * browserslist: parsing of invalid queries could result in Regular Expression Denial of Service (ReDoS) (CVE-2021-23364) * nodejs-postcss: Regular expression denial of service during source map parsing (CVE-2021-23368) * nodejs-handlebars: Remote code execution when compiling untrusted compile templates with strict:true option (CVE-2021-23369) * nodejs-postcss: ReDoS via getAnnotationURL() and loadAnnotation() in lib/previous-map.js (CVE-2021-23382) * nodejs-handlebars: Remote code execution when compiling untrusted compile templates with compat:true option (CVE-2021-23383) * openssl: integer overflow in CipherUpdate (CVE-2021-23840) * openssl: NULL pointer dereference in X509_issuer_and_serial_hash() (CVE-2021-23841) * nodejs-ua-parser-js: ReDoS via malicious User-Agent header (CVE-2021-27292) * grafana: snapshot feature allow an unauthenticated remote attacker to trigger a DoS via a remote API call (CVE-2021-27358) * nodejs-is-svg: ReDoS via malicious string (CVE-2021-28092) * nodejs-netmask: incorrectly parses an IP address that has octal integer with invalid character (CVE-2021-29418) * ulikunitz/xz: Infinite loop in readUvarint allows for denial of service (CVE-2021-29482) * normalize-url: ReDoS for data URLs (CVE-2021-33502) * nodejs-trim-newlines: ReDoS in .end() method (CVE-2021-33623) * nodejs-path-parse: ReDoS via splitDeviceRe, splitTailRe and splitPathRe (CVE-2021-23343) * html-parse-stringify: Regular Expression DoS (CVE-2021-23346) * openssl: incorrect SSLv2 rollback protection (CVE-2021-23839) For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the References section. Bugs: * RFE Make the source code for the endpoint-metrics-operator public (BZ# 1913444) * cluster became offline after apiserver health check (BZ# 1942589) 3. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. Bugs fixed (https://bugzilla.redhat.com/): 1913333 - CVE-2020-28851 golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension 1913338 - CVE-2020-28852 golang.org/x/text: Panic in language.ParseAcceptLanguage while processing bcp47 tag 1913444 - RFE Make the source code for the endpoint-metrics-operator public 1921286 - CVE-2021-21272 oras: zip-slip vulnerability via oras-pull 1927520 - RHACM 2.3.0 images 1928937 - CVE-2021-23337 nodejs-lodash: command injection via template 1928954 - CVE-2020-28500 nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 1930294 - CVE-2021-23839 openssl: incorrect SSLv2 rollback protection 1930310 - CVE-2021-23841 openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 1930324 - CVE-2021-23840 openssl: integer overflow in CipherUpdate 1932634 - CVE-2021-21309 redis: integer overflow when configurable limit for maximum supported bulk input size is too big on 32-bit platforms 1936427 - CVE-2021-3377 nodejs-ansi_up: XSS due to insufficient URL sanitization 1939103 - CVE-2021-28092 nodejs-is-svg: ReDoS via malicious string 1940196 - View Resource YAML option shows 404 error when reviewing a Subscription for an application 1940613 - CVE-2021-27292 nodejs-ua-parser-js: ReDoS via malicious User-Agent header 1941024 - CVE-2021-27358 grafana: snapshot feature allow an unauthenticated remote attacker to trigger a DoS via a remote API call 1941675 - CVE-2021-23346 html-parse-stringify: Regular Expression DoS 1942178 - CVE-2021-21321 fastify-reply-from: crafted URL allows prefix scape of the proxied backend service 1942182 - CVE-2021-21322 fastify-http-proxy: crafted URL allows prefix scape of the proxied backend service 1942589 - cluster became offline after apiserver health check 1943208 - CVE-2021-23362 nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 1944822 - CVE-2021-29418 nodejs-netmask: incorrectly parses an IP address that has octal integer with invalid character 1944827 - CVE-2021-28918 nodejs-netmask: improper input validation of octal input data 1945459 - CVE-2020-28469 nodejs-glob-parent: Regular expression denial of service 