A subscription-manager security update has been released for AlmaLinux 9.
ALSA-2023:4708 Important: subscription-manager security update
Type:
security
Severity:
important
Release date:
2023-08-23
Description
Security Fix(es):
* subscription-manager: inadequate authorization of com.AlmaLinux.RHSM1 D-Bus interface allows local users to modify configuration (CVE-2023-3899)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
CVE-2023-3899
RHSA-2023:4708
ALSA-2023:4708
Updates packages:
subscription-manager-1.29.33.1-2.el9_2.alma.1.s390x.rpm
python3-cloud-what-1.29.33.1-2.el9_2.alma.1.ppc64le.rpm
libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.alma.1.aarch64.rpm
libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.alma.1.ppc64le.rpm
subscription-manager-1.29.33.1-2.el9_2.alma.1.x86_64.rpm
subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.alma.1.aarch64.rpm
subscription-manager-1.29.33.1-2.el9_2.alma.1.aarch64.rpm
python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.alma.1.aarch64.rpm
subscription-manager-1.29.33.1-2.el9_2.alma.1.ppc64le.rpm
libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.alma.1.s390x.rpm
python3-cloud-what-1.29.33.1-2.el9_2.alma.1.s390x.rpm
libdnf-plugin-subscription-manager-1.29.33.1-2.el9_2.alma.1.x86_64.rpm
python3-cloud-what-1.29.33.1-2.el9_2.alma.1.aarch64.rpm
python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.alma.1.ppc64le.rpm
python3-cloud-what-1.29.33.1-2.el9_2.alma.1.x86_64.rpm
python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.alma.1.s390x.rpm
subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.alma.1.x86_64.rpm
python3-subscription-manager-rhsm-1.29.33.1-2.el9_2.alma.1.x86_64.rpm
subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.alma.1.s390x.rpm
subscription-manager-plugin-ostree-1.29.33.1-2.el9_2.alma.1.ppc64le.rpm
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.ALSA-2023:4708 Important: subscription-manager security update