Vulnerabilities impacting supported product versions are listed in the following table as reported by Red Hat, Apache Tomcat and PostgreSQL security advisories. Refer to the Avaya Product Life Cycle Policy for information about supported product versions.
The severity is determined by the highest Common Vulnerability Scoring System (CVSS) score of the Common Vulnerabilities and Exposures (CVE) IDs listed in a vendor's security advisory. Refer to the Common Vulnerability Scoring System: Specification Document for additional information about CVSS score calculations.
Products listed in the Affected Products column have affected software installed as reported in the vendor security advisory.
The following links point to product security fix downloads. The Related Documents area on these pages provide a link to a product documentation which should contain specific details about security fixes. If a product/version does not exist in the below references, refer to the Avaya Support Portal. Search for Documents and/or Downloads using the Product Support drop down menu.
NOTE: Security Service Packs (SSP) MUST not be installed on software-only products.
An Avaya system product includes an Avaya provided operating system.
| Vendor Security Advisory | CVE(s) | Severity | Affected Product(s) |
|---|
gstreamer1-plugins-base security update (RHSA-2024:11345)
(Issued: 2024-12-18) | CVE-2024-47538
CVE-2024-47607
CVE-2024-47615
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP30, 10.2.x SSP9 or later - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending
|
python36:3.6 security update (RHSA-2024:10953)
(Issued: 2024-12-11) | CVE-2024-53899
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP8 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP9 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP9 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP9 or later
|
php:8.2 security update (RHSA-2024:10951)
(Issued: 2024-12-11) | CVE-2024-2756
CVE-2024-3096
CVE-2024-5458
CVE-2024-8925
CVE-2024-8927
CVE-2024-9026
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Pending - Avaya Aura® Device Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
php:7.4 security update (RHSA-2024:10952)
(Issued: 2024-12-11) | CVE-2023-0567
CVE-2023-0568
CVE-2023-3247
CVE-2023-3823
CVE-2023-3824
CVE-2024-2756
CVE-2024-3096
CVE-2024-5458
CVE-2024-8925
CVE-2024-8927
CVE-2024-9026
| Critical | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Pending - Avaya Aura® Device Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
kernel security update (RHSA-2024:10943)
(Issued: 2024-12-11) | CVE-2024-46695
CVE-2024-49949
CVE-2024-50082
CVE-2024-50099
CVE-2024-50110
CVE-2024-50142
CVE-2024-50192
CVE-2024-50256
CVE-2024-50264
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP9 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP9 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP9 or later
|
postgresql:13 security update (RHSA-2024:10832)
(Issued: 2024-12-05) | CVE-2024-10976
CVE-2024-10978
CVE-2024-10979
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
rhc security update (RHSA-2024:10784)
(Issued: 2024-12-04) | CVE-2022-3064
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Pending - Avaya Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Pending
|
python3:3.6.8 security update (RHSA-2024:10779)
(Issued: 2024-12-04) | CVE-2024-9287
CVE-2024-11168
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP8 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP8 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later
|
firefox security update (RHSA-2024:10752)
(Issued: 2024-12-03) | CVE-2024-11692
CVE-2024-11694
CVE-2024-11695
CVE-2024-11696
CVE-2024-11697
CVE-2024-11699
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
thunderbird security update (RHSA-2024:10591)
(Issued: 2024-12-02) | CVE-2024-11159
CVE-2024-11692
CVE-2024-11694
CVE-2024-11695
CVE-2024-11696
CVE-2024-11697
CVE-2024-11699
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
webkit2gtk3 security update (RHSA-2024:10481)
(Issued: 2024-11-27) | CVE-2024-44309
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
pam security update (RHSA-2024:10379)
(Issued: 2024-11-26) | CVE-2024-10041
CVE-2024-10963
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP8 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP8 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later
|
container-tools:rhel8 security update (RHSA-2024:10289)
(Issued: 2024-11-26) | CVE-2021-4024
CVE-2021-33198
CVE-2024-9676
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
kernel:4.18.0 security update (RHSA-2024:10281)
(Issued: 2024-11-26) | CVE-2024-27043
CVE-2024-27399
CVE-2024-38564
CVE-2024-46858
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP8 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP29, 10.2.x SSP8 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP30, 10.2 SSP8 or later
|
webkit2gtk3 security update (RHSA-2024:9636)
(Issued: 2024-11-14) | CVE-2024-4558
CVE-2024-23271
CVE-2024-27820
CVE-2024-27838
CVE-2024-27851
CVE-2024-40779
CVE-2024-40780
CVE-2024-40782
CVE-2024-40789
CVE-2024-40866
CVE-2024-44185
CVE-2024-44187
CVE-2024-44244
CVE-2024-44296
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
binutils security update (RHSA-2024:9689)
(Issued: 2024-11-14) | CVE-2018-12699
| None | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP8 or later
|
expat security update (RHSA-2024:9502)
(Issued: 2024-11-13) | CVE-2024-50602
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP8 or later
|
libsoup security update (RHSA-2024:9573)
(Issued: 2024-11-13) | CVE-2024-52530
CVE-2024-52532
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Pending
|
gstreamer1-plugins-base security update (RHSA-2024:9056)
(Issued: 2024-11-11) | CVE-2024-4453
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later
|
