RHSA-2022:0988: Moderate: Red Hat OpenStack Platform 16.1 (golang-github-vbatts-tar-split) security update

Q: What is the severity of RHSA-2022:0988?

The severity of RHSA-2022:0988 is rated as important.

Q: How do I fix RHSA-2022:0988?

To fix RHSA-2022:0988, update the affected package to version 0.11.1-6.el8 or later.

Q: What vulnerabilities are addressed in RHSA-2022:0988?

RHSA-2022:0988 addresses CVE-2021-29923 and CVE-2021-34558.

Q: Which software packages are affected by RHSA-2022:0988?

RHSA-2022:0988 affects the golang-github-vbatts-tar-split package in the el8 version.

Q: Is there a need to reboot after applying RHSA-2022:0988?

A reboot is not required after applying RHSA-2022:0988.

Published Mar 24, 2022

Updated

Security Fix(es):<br><li> net: incorrect parsing of extraneous zero characters at the beginning of</li> an IP address octet (CVE-2021-29923)<br><li> golang: crypto/tls: certificate of wrong type is causing TLS client to panic (CVE-2021-34558)</li> For more details about the security issue(s), including the impact, a CVSS<br>score, acknowledgments, and other related information, refer to the CVE<br>page listed in the References section.

Affected Software

1 affected componentFixes available

redhat/golang-github-vbatts-tar-split<0.11.1-6.el8

0.11.1-6.el8

Remediation

Event History

Jun 20, 2024

Advisory Published

via Red Hat·01:41 AM

Frequently Asked Questions

What is the severity of RHSA-2022:0988?

The severity of RHSA-2022:0988 is rated as important.

How do I fix RHSA-2022:0988?

To fix RHSA-2022:0988, update the affected package to version 0.11.1-6.el8 or later.

What vulnerabilities are addressed in RHSA-2022:0988?

RHSA-2022:0988 addresses CVE-2021-29923 and CVE-2021-34558.

Which software packages are affected by RHSA-2022:0988?

RHSA-2022:0988 affects the golang-github-vbatts-tar-split package in the el8 version.

Is there a need to reboot after applying RHSA-2022:0988?