Lucene search
AmazonALAS2-2023-2203HistoryAug 03, 2023 - 6:35 p.m.
Important: ca-certificates
2023-08-0318:35:00
alas.aws.amazon.com
34
amazon linux 2
ca-certificates
cve-2022-23491
cve-2023-32803
update
trustcor
red hat
mitre
Issue Overview:
An initial fix in Amazon Linux ca-certificates package relating to CVE-2022-23491 did not properly remove root certificates from TrustCor from the root store. (CVE-2023-32803)
Affected Packages:
ca-certificates
Note:
This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update ca-certificates to update your system.
New Packages:
noarch:
ca-certificates-2021.2.50-72.amzn2.0.7.noarch
src:
ca-certificates-2021.2.50-72.amzn2.0.7.src
Additional References
Red Hat: CVE-2023-32803
Mitre: CVE-2023-32803
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 2 | noarch | ca-certificates | < 2021.2.50-72.amzn2.0.7 | ca-certificates-2021.2.50-72.amzn2.0.7.noarch.rpm |
Related
amazon
amazon
Important: ca-certificates
2023-08-03 20:16:00
Important: ca-certificates
2023-02-17 00:12:00
Important: ca-certificates
2023-02-17 00:02:00
nessus
nessus
Amazon Linux AMI : ca-certificates (ALAS-2023-1795)
2023-08-14 00:00:00
Amazon Linux 2 : ca-certificates (ALAS-2023-2203)
2023-08-14 00:00:00
Amazon Linux 2023 : ca-certificates (ALAS2023-2023-281)
2023-08-14 00:00:00
f5
f5
K000132764 : SSL Certificates in Mozilla vulnerability CVE-2022-23491
2023-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: mingw-python-certifi-2022.12.7-1.fc36
2023-03-30 01:16:08
[SECURITY] Fedora 37 Update: mingw-python-certifi-2022.12.7-1.fc37
2023-03-30 01:21:30
[SECURITY] Fedora 38 Update: mingw-python-certifi-2022.12.7-1.fc38
2023-03-30 00:23:13
ibm
ibm
cve
cve
CVE-2022-23491
2022-12-07 22:15:00
CVE-2023-32803
2023-08-09 03:03:48
redos
redos
ROS-20230619-03
2023-06-19 00:00:00
debiancve
debiancve
CVE-2022-23491
2022-12-07 22:15:00
openvas
openvas
Fedora: Security Advisory for mingw-python-certifi (FEDORA-2023-ed525aa807)
2023-03-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0139-1)
2023-01-26 00:00:00
Mageia: Security Advisory (MGASA-2023-0140)
2023-04-17 00:00:00
github
github
Certifi removing TrustCor root certificate
2022-12-07 23:05:18
redhatcve
redhatcve
CVE-2022-23491
2023-03-20 17:43:03
prion
prion
Design/Logic Flaw
2022-12-07 22:15:00
mageia
mageia
Updated python-certifi packages fix security vulnerability
2023-04-15 22:03:44
veracode
veracode
Improper Certification Validation
2022-12-08 13:48:48
cvelist
cvelist
CVE-2022-23491 Removal of TrustCor root certificate
2022-12-07 21:15:53
osv
osv
PYSEC-2022-42986
2022-12-07 22:15:00
Certifi removing TrustCor root certificate
2022-12-07 23:05:18
ubuntucve
ubuntucve
CVE-2022-23491
2022-12-07 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0704
2023-12-26 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0179
2023-12-24 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0534
2023-12-24 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00