bzip2 security update (RHSA-2024:8922)
(Issued: 2024-11-06) | CVE-2019-12900
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
kernel security update (RHSA-2024:8856)
(Issued: 2024-11-05) | CVE-2022-48773
CVE-2022-48936
CVE-2023-52492
CVE-2024-24857
CVE-2024-26851
CVE-2024-26924
CVE-2024-26976
CVE-2024-27017
CVE-2024-27062
CVE-2024-35839
CVE-2024-35898
CVE-2024-35939
CVE-2024-38540
CVE-2024-38541
CVE-2024-38586
CVE-2024-38608
CVE-2024-39503
CVE-2024-40924
CVE-2024-40961
CVE-2024-40983
CVE-2024-40984
CVE-2024-41009
CVE-2024-41042
CVE-2024-41066
CVE-2024-41092
CVE-2024-41093
CVE-2024-42070
CVE-2024-42079
CVE-2024-42244
CVE-2024-42284
CVE-2024-42292
CVE-2024-42301
CVE-2024-43854
CVE-2024-43880
CVE-2024-43889
CVE-2024-43892
CVE-2024-44935
CVE-2024-44989
CVE-2024-44990
CVE-2024-45018
CVE-2024-46826
CVE-2024-47668
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
go-toolset:rhel8 security update (RHSA-2024:8876)
(Issued: 2024-11-05) | CVE-2024-24790
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
container-tools:rhel8 security update (RHSA-2024:8846)
(Issued: 2024-11-05) | CVE-2024-9341
CVE-2024-9407
CVE-2024-9675
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
krb5 security update (RHSA-2024:8860)
(Issued: 2024-11-05) | CVE-2024-3596
| Critical | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
xmlrpc-c security update (RHSA-2024:8859)
(Issued: 2024-11-05) | CVE-2024-45491
| High | - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
libtiff security update (RHSA-2024:8833)
(Issued: 2024-11-05) | CVE-2024-7006
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP10 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
thunderbird security update (RHSA-2024:8790)
(Issued: 2024-11-04) | CVE-2024-10458
CVE-2024-10459
CVE-2024-10460
CVE-2024-10461
CVE-2024-10462
CVE-2024-10463
CVE-2024-10464
CVE-2024-10465
CVE-2024-10466
CVE-2024-10467
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
java-1.8.0-openjdk security update (RHSA-2024:8117)
(Issued: 2024-10-16) | CVE-2023-48161
CVE-2024-21208
CVE-2024-21210
CVE-2024-21217
CVE-2024-21235
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
java-17-openjdk security update (RHSA-2024:8124)
(Issued: 2024-10-16) | CVE-2023-48161
CVE-2024-21208
CVE-2024-21210
CVE-2024-21217
CVE-2024-21235
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
java-11-openjdk security update (RHSA-2024:8121)
(Issued: 2024-10-16) | CVE-2023-48161
CVE-2024-21208
CVE-2024-21210
CVE-2024-21217
CVE-2024-21235
| High | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
container-tools:rhel8 security update (RHSA-2024:8038)
(Issued: 2024-10-14) | CVE-2023-45290
CVE-2024-34155
CVE-2024-34156
CVE-2024-34158
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
thunderbird security update (RHSA-2024:8024)
(Issued: 2024-10-14) | CVE-2024-9680
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
firefox security update (RHSA-2024:7977)
(Issued: 2024-10-10) | CVE-2024-9680
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
openssl security update (RHSA-2024:7848)
(Issued: 2024-10-09) | CVE-2024-5535
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later
|
firefox security update (RHSA-2024:7700)
(Issued: 2024-10-07) | CVE-2024-8900
CVE-2024-9392
CVE-2024-9393
CVE-2024-9394
CVE-2024-9396
CVE-2024-9397
CVE-2024-9398
CVE-2024-9399
CVE-2024-9400
CVE-2024-9401
CVE-2024-9402
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
thunderbird security update (RHSA-2024:7699)
(Issued: 2024-10-07) | CVE-2024-9392
CVE-2024-9393
CVE-2024-9394
CVE-2024-9396
CVE-2024-9397
CVE-2024-9398
CVE-2024-9399
CVE-2024-9400
CVE-2024-9401
CVE-2024-9402
CVE-2024-9403
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
go-toolset:rhel8 security update (RHSA-2024:7502)
(Issued: 2024-10-02) | CVE-2024-9355
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
linux-firmware security update (RHSA-2024:7481)
(Issued: 2024-10-02) | CVE-2023-20584
CVE-2023-31356
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP7 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP7 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
cups-filters security update (RHSA-2024:7463)
(Issued: 2024-10-01) | CVE-2024-47076
CVE-2024-47175
CVE-2024-47176
CVE-2024-47850
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later
|
container-tools:rhel8 security update (RHSA-2024:6969)
(Issued: 2024-09-24) | CVE-2023-45290
CVE-2024-24783
CVE-2024-24784
CVE-2024-24788
CVE-2024-24791
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
virt:rhel and virt-devel:rhel security update (RHSA-2024:6964)
(Issued: 2024-09-24) | CVE-2024-3446
CVE-2024-7383
CVE-2024-7409
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later
|
python3 security update (RHSA-2024:6975)
(Issued: 2024-09-24) | CVE-2024-4032
CVE-2024-6232
CVE-2024-6923
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
emacs security update (RHSA-2024:6987)
(Issued: 2024-09-24) | CVE-2024-30203
CVE-2024-30205
CVE-2024-39331
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later - Avaya Device Services: 10.x,
Resolution: Pending - Avaya Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
expat security update (RHSA-2024:6989)
(Issued: 2024-09-24) | CVE-2024-45490
CVE-2024-45491
CVE-2024-45492
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
nano security update (RHSA-2024:6986)
(Issued: 2024-09-24) | CVE-2024-5742
| Medium | - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
gtk3 security update (RHSA-2024:6963)
(Issued: 2024-09-24) | CVE-2024-6655
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
kernel security update (RHSA-2024:7000)
(Issued: 2024-09-24) | CVE-2021-46984
CVE-2021-47097
CVE-2021-47101
CVE-2021-47287
CVE-2021-47289
CVE-2021-47321
CVE-2021-47338
CVE-2021-47352
CVE-2021-47383
CVE-2021-47384
CVE-2021-47385
CVE-2021-47386
CVE-2021-47393
CVE-2021-47412
CVE-2021-47432
CVE-2021-47441
CVE-2021-47455