1948761 - CVE-2021-23369 nodejs-handlebars: Remote code execution when compiling untrusted compile templates with strict:true option 1948763 - CVE-2021-23368 nodejs-postcss: Regular expression denial of service during source map parsing 1954150 - CVE-2021-23382 nodejs-postcss: ReDoS via getAnnotationURL() and loadAnnotation() in lib/previous-map.js 1954368 - CVE-2021-29482 ulikunitz/xz: Infinite loop in readUvarint allows for denial of service 1955619 - CVE-2021-23364 browserslist: parsing of invalid queries could result in Regular Expression Denial of Service (ReDoS) 1956688 - CVE-2021-23383 nodejs-handlebars: Remote code execution when compiling untrusted compile templates with compat:true option 1956818 - CVE-2021-23343 nodejs-path-parse: ReDoS via splitDeviceRe, splitTailRe and splitPathRe 1957410 - CVE-2021-29477 redis: Integer overflow via STRALGO LCS command 1957414 - CVE-2021-29478 redis: Integer overflow via COPY command for large intsets 1964461 - CVE-2021-33502 normalize-url: ReDoS for data URLs 1966615 - CVE-2021-33623 nodejs-trim-newlines: ReDoS in .end() method 1968122 - clusterdeployment fails because hiveadmission sc does not have correct permissions 1972703 - Subctl fails to join cluster, since it cannot auto-generate a valid cluster id 1983131 - Defragmenting an etcd member doesn't reduce the DB size (7.5GB) on a setup with ~1000 spoke clusters 5. Description: Red Hat OpenShift Jaeger is Red Hat's distribution of the Jaeger project, tailored for installation into an on-premise OpenShift Container Platform installation. Bugs fixed (https://bugzilla.redhat.com/): 1897635 - CVE-2020-28362 golang: math/big: panic during recursive division of very large numbers 1918750 - CVE-2021-3114 golang: crypto/elliptic: incorrect operations on the P-224 curve 5. JIRA issues fixed (https://issues.jboss.org/): TRACING-1725 - Elasticsearch operator reports x509 errors communicating with ElasticSearch in OpenShift Service Mesh project 6. 8.1) - aarch64, ppc64le, s390x, x86_64 3. Bug Fix(es): * Refcounting issue causes crashes and slow workarounds (BZ#1953553) 4. 7.2) - noarch, x86_64 3. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: glib2 security update Advisory ID: RHSA-2021:2204-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2204 Issue date: 2021-06-02 CVE Names: CVE-2021-27219 ==================================================================== 1. Summary: An update for glib2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6) - x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6) - noarch, x86_64 Red Hat Enterprise Linux Server EUS (v. 7.6) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 7.6) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, ppc64le, s390x Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, noarch, ppc64le, s390x 3. Description: GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Package List: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6): Source: glib2-2.56.1-5.el7_6.src.rpm x86_64: glib2-2.56.1-5.el7_6.i686.rpm glib2-2.56.1-5.el7_6.x86_64.rpm glib2-debuginfo-2.56.1-5.el7_6.i686.rpm glib2-debuginfo-2.56.1-5.el7_6.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6): noarch: glib2-doc-2.56.1-5.el7_6.noarch.rpm x86_64: glib2-debuginfo-2.56.1-5.el7_6.i686.rpm glib2-debuginfo-2.56.1-5.el7_6.x86_64.rpm glib2-devel-2.56.1-5.el7_6.i686.rpm glib2-devel-2.56.1-5.el7_6.x86_64.rpm glib2-fam-2.56.1-5.el7_6.x86_64.rpm glib2-static-2.56.1-5.el7_6.i686.rpm glib2-static-2.56.1-5.el7_6.x86_64.rpm glib2-tests-2.56.1-5.el7_6.x86_64.rpm Red Hat Enterprise Linux Server EUS (v. 7.6): Source: glib2-2.56.1-5.el7_6.src.rpm ppc64: glib2-2.56.1-5.el7_6.ppc.rpm glib2-2.56.1-5.el7_6.ppc64.rpm glib2-debuginfo-2.56.1-5.el7_6.ppc.rpm glib2-debuginfo-2.56.1-5.el7_6.ppc64.rpm glib2-devel-2.56.1-5.el7_6.ppc.rpm glib2-devel-2.56.1-5.el7_6.ppc64.rpm ppc64le: glib2-2.56.1-5.el7_6.ppc64le.rpm glib2-debuginfo-2.56.1-5.el7_6.ppc64le.rpm glib2-devel-2.56.1-5.el7_6.ppc64le.rpm s390x: glib2-2.56.1-5.el7_6.s390.rpm glib2-2.56.1-5.el7_6.s390x.rpm glib2-debuginfo-2.56.1-5.el7_6.s390.rpm glib2-debuginfo-2.56.1-5.el7_6.s390x.rpm glib2-devel-2.56.1-5.el7_6.s390.rpm glib2-devel-2.56.1-5.el7_6.s390x.rpm x86_64: glib2-2.56.1-5.el7_6.i686.rpm glib2-2.56.1-5.el7_6.x86_64.rpm glib2-debuginfo-2.56.1-5.el7_6.i686.rpm glib2-debuginfo-2.56.1-5.el7_6.x86_64.rpm glib2-devel-2.56.1-5.el7_6.i686.rpm glib2-devel-2.56.1-5.el7_6.