{"id":"RHSA-2023:2459","summary":"Red Hat Security Advisory: device-mapper-multipath security and bug fix update","modified":"2025-11-22T12:49:35Z","published":"2024-09-16T09:02:56Z","upstream":["CVE-2022-41973"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:2459"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.2_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2123894"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2125357"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2141860"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2143125"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2145225"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2166467"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_2459.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-41973"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-41973"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-41973"},{"type":"ARTICLE","url":"https://www.qualys.com/2022/10/24/leeloo-multipath/leeloo-multipath.txt"}],"affected":[{"package":{"name":"device-mapper-multipath","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-debugsource","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-devel","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-libs","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/device-mapper-multipath-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"kpartx","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/kpartx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"kpartx-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/kpartx-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"libdmmp-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/libdmmp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-debugsource","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-devel","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-libs","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"device-mapper-multipath-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/device-mapper-multipath-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"kpartx","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/kpartx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"kpartx-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/kpartx-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}},{"package":{"name":"libdmmp-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/libdmmp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.8.7-20.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:2459.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}