CVE-2021-47466
CVE-2021-47497
CVE-2021-47527
CVE-2021-47560
CVE-2021-47582
CVE-2021-47609
CVE-2022-48619
CVE-2022-48754
CVE-2022-48760
CVE-2022-48804
CVE-2022-48836
CVE-2022-48866
CVE-2023-6040
CVE-2023-52470
CVE-2023-52476
CVE-2023-52478
CVE-2023-52522
CVE-2023-52683
CVE-2023-52798
CVE-2023-52800
CVE-2023-52809
CVE-2023-52817
CVE-2023-52840
CVE-2024-23848
CVE-2024-26595
CVE-2024-26600
CVE-2024-26638
CVE-2024-26645
CVE-2024-26649
CVE-2024-26665
CVE-2024-26717
CVE-2024-26720
CVE-2024-26769
CVE-2024-26846
CVE-2024-26855
CVE-2024-26880
CVE-2024-26894
CVE-2024-26923
CVE-2024-26939
CVE-2024-27013
CVE-2024-27042
CVE-2024-35809
CVE-2024-35877
CVE-2024-35884
CVE-2024-35944
CVE-2024-35989
CVE-2024-36883
CVE-2024-36901
CVE-2024-36902
CVE-2024-36919
CVE-2024-36920
CVE-2024-36922
CVE-2024-36939
CVE-2024-36953
CVE-2024-37356
CVE-2024-38558
CVE-2024-38559
CVE-2024-38570
CVE-2024-38579
CVE-2024-38581
CVE-2024-38619
CVE-2024-39471
CVE-2024-39499
CVE-2024-39501
CVE-2024-39506
CVE-2024-40901
CVE-2024-40904
CVE-2024-40911
CVE-2024-40912
CVE-2024-40929
CVE-2024-40931
CVE-2024-40941
CVE-2024-40954
CVE-2024-40958
CVE-2024-40959
CVE-2024-40960
CVE-2024-40972
CVE-2024-40977
CVE-2024-40978
CVE-2024-40988
CVE-2024-40989
CVE-2024-40995
CVE-2024-40997
CVE-2024-40998
CVE-2024-41005
CVE-2024-41007
CVE-2024-41008
CVE-2024-41012
CVE-2024-41013
CVE-2024-41014
CVE-2024-41023
CVE-2024-41035
CVE-2024-41038
CVE-2024-41039
CVE-2024-41040
CVE-2024-41041
CVE-2024-41044
CVE-2024-41055
CVE-2024-41056
CVE-2024-41060
CVE-2024-41064
CVE-2024-41065
CVE-2024-41071
CVE-2024-41076
CVE-2024-41090
CVE-2024-41091
CVE-2024-41097
CVE-2024-42084
CVE-2024-42090
CVE-2024-42094
CVE-2024-42096
CVE-2024-42114
CVE-2024-42124
CVE-2024-42131
CVE-2024-42152
CVE-2024-42154
CVE-2024-42225
CVE-2024-42228
CVE-2024-42237
CVE-2024-42238
CVE-2024-42240
CVE-2024-42246
CVE-2024-42265
CVE-2024-42322
CVE-2024-43830
CVE-2024-43871
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP28, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP9 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP29, 10.2 SSP6 or later
|
go-toolset:rhel8 security update (RHSA-2024:6908)
(Issued: 2024-09-23) | CVE-2024-24791
CVE-2024-34155
CVE-2024-34156
CVE-2024-34158
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
thunderbird security update (RHSA-2024:6684)
(Issued: 2024-09-16) | CVE-2024-7652
CVE-2024-8381
CVE-2024-8382
CVE-2024-8384
CVE-2024-8385
CVE-2024-8386
CVE-2024-8387
CVE-2024-8394
| Critical | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
firefox security update (RHSA-2024:6682)
(Issued: 2024-09-16) | CVE-2024-7652
CVE-2024-8381
CVE-2024-8382
CVE-2024-8383
CVE-2024-8384
CVE-2024-8385
CVE-2024-8386
CVE-2024-8387
| Critical | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
bubblewrap and flatpak security update (RHSA-2024:6422)
(Issued: 2024-09-05) | CVE-2024-42472
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP28, 10.2 SSP6 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP27, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP28, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP28, 10.2 SSP6 or later
|
nodejs:18 security update (RHSA-2024:6148)
(Issued: 2024-09-03) | CVE-2024-22020
CVE-2024-28863
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
postgresql:13 security update (RHSA-2024:6018)
(Issued: 2024-08-29) | CVE-2024-7348
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
python39:3.9 and python39-devel:3.9 security update (RHSA-2024:5962)
(Issued: 2024-08-28) | CVE-2024-4032
CVE-2024-6345
CVE-2024-6923
CVE-2024-8088
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
nodejs:20 security update (RHSA-2024:5814)
(Issued: 2024-08-26) | CVE-2024-22018
CVE-2024-22020
CVE-2024-28863
CVE-2024-36137
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
tomcat security update (RHSA-2024:5694)
(Issued: 2024-08-21) | CVE-2024-34750
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending
|
curl security update (RHSA-2024:5654)
(Issued: 2024-08-20) | CVE-2024-2398
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Pending - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later
|
bind security update (RHSA-2024:5524)
(Issued: 2024-08-19) | CVE-2024-1737
CVE-2024-1975
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP26, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later
|
python-setuptools security update (RHSA-2024:5530)
(Issued: 2024-08-19) | CVE-2024-6345
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP26, 10.2.x SSP6 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP6 or later
|
container-tools:rhel8 security update (RHSA-2024:5258)
(Issued: 2024-08-13) | CVE-2023-45290
CVE-2024-1394
CVE-2024-3727
CVE-2024-6104
CVE-2024-24783
CVE-2024-24784
CVE-2024-24789
CVE-2024-37298
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP26, 10.2.x SSP5 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
httpd:2.4 security update (RHSA-2024:5193)
(Issued: 2024-08-12) | CVE-2024-38476
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP27, 10.2 SSP5 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP26, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
libtiff security update (RHSA-2024:5079)
(Issued: 2024-08-07) | CVE-2018-15209
CVE-2023-6228
CVE-2023-25433
CVE-2023-52356
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.1.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later
|
httpd:2.4 security update (RHSA-2024:4720)
(Issued: 2024-07-23) | CVE-2024-38473
CVE-2024-38474
CVE-2024-38475
CVE-2024-38477
CVE-2024-39573
| Critical | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
qt5-qtbase security update (RHSA-2024:4617)
(Issued: 2024-07-18) | CVE-2024-39936
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later
|
thunderbird security update (RHSA-2024:4635)
(Issued: 2024-07-18) | CVE-2024-6601
CVE-2024-6603
CVE-2024-6604
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
