{"id":"RHSA-2023:5080","summary":"Red Hat Security Advisory: keylime security update","modified":"2025-11-22T12:55:26Z","published":"2024-09-16T12:49:02Z","upstream":["CVE-2023-38200","CVE-2023-38201"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:5080"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2222692"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2222693"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5080.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-38200"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-38200"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-38200"},{"type":"ARTICLE","url":"https://github.com/keylime/keylime/pull/1421"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-38201"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-38201"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-38201"},{"type":"ARTICLE","url":"https://github.com/keylime/keylime/commit/9e5ac9f25cd400b16d5969f531cee28290543f2a"},{"type":"ARTICLE","url":"https://github.com/keylime/keylime/security/advisories/GHSA-f4r5-q63f-gcww"}],"affected":[{"package":{"name":"keylime","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"keylime-base","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"keylime-registrar","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime-registrar"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"keylime-selinux","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime-selinux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"keylime-tenant","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime-tenant"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"keylime-verifier","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/keylime-verifier"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}},{"package":{"name":"python3-keylime","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/python3-keylime"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:6.5.2-6.el9_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:5080.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}