NS-SA-2021-0174
2021-09-24 11:21:20
简介
moderate: NetworkManager/openwsman security update
严重级别
moderate
主题
An update for NetworkManager/openwsman is now available for NewStart CGSL MAIN 5.05/CGSL CORE 5.05.
NewStart Security has rated this update as having a security impact of moderate. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.
详细描述
NetworkManager: This package provides debug information for package NetworkManager. Debug information is useful when developing applications that use this package or when debugging this package.
openwsman: This package provides Perl bindings to access the openwsman client API.
Security Fix(es):
NetworkManager: A flaw was found in nmcli, where the command-line interface to the NetworkManager did not accept the 802-1x.ca-path and 802-1x.phase2-ca-path settings when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and an insecure connection occurs.(CVE-2020-10754)
NetworkManager: bugfix
openwsman: Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests. A remote, unauthenticated attacker can exploit this vulnerability by sending malicious HTTP request to cause denial of service to openwsman server.(CVE-2019-3833)
openwsman: bugfix
Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 5.05.F11B5.
影响组件
影响产品
- CGSL MAIN 5.05
- CGSL CORE 5.05
更新包
{"fix":[{"product":"CGSL MAIN 5.05","pkgs":[{"binary":["NetworkManager-bluetooth-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-glib-devel-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-dispatcher-routing-rules-1.18.8-2.el7_9.noarch.rpm","NetworkManager-team-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-adsl-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-libnm-devel-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-wifi-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-ppp-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-tui-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-wwan-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-libnm-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-config-server-1.18.8-2.el7_9.noarch.rpm","NetworkManager-glib-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-ovs-1.18.8-2.el7_9.x86_64.rpm"],"source":"NetworkManager-1.18.8-2.el7_9.src.rpm"},{"binary":["openwsman-python-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-server-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-ruby-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-perl-2.6.3-7.git4391e5c.el7.x86_64.rpm","libwsman-devel-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-client-2.6.3-7.git4391e5c.el7.x86_64.rpm","libwsman1-2.6.3-7.git4391e5c.el7.x86_64.rpm"],"source":"openwsman-2.6.3-7.git4391e5c.el7.src.rpm"}]},{"product":"CGSL CORE 5.05","pkgs":[{"binary":["NetworkManager-bluetooth-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-glib-devel-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-dispatcher-routing-rules-1.18.8-2.el7_9.noarch.rpm","NetworkManager-team-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-adsl-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-libnm-devel-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-wifi-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-ppp-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-tui-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-wwan-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-libnm-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-config-server-1.18.8-2.el7_9.noarch.rpm","NetworkManager-glib-1.18.8-2.el7_9.x86_64.rpm","NetworkManager-ovs-1.18.8-2.el7_9.x86_64.rpm"],"source":"NetworkManager-1.18.8-2.el7_9.src.rpm"},{"binary":["openwsman-python-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-server-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-ruby-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-perl-2.6.3-7.git4391e5c.el7.x86_64.rpm","libwsman-devel-2.6.3-7.git4391e5c.el7.x86_64.rpm","openwsman-client-2.6.3-7.git4391e5c.el7.x86_64.rpm","libwsman1-2.6.3-7.git4391e5c.el7.x86_64.rpm"],"source":"openwsman-2.6.3-7.git4391e5c.el7.src.rpm"}]}]}
CVE
参考