libndp security update (RHSA-2024:4620)
(Issued: 2024-07-18) | CVE-2024-5564
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R21.x, R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later
|
java-17-openjdk security update (RHSA-2024:4568)
(Issued: 2024-07-17) | CVE-2024-21131
CVE-2024-21138
CVE-2024-21140
CVE-2024-21145
CVE-2024-21147
| High | - Avaya CMS: R21.x, R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
java-1.8.0-openjdk security update (RHSA-2024:4563)
(Issued: 2024-07-17) | CVE-2024-21131
CVE-2024-21138
CVE-2024-21140
CVE-2024-21144
CVE-2024-21145
CVE-2024-21147
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later
|
java-11-openjdk security update (RHSA-2024:4567)
(Issued: 2024-07-16) | CVE-2024-21131
CVE-2024-21138
CVE-2024-21140
CVE-2024-21144
CVE-2024-21145
CVE-2024-21147
| High | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
virt:rhel and virt-devel:rhel security update (RHSA-2024:4420)
(Issued: 2024-07-09) | CVE-2024-4467
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later
|
libreswan security update (RHSA-2024:4376)
(Issued: 2024-07-08) | CVE-2024-3652
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
virt:rhel and virt-devel:rhel security and bug fix update (RHSA-2024:4351)
(Issued: 2024-07-08) | CVE-2024-4418
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later
|
nghttp2 security update (RHSA-2024:4252)
(Issued: 2024-07-02) | CVE-2024-28182
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
container-tools security update (RHSA-2024:4246)
(Issued: 2024-07-02) | CVE-2024-24786
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
cups security update (RHSA-2024:4265)
(Issued: 2024-07-02) | CVE-2024-35235
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
go-toolset security update (RHSA-2024:4237)
(Issued: 2024-07-02) | CVE-2024-24789
CVE-2024-24790
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
xmlrpc-c security and bug fix update (RHSA-2024:4259)
(Issued: 2024-07-02) | CVE-2023-52425
| High | - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
c-ares security update (RHSA-2024:4249)
(Issued: 2024-07-02) | CVE-2024-25629
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
linux-firmware security update (RHSA-2024:4262)
(Issued: 2024-07-02) | CVE-2023-31346
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
python-idna security update (RHSA-2024:4260)
(Issued: 2024-07-02) | CVE-2024-3651
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
python-jinja2 security update (RHSA-2024:4231)
(Issued: 2024-07-02) | CVE-2024-34064
| Medium | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
openldap security update (RHSA-2024:4264)
(Issued: 2024-07-02) | CVE-2023-2953
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later
|
less security update (RHSA-2024:4256)
(Issued: 2024-07-02) | CVE-2022-48624
CVE-2024-32487
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP5, 10.1.x SSP25 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later
|
kernel security and bug fix update (RHSA-2024:4211)
(Issued: 2024-07-02) | CVE-2020-26555
CVE-2021-46909
CVE-2021-46972
CVE-2021-47069
CVE-2021-47073
CVE-2021-47236
CVE-2021-47310
CVE-2021-47311
CVE-2021-47353
CVE-2021-47356
CVE-2021-47456
CVE-2021-47495
CVE-2023-5090
CVE-2023-52464
CVE-2023-52560
CVE-2023-52615
CVE-2023-52626
CVE-2023-52667
CVE-2023-52669
CVE-2023-52675
CVE-2023-52686
CVE-2023-52700
CVE-2023-52703
CVE-2023-52781
CVE-2023-52813
CVE-2023-52835
CVE-2023-52877
CVE-2023-52878
CVE-2023-52881
CVE-2024-26583
CVE-2024-26584
CVE-2024-26585
CVE-2024-26656
CVE-2024-26675
CVE-2024-26735
CVE-2024-26759
CVE-2024-26801
CVE-2024-26804
CVE-2024-26826
CVE-2024-26859
CVE-2024-26906
CVE-2024-26907
CVE-2024-26974
CVE-2024-26982
CVE-2024-27397
CVE-2024-27410
CVE-2024-35789
CVE-2024-35835
CVE-2024-35838
CVE-2024-35845
CVE-2024-35852
CVE-2024-35853
CVE-2024-35854
CVE-2024-35855
CVE-2024-35888
CVE-2024-35890
CVE-2024-35958
CVE-2024-35959
CVE-2024-35960
CVE-2024-36004
CVE-2024-36007
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP26, 10.2 SSP5 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP5, 10.1 SSP26 or later
|
httpd:2.4/httpd security update (RHSA-2024:4197)
(Issued: 2024-07-01) | CVE-2023-38709
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP5 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
git security update (RHSA-2024:4084)
(Issued: 2024-06-25) | CVE-2024-32002
CVE-2024-32004
CVE-2024-32020
CVE-2024-32021
CVE-2024-32465
| Critical | - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.1.0 or later
|
thunderbird security update (RHSA-2024:4036)
(Issued: 2024-06-20) | CVE-2024-5688
CVE-2024-5690
CVE-2024-5691
CVE-2024-5693
CVE-2024-5696
CVE-2024-5700
CVE-2024-5702
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
ghostscript security update (RHSA-2024:4000)
(Issued: 2024-06-20) | CVE-2024-33871
| High | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.1 or later
|
container-tools:rhel8 bug fix and enhancement update (RHSA-2024:3968)
(Issued: 2024-06-18) | CVE-2024-28176
CVE-2024-28180
| Medium | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP25, 10.2.x SSP4 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
linux-firmware security update (RHSA-2024:3939)
(Issued: 2024-06-17) | CVE-2022-27635
CVE-2022-36351
CVE-2022-38076
CVE-2022-40964
CVE-2022-46329
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
firefox security update (RHSA-2024:3954)
(Issued: 2024-06-17) | CVE-2024-5688
CVE-2024-5690
CVE-2024-5691
CVE-2024-5693
CVE-2024-5696
CVE-2024-5700
CVE-2024-5702
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
thunderbird security update (RHSA-2024:3784)
(Issued: 2024-06-10) | CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
firefox security update (RHSA-2024:3783)
(Issued: 2024-06-10) | CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