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7): Source: glib2-2.56.1-5.el7_6.src.rpm aarch64: glib2-2.56.1-5.el7_6.aarch64.rpm glib2-debuginfo-2.56.1-5.el7_6.aarch64.rpm glib2-devel-2.56.1-5.el7_6.aarch64.rpm ppc64le: glib2-2.56.1-5.el7_6.ppc64le.rpm glib2-debuginfo-2.56.1-5.el7_6.ppc64le.rpm glib2-devel-2.56.1-5.el7_6.ppc64le.rpm s390x: glib2-2.56.1-5.el7_6.s390.rpm glib2-2.56.1-5.el7_6.s390x.rpm glib2-debuginfo-2.56.1-5.el7_6.s390.rpm glib2-debuginfo-2.56.1-5.el7_6.s390x.rpm glib2-devel-2.56.1-5.el7_6.s390.rpm glib2-devel-2.56.1-5.el7_6.s390x.rpm Red Hat Enterprise Linux Server Optional EUS (v. 7.6): noarch: glib2-doc-2.56.1-5.el7_6.noarch.rpm ppc64: glib2-debuginfo-2.56.1-5.el7_6.ppc.rpm glib2-debuginfo-2.56.1-5.el7_6.ppc64.rpm glib2-fam-2.56.1-5.el7_6.ppc64.rpm glib2-static-2.56.1-5.el7_6.ppc.rpm glib2-static-2.56.1-5.el7_6.ppc64.rpm glib2-tests-2.56.1-5.el7_6.ppc64.rpm ppc64le: glib2-debuginfo-2.56.1-5.el7_6.ppc64le.rpm glib2-fam-2.56.1-5.el7_6.ppc64le.rpm glib2-static-2.56.1-5.el7_6.ppc64le.rpm glib2-tests-2.56.1-5.el7_6.ppc64le.rpm s390x: glib2-debuginfo-2.56.1-5.el7_6.s390.rpm glib2-debuginfo-2.56.1-5.el7_6.s390x.rpm glib2-fam-2.56.1-5.el7_6.s390x.rpm glib2-static-2.56.1-5.el7_6.s390.rpm glib2-static-2.56.1-5.el7_6.s390x.rpm glib2-tests-2.56.1-5.el7_6.s390x.rpm x86_64: glib2-debuginfo-2.56.1-5.el7_6.i686.rpm glib2-debuginfo-2.56.1-5.el7_6.x86_64.rpm glib2-fam-2.56.1-5.el7_6.x86_64.rpm glib2-static-2.56.1-5.el7_6.i686.rpm glib2-static-2.56.1-5.el7_6.x86_64.rpm glib2-tests-2.56.1-5.el7_6.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7): aarch64: glib2-debuginfo-2.56.1-5.el7_6.aarch64.rpm glib2-fam-2.56.1-5.el7_6.aarch64.rpm glib2-static-2.56.1-5.el7_6.aarch64.rpm glib2-tests-2.56.1-5.el7_6.aarch64.rpm noarch: glib2-doc-2.56.1-5.el7_6.noarch.rpm ppc64le: glib2-debuginfo-2.56.1-5.el7_6.ppc64le.rpm glib2-fam-2.56.1-5.el7_6.ppc64le.rpm glib2-static-2.56.1-5.el7_6.ppc64le.rpm glib2-tests-2.56.1-5.el7_6.ppc64le.rpm s390x: glib2-debuginfo-2.56.1-5.el7_6.s390.rpm glib2-debuginfo-2.56.1-5.el7_6.s390x.rpm glib2-fam-2.56.1-5.el7_6.s390x.rpm glib2-static-2.56.1-5.el7_6.s390.rpm glib2-static-2.56.1-5.el7_6.s390x.rpm glib2-tests-2.56.1-5.el7_6.s390x.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-27219 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYLezRtzjgjWX9erEAQipew//dv9RVsT+likb8kNHAfvkq8xalDnUc1Jb WiJXx+KOVAclw6SELu2sWY+/0K7ckF/IAtDiLfkA4tTG2agx7MnNaFaIpn5yPDz1 A6fT8fcoAiMOqFzEydZmbwhzee/A3GDmzgwTxMjMTw6DZmQths2h2bxb99Vs/ckV zcPSqyY74IOXZN57v/udslOIB901wRoOlx02YTo539g7eNVHR7Ba8J+3h+isigxH d23jTVa3Me5tliUSBhx9eyvPBaeHv2jGJSFNais3St0enh/C1OZ7+TZS2uSVDJx8 OlqEiIJxsrzVRFotgIcfTtZqcJ2Gk4Wg16wYfJ0W9chnWO+hleUUCeHP0wui6tc2 sUVDpxzJ0Q2MD8l/R7xjiKMMsfr9AqwTDvFlkp8NgVOCTrXFGeiAaCw8dC6KSAnX ofe+nlX2ovA2zO6wfmv9NOzIjEMK3+r2vuwVWiA0kuvwwQHiD+ma5u7nlYaegZW9 /RtggB7dnPK4mRkdEa/4VxSmwkQtkbZYLoM+73Ds37gbrs4c4lCkZf+6pWtt/FEp QYEuYEAZaoMkSf78x3SNol8eghpMv+XifYnFHef36j6ddl21tie9oCwaw6JtRTZm MLAsh8twKmW6N12vBNHSZUq4MP2VjesCD28+ux9OwpHhtIqJ4NCxVWaJZgit9muf 0WMGNVslHZYnj6 -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Description: The OpenShift Container Storage solution provides persistent storage service for OpenShift Containers and OpenShift Infrastructure services

AFFECTED PRODUCTS

CVSS

PROBLEMTYPE DATA

TYPE

overflow

PATCH

EXTERNAL IDS

REFERENCES

CREDITS

Red Hat

SOURCES

LAST UPDATE DATE

2024-12-20T20:31:44.972000+00:00

SOURCES UPDATE DATE

SOURCES RELEASE DATE