Release Info

Advisory: CLSA-2023:1692294010

OS: CentOS 8.4 ELS

Public date: 2023-08-17 13:40:12

Project: amanda

Version: 3.5.1-13.el8.tuxcare.els1

Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2023-1692294010.html

Changelog

- CVE-2022-37705: fix tar option filtering - CVE-2023-30577: introduce tar option allow list

Update

Update command: dnf update amanda*

Packages list

amanda-3.5.1-13.el8.tuxcare.els1.x86_64.rpm amanda-client-3.5.1-13.el8.tuxcare.els1.x86_64.rpm amanda-libs-3.5.1-13.el8.tuxcare.els1.x86_64.rpm amanda-server-3.5.1-13.el8.tuxcare.els1.x86_64.rpm

CVEs

CVE-2022-37705
CVE-2023-30577