bind, bind-dyndb-ldap, and dhcp security update (RHSA-2024:3741)
(Issued: 2024-06-10) | CVE-2023-4408
CVE-2023-50387
CVE-2023-50868
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
less security update (RHSA-2024:3669)
(Issued: 2024-06-06) | CVE-2024-32487
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.1 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
cockpit security update (RHSA-2024:3667)
(Issued: 2024-06-06) | CVE-2024-2947
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
tomcat security and bug fix update (RHSA-2024:3666)
(Issued: 2024-06-06) | CVE-2024-23672
CVE-2024-24549
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending
|
kernel update (RHSA-2024:3618)
(Issued: 2024-06-05) | CVE-2019-25162
CVE-2020-36777
CVE-2021-46934
CVE-2021-47013
CVE-2021-47055
CVE-2021-47118
CVE-2021-47153
CVE-2021-47171
CVE-2021-47185
CVE-2022-48627
CVE-2022-48669
CVE-2023-6240
CVE-2023-52439
CVE-2023-52445
CVE-2023-52477
CVE-2023-52513
CVE-2023-52520
CVE-2023-52528
CVE-2023-52565
CVE-2023-52578
CVE-2023-52594
CVE-2023-52595
CVE-2023-52598
CVE-2023-52606
CVE-2023-52607
CVE-2023-52610
CVE-2024-0340
CVE-2024-23307
CVE-2024-25744
CVE-2024-26593
CVE-2024-26603
CVE-2024-26610
CVE-2024-26615
CVE-2024-26642
CVE-2024-26643
CVE-2024-26659
CVE-2024-26664
CVE-2024-26693
CVE-2024-26694
CVE-2024-26743
CVE-2024-26744
CVE-2024-26779
CVE-2024-26872
CVE-2024-26892
CVE-2024-26897
CVE-2024-26901
CVE-2024-26919
CVE-2024-26933
CVE-2024-26934
CVE-2024-26964
CVE-2024-26973
CVE-2024-26993
CVE-2024-27014
CVE-2024-27048
CVE-2024-27052
CVE-2024-27056
CVE-2024-27059
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
libxml2 security update (RHSA-2024:3626)
(Issued: 2024-06-05) | CVE-2024-25062
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
glibc security update (RHSA-2024:3588)
(Issued: 2024-06-04) | CVE-2024-2961
CVE-2024-33599
CVE-2024-33600
CVE-2024-33601
CVE-2024-33602
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
python39:3.9 and python39-devel:3.9 security update (RHSA-2024:3466)
(Issued: 2024-05-29) | CVE-2023-6597
CVE-2024-0450
CVE-2024-3651
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
python3 security update (RHSA-2024:3347)
(Issued: 2024-05-23) | CVE-2023-6597
CVE-2024-0450
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
gdk-pixbuf2 security update (RHSA-2024:3341)
(Issued: 2024-05-23) | CVE-2022-48622
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
glibc security update (RHSA-2024:3344)
(Issued: 2024-05-23) | CVE-2024-33599
CVE-2024-33600
CVE-2024-33601
CVE-2024-33602
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
go-toolset:rhel8 security update (RHSA-2024:3259)
(Issued: 2024-05-22) | CVE-2023-45288
CVE-2023-45289
CVE-2023-45290
CVE-2024-24783
CVE-2024-24784
CVE-2024-24785
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
krb5 security update (RHSA-2024:3268)
(Issued: 2024-05-22) | CVE-2024-26458
CVE-2024-26461
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
libsndfile security update (RHSA-2024:3030)
(Issued: 2024-05-22) | CVE-2022-33065
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later
|
gstreamer1-plugins-base security update (RHSA-2024:3088)
(Issued: 2024-05-22) | CVE-2023-37328
| Medium | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later
|
gmp security update (RHSA-2024:3214)
(Issued: 2024-05-22) | CVE-2021-43618
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
libssh security update (RHSA-2024:3233)
(Issued: 2024-05-22) | CVE-2023-6004
CVE-2023-6918
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
pam security update (RHSA-2024:3163)
(Issued: 2024-05-22) | CVE-2024-22365
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
poppler security update (RHSA-2024:2979)
(Issued: 2024-05-22) | CVE-2020-36024
| Medium | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.0 or later
|
traceroute security update (RHSA-2024:3211)
(Issued: 2024-05-22) | CVE-2023-46316
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
bind and dhcp security update (RHSA-2024:3271)
(Issued: 2024-05-22) | CVE-2023-4408
CVE-2023-50387
CVE-2023-50868
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
linux-firmware security update (RHSA-2024:3178)
(Issued: 2024-05-22) | CVE-2022-46329
CVE-2023-20592
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0, R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
python-jinja2 security update (RHSA-2024:3102)
(Issued: 2024-05-22) | CVE-2024-22195
| Medium | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
perl-CPAN security update (RHSA-2024:3094)
(Issued: 2024-05-22) | CVE-2023-31484
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
grub2 security update (RHSA-2024:3184)
(Issued: 2024-05-22) | CVE-2023-4692
CVE-2023-4693
CVE-2024-1048
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
squashfs-tools security update (RHSA-2024:3139)
(Issued: 2024-05-22) | CVE-2021-40153
CVE-2021-41072
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
harfbuzz security update (RHSA-2024:2980)
(Issued: 2024-05-22) | CVE-2023-25193
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
libXpm security update (RHSA-2024:2974)
(Issued: 2024-05-22) | CVE-2023-43788
CVE-2023-43789
| Medium | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
gstreamer1-plugins-bad-free security update (RHSA-2024:3060)
(Issued: 2024-05-22) | CVE-2023-40474
CVE-2023-40475
CVE-2023-40476
| Medium | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later
|
libX11 security update (RHSA-2024:2973)
(Issued: 2024-05-22) | CVE-2023-43785
CVE-2023-43786
CVE-2023-43787
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
libtiff security update (RHSA-2024:3059)
(Issued: 2024-05-22) | CVE-2022-4645
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
webkit2gtk3 security update (RHSA-2024:2982)
(Issued: 2024-05-22) | CVE-2014-1745
CVE-2023-32359
CVE-2023-39928
CVE-2023-40414
CVE-2023-41983
CVE-2023-42852
CVE-2023-42883
