CVE-2023-29007 When renaming or deleting a section from a configuration file,certain malicious configuration values may be misinterpreted as the beginning of a new configuration section, leading to arbitrary configuration injection.
Created git tracking bugs for this issue: Affects: fedora-all [bug 2189769]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:3192 https://access.redhat.com/errata/RHSA-2023:3192
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Extended Update Support Via RHSA-2023:3243 https://access.redhat.com/errata/RHSA-2023:3243
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:3248 https://access.redhat.com/errata/RHSA-2023:3248
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3245 https://access.redhat.com/errata/RHSA-2023:3245
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:3246 https://access.redhat.com/errata/RHSA-2023:3246
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:3247 https://access.redhat.com/errata/RHSA-2023:3247
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:3263 https://access.redhat.com/errata/RHSA-2023:3263
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Via RHSA-2023:3280 https://access.redhat.com/errata/RHSA-2023:3280
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2023:3382 https://access.redhat.com/errata/RHSA-2023:3382
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2023-29007