{"id":"RHSA-2024:1061","summary":"Red Hat Security Advisory: Red Hat Satellite 6 security and bug fix update","modified":"2026-04-02T13:32:25.371891Z","published":"2024-09-16T17:34:41Z","upstream":["CVE-2022-4130","CVE-2023-0809","CVE-2023-28366","CVE-2023-3592","CVE-2023-4886"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:1061"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_satellite/6.13/html/upgrading_and_updating_red_hat_satellite/index"},{"type":"ARTICLE","url":"https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2145254"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2230135"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236882"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257299"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257300"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257302"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257314"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257316"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2260526"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264354"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2264918"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2265149"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1061.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-4130"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-4130"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-4130"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-0809"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-0809"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-0809"},{"type":"ARTICLE","url":"https://github.com/eclipse/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-3592"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-3592"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-3592"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-4886"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-4886"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4886"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-28366"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-28366"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-28366"}],"affected":[{"package":{"name":"foreman","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/mosquitto"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto-debuginfo","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/mosquitto-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto-debugsource","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/mosquitto-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/mosquitto"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto-debuginfo","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/mosquitto-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"mosquitto-debugsource","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/mosquitto-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.17-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-cli","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-debug","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-dynflow-sidekiq","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-dynflow-sidekiq"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ec2","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-ec2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-journald","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-journald"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-libvirt","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-libvirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-openstack","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-openstack"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ovirt","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-ovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-postgresql","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-postgresql"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-service","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-telemetry","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-telemetry"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-vmware","ecosystem":"Red Hat:satellite_capsule:6.13::el8","purl":"pkg:rpm/redhat/foreman-vmware"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-cli","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-debug","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-dynflow-sidekiq","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-dynflow-sidekiq"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ec2","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-ec2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-journald","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-journald"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-libvirt","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-libvirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-openstack","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-openstack"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ovirt","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-ovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-postgresql","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-postgresql"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-service","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-telemetry","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-telemetry"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-vmware","ecosystem":"Red Hat:satellite_utils:6.13::el8","purl":"pkg:rpm/redhat/foreman-vmware"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-cli","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-debug","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-dynflow-sidekiq","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-dynflow-sidekiq"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ec2","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-ec2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-journald","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-journald"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-libvirt","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-libvirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-openstack","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-openstack"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-ovirt","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-ovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-postgresql","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-postgresql"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-service","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-telemetry","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-telemetry"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}},{"package":{"name":"foreman-vmware","ecosystem":"Red Hat:satellite:6.13::el8","purl":"pkg:rpm/redhat/foreman-vmware"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1.24-1.el8sat"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:1061.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}