CVE-2023-42890
CVE-2024-23206
CVE-2024-23213
| Critical | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
ghostscript security update (RHSA-2024:2966)
(Issued: 2024-05-22) | CVE-2020-21710
| Medium | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.0 or later
|
sssd security update (RHSA-2024:3270)
(Issued: 2024-05-22) | CVE-2023-3758
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
systemd security update (RHSA-2024:3203)
(Issued: 2024-05-22) | CVE-2023-7008
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP6 or later
|
openssh security update (RHSA-2024:3166)
(Issued: 2024-05-22) | CVE-2020-15778
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
qt5-qtbase security update (RHSA-2024:3056)
(Issued: 2024-05-22) | CVE-2023-51714
CVE-2024-25580
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later
|
httpd:2.4 security update (RHSA-2024:3121)
(Issued: 2024-05-22) | CVE-2023-31122
CVE-2023-45802
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
kernel security, bug fix, and enhancement update (RHSA-2024:3138)
(Issued: 2024-05-22) | CVE-2019-13631
CVE-2019-15505
CVE-2020-25656
CVE-2021-3753
CVE-2021-4204
CVE-2022-0500
CVE-2022-3565
CVE-2022-23222
CVE-2022-45934
CVE-2023-1513
CVE-2023-3567
CVE-2023-4133
CVE-2023-4244
CVE-2023-6121
CVE-2023-6176
CVE-2023-6622
CVE-2023-6915
CVE-2023-6932
CVE-2023-24023
CVE-2023-25775
CVE-2023-28464
CVE-2023-31083
CVE-2023-37453
CVE-2023-38409
CVE-2023-39189
CVE-2023-39192
CVE-2023-39193
CVE-2023-39194
CVE-2023-39198
CVE-2023-42754
CVE-2023-42755
CVE-2023-45863
CVE-2023-51779
CVE-2023-51780
CVE-2023-52340
CVE-2023-52434
CVE-2023-52448
CVE-2023-52489
CVE-2023-52574
CVE-2023-52580
CVE-2023-52581
CVE-2023-52620
CVE-2024-0841
CVE-2024-25742
CVE-2024-25743
CVE-2024-26602
CVE-2024-26609
CVE-2024-26671
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0, R21.0.0.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later
|
container-tools:rhel8 security update (RHSA-2024:3254)
(Issued: 2024-05-22) | CVE-2022-2880
CVE-2022-41715
CVE-2024-1753
CVE-2024-24786
CVE-2024-28180
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
pki-core:10.6 and pki-deps:10.6 security update (RHSA-2024:3061)
(Issued: 2024-05-22) | CVE-2020-36518
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending
|
container-tools:rhel8 security update (RHSA-2024:2988)
(Issued: 2024-05-22) | CVE-2018-25091
CVE-2021-33198
CVE-2021-34558
CVE-2022-2879
CVE-2022-2880
CVE-2022-41715
CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322
CVE-2023-39326
CVE-2023-45287
CVE-2023-45803
CVE-2023-48795
CVE-2024-23650
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
python39:3.9 and python39-devel:3.9 security update (RHSA-2024:2985)
(Issued: 2024-05-22) | CVE-2022-40897
CVE-2023-23931
CVE-2023-27043
CVE-2023-43804
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
python27:2.7 security update (RHSA-2024:2987)
(Issued: 2024-05-22) | CVE-2022-40897
CVE-2022-48560
CVE-2022-48565
CVE-2023-43804
CVE-2024-22195
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1.x SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1.x SSP25 or later
|
glibc security update (RHSA-2024:3269)
(Issued: 2024-05-22) | CVE-2024-2961
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP24, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP4, 10.1 SSP25 or later
|
virt:rhel and virt-devel:rhel security update (RHSA-2024:3253)
(Issued: 2024-05-22) | CVE-2024-2494
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later
|
virt:rhel and virt-devel:rhel security and enhancement update (RHSA-2024:2962)
(Issued: 2024-05-22) | CVE-2023-3255
CVE-2023-5088
CVE-2023-6683
CVE-2023-6693
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP25, 10.2 SSP4 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.2.x SSP4, 10.1.x SSP24 or later
|
perl:5.32 security update (RHSA-2024:3128)
(Issued: 2024-05-22) | CVE-2023-47038
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® CMS: R20.x,
Resolution: Pending - Avaya Aura® Communication Manager: 10.x,
Resolution: Pending - Avaya Aura® Device Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Pending - Avaya Aura® Session Manager: 10.x,
Resolution: Pending - Avaya Aura® System Manager: 10.x,
Resolution: Pending
|
nodejs:18 security update (RHSA-2024:2780)
(Issued: 2024-05-09) | CVE-2024-22025
CVE-2024-25629
CVE-2024-27982
CVE-2024-27983
CVE-2024-28182
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
nodejs:20 security update (RHSA-2024:2778)
(Issued: 2024-05-09) | CVE-2024-22025
CVE-2024-25629
CVE-2024-27982
CVE-2024-27983
CVE-2024-28182
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates
|
glibc security update (RHSA-2024:2722)
(Issued: 2024-05-07) | CVE-2024-2961
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP4 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP4 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP4 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP4 or later
|
container-tools:rhel8 security and bug fix update (RHSA-2024:2098)
(Issued: 2024-04-29) | CVE-2024-1753
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP4 - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
container-tools:4.0 security update (RHSA-2024:2084)
(Issued: 2024-04-29) | CVE-2024-1753
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP9, 10.2.0.0 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
kernel security and bug fix update (RHSA-2024:2004)
(Issued: 2024-04-23) | CVE-2020-36558
CVE-2023-2002
CVE-2023-4622
CVE-2023-4623
CVE-2023-25775
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
grub2 security update (RHSA-2024:2002)
(Issued: 2024-04-23) | CVE-2022-2601
| Medium | - Avaya Breeze: 3.x,
Resolution: Install 3.9.0.0 or later - Avaya CMS: R19.x,
Resolution: Install R20.0.0 or later - Avaya IP Office: 11.x,
Resolution: Install 11.1 FP3 SP2 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.2 or later
|
libreswan security update (RHSA-2024:1998)
(Issued: 2024-04-23) | CVE-2024-2357
| Medium | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
shim security update (RHSA-2024:1959)
(Issued: 2024-04-23) | CVE-2023-40546
CVE-2023-40547
CVE-2023-40548
CVE-2023-40549
CVE-2023-40550
CVE-2023-40551
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
go-toolset:rhel8 security update (RHSA-2024:1962)
(Issued: 2024-04-23) | CVE-2023-45288
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
java-11-openjdk security update (RHSA-2024:1821)
(Issued: 2024-04-22) | CVE-2024-21011
CVE-2024-21012
CVE-2024-21068
CVE-2024-21085
CVE-2024-21094
| Low | - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
thunderbird security update (RHSA-2024:1939)
(Issued: 2024-04-22) | CVE-2024-2609
CVE-2024-3302
CVE-2024-3852
CVE-2024-3854
CVE-2024-3857
CVE-2024-3859
CVE-2024-3861
CVE-2024-3864
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
java-11-openjdk security update (RHSA-2024:1822)
(Issued: 2024-04-22) | CVE-2024-21011
CVE-2024-21012
CVE-2024-21068
CVE-2024-21085
CVE-2024-21094
| Low | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
shim security update (RHSA-2024:1902)
(Issued: 2024-04-18) | CVE-2023-40546
CVE-2023-40547
CVE-2023-40548
CVE-2023-40549
CVE-2023-40550
CVE-2023-40551
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
firefox security update (RHSA-2024:1912)
(Issued: 2024-04-18) | CVE-2024-2609
CVE-2024-3302
CVE-2024-3852
CVE-2024-3854
CVE-2024-3857
CVE-2024-3859
CVE-2024-3861
CVE-2024-3864
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
java-1.8.0-openjdk security update (RHSA-2024:1818)
(Issued: 2024-04-18) | CVE-2024-21011
CVE-2024-21068
CVE-2024-21085
CVE-2024-21094
| Low | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.x SSP8 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP3, 10.1 SSP24 or later
|
java-17-openjdk security update (RHSA-2024:1825)
(Issued: 2024-04-18) | CVE-2024-21011
CVE-2024-21012
CVE-2024-21068
CVE-2024-21094
| Low | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
java-1.8.0-openjdk security update (RHSA-2024:1817)
(Issued: 2024-04-16) | CVE-2024-21011
CVE-2024-21068
CVE-2024-21085
CVE-2024-21094
| Low | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
bind and dhcp security update (RHSA-2024:1782)
(Issued: 2024-04-12) | CVE-2023-4408
CVE-2023-50387
CVE-2023-50868
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
gnutls security update (RHSA-2024:1784)
(Issued: 2024-04-11) | CVE-2024-28834
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
unbound security update (RHSA-2024:1751)
(Issued: 2024-04-11) | CVE-2024-1488
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
httpd:2.4/mod_http2 security update (RHSA-2024:1786)
(Issued: 2024-04-11) | CVE-2024-27316
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
nodejs:20 security update (RHSA-2024:1687)
(Issued: 2024-04-08) | CVE-2023-46809
CVE-2024-21890
CVE-2024-21891
CVE-2024-21892
CVE-2024-21896
CVE-2024-22017
CVE-2024-22019
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
expat security update (RHSA-2024:1615)
(Issued: 2024-04-02) | CVE-2023-52425
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
less security update (RHSA-2024:1610)
(Issued: 2024-04-02) | CVE-2022-48624
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
curl security and bug fix update (RHSA-2024:1601)
(Issued: 2024-04-02) | CVE-2023-28322
CVE-2023-38546
CVE-2023-46218
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
kernel security, bug fix, and enhancement update (RHSA-2024:1607)
(Issued: 2024-04-02) | CVE-2021-33631
CVE-2022-38096
CVE-2023-6546
CVE-2023-6931
CVE-2023-51042
CVE-2024-0565
CVE-2024-1086
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP23, 10.2.x SSP3 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
nodejs:18 security update (RHSA-2024:1510)
(Issued: 2024-03-26) | CVE-2023-46809
CVE-2024-21892
CVE-2024-22019
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
thunderbird security update (RHSA-2024:1494)
(Issued: 2024-03-25) | CVE-2023-5388
CVE-2024-0743
CVE-2024-1936
CVE-2024-2607
CVE-2024-2608
CVE-2024-2610
CVE-2024-2611
CVE-2024-2612
CVE-2024-2614
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
firefox security update (RHSA-2024:1484)
(Issued: 2024-03-25) | CVE-2023-5388
CVE-2024-0743
CVE-2024-2607
CVE-2024-2608
CVE-2024-2610
CVE-2024-2611
CVE-2024-2612
CVE-2024-2614
CVE-2024-2616
CVE-2024-29944
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
go-toolset:rhel8 security update (RHSA-2024:1472)
(Issued: 2024-03-21) | CVE-2024-1394
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
nodejs:16 security update (RHSA-2024:1444)
(Issued: 2024-03-20) | CVE-2023-44487
CVE-2024-22019
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
postgresql-jdbc security update (RHSA-2024:1435)
(Issued: 2024-03-20) | CVE-2024-1597
| Critical | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP24, 10.2 SSP3 or later
|
dnsmasq security update (RHSA-2024:1335)
(Issued: 2024-03-14) | CVE-2023-50387
CVE-2023-50868
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP22, 10.2.x SSP2 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
kernel security and bug fix update (RHSA-2024:1249)
(Issued: 2024-03-12) | CVE-2022-42896
CVE-2023-4921
CVE-2023-38409
CVE-2023-45871
CVE-2024-1086
CVE-2024-26602
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
opensc security update (RHSA-2024:0967)
(Issued: 2024-02-26) | CVE-2023-5992
| Medium | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.0 or later
|
unbound security update (RHSA-2024:0965)
(Issued: 2024-02-26) | CVE-2023-50387
CVE-2023-50868
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP22, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later
|
thunderbird security update (RHSA-2024:0964)
(Issued: 2024-02-26) | CVE-2024-1546
CVE-2024-1547
CVE-2024-1548
CVE-2024-1549
CVE-2024-1550
CVE-2024-1551
CVE-2024-1552
CVE-2024-1553
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
postgresql:13 security update (RHSA-2024:0975)
(Issued: 2024-02-26) | CVE-2024-0985
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Pending - Avaya Aura® Experience Portal: 8.x,
Resolution: Pending
|
firefox security update (RHSA-2024:0955)
(Issued: 2024-02-26) | CVE-2024-1546
CVE-2024-1547
CVE-2024-1548
CVE-2024-1549
CVE-2024-1550
CVE-2024-1551
CVE-2024-1552
CVE-2024-1553
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
go-toolset:rhel8 security update (RHSA-2024:0887)
(Issued: 2024-02-20) | CVE-2023-39326
CVE-2023-45285
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
oniguruma security update (RHSA-2024:0889)
(Issued: 2024-02-20) | CVE-2019-13224
CVE-2019-16163
CVE-2019-19012
CVE-2019-19203
CVE-2019-19204
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
mysql:8.0 security update (RHSA-2024:0894)
(Issued: 2024-02-20) | CVE-2022-4899
CVE-2023-21911
CVE-2023-21919
CVE-2023-21920
CVE-2023-21929
CVE-2023-21933
CVE-2023-21935
CVE-2023-21940
CVE-2023-21945
CVE-2023-21946
CVE-2023-21947
CVE-2023-21953
CVE-2023-21955
CVE-2023-21962
CVE-2023-21966
CVE-2023-21972
CVE-2023-21976
CVE-2023-21977
CVE-2023-21980
CVE-2023-21982
CVE-2023-22005
CVE-2023-22007
CVE-2023-22008
CVE-2023-22032
CVE-2023-22033
CVE-2023-22038
CVE-2023-22046
CVE-2023-22048
CVE-2023-22053
CVE-2023-22054
CVE-2023-22056
CVE-2023-22057
CVE-2023-22058
CVE-2023-22059
CVE-2023-22064
CVE-2023-22065
CVE-2023-22066
CVE-2023-22068
CVE-2023-22070
CVE-2023-22078
CVE-2023-22079
CVE-2023-22084
CVE-2023-22092
CVE-2023-22097
CVE-2023-22103
CVE-2023-22104
CVE-2023-22110
CVE-2023-22111
CVE-2023-22112
CVE-2023-22113
CVE-2023-22114
CVE-2023-22115
CVE-2024-20960
CVE-2024-20961
CVE-2024-20962
CVE-2024-20963
CVE-2024-20964
CVE-2024-20965
CVE-2024-20966
CVE-2024-20967
CVE-2024-20968
CVE-2024-20969
CVE-2024-20970
CVE-2024-20971
CVE-2024-20972
CVE-2024-20973
CVE-2024-20974
CVE-2024-20976
CVE-2024-20977
CVE-2024-20978
CVE-2024-20981
CVE-2024-20982
CVE-2024-20983
CVE-2024-20984
CVE-2024-20985
CVE-2024-20993
CVE-2024-21049
CVE-2024-21050
CVE-2024-21051
CVE-2024-21052
CVE-2024-21053
CVE-2024-21055
CVE-2024-21056
CVE-2024-21057
CVE-2024-21061
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
kernel security update (RHSA-2024:0897)
(Issued: 2024-02-20) | CVE-2022-3545
CVE-2022-41858
CVE-2023-1073
CVE-2023-1838
CVE-2023-2166
CVE-2023-2176
CVE-2023-4623
CVE-2023-4921
CVE-2023-5717
CVE-2023-6356
CVE-2023-6535
CVE-2023-6536
CVE-2023-6606
CVE-2023-6610
CVE-2023-6817
CVE-2023-40283
CVE-2023-45871
CVE-2023-46813
CVE-2024-0646
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP23, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
python-pillow security update (RHSA-2024:0857)
(Issued: 2024-02-19) | CVE-2023-50447
| Critical | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.0 or later
|
gimp:2.8 security update (RHSA-2024:0861)
(Issued: 2024-02-19) | CVE-2023-44442
CVE-2023-44444
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Pending
|
sudo security update (RHSA-2024:0811)
(Issued: 2024-02-14) | CVE-2023-28486
CVE-2023-28487
CVE-2023-42465
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
nss security update (RHSA-2024:0786)
(Issued: 2024-02-12) | CVE-2023-6135
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
libmaxminddb security update (RHSA-2024:0768)
(Issued: 2024-02-12) | CVE-2020-28241
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP7 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
tcpdump security update (RHSA-2024:0769)
(Issued: 2024-02-12) | CVE-2021-41043
| Medium | - Avaya CMS: R20.x,
Resolution: Install R21.0.0.0 or later - Avaya Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
linux-firmware security update (RHSA-2024:0753)
(Issued: 2024-02-09) | CVE-2023-20592
| Medium | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R21.0.0.0 or later - Avaya IP Office: 11.x,
Resolution: Install 11.1 FP3 SP2 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.0.1 or later
|
container-tools:rhel8 security update (RHSA-2024:0752)
(Issued: 2024-02-08) | CVE-2024-21626
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1 SSP21, 10.2.x SSP2 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
container-tools:4.0 security update (RHSA-2024:0748)
(Issued: 2024-02-08) | CVE-2023-39326
CVE-2023-45287
CVE-2024-21626
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1 SSP9, 10.2.0.0 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
rpm security update (RHSA-2024:0647)
(Issued: 2024-02-01) | CVE-2021-35937
CVE-2021-35938
CVE-2021-35939
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.2 SSP2 or later
|
gnutls security update (RHSA-2024:0627)
(Issued: 2024-01-31) | CVE-2024-0553
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
libssh security update (RHSA-2024:0628)
(Issued: 2024-01-31) | CVE-2023-48795
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
thunderbird security update (RHSA-2024:0609)
(Issued: 2024-01-30) | CVE-2024-0741
CVE-2024-0742
CVE-2024-0746
CVE-2024-0747
CVE-2024-0749
CVE-2024-0750
CVE-2024-0751
CVE-2024-0753
CVE-2024-0755
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
firefox security update (RHSA-2024:0608)
(Issued: 2024-01-30) | CVE-2024-0741
CVE-2024-0742
CVE-2024-0746
CVE-2024-0747
CVE-2024-0749
CVE-2024-0750
CVE-2024-0751
CVE-2024-0753
CVE-2024-0755
| High | - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
openssh security update (RHSA-2024:0606)
(Issued: 2024-01-30) | CVE-2023-48795
CVE-2023-51385
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP2 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP2 or later
|
tomcat security update (RHSA-2024:0539)
(Issued: 2024-01-29) | CVE-2023-46589
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1.3.0 or later
|
python-pillow security update (RHSA-2024:0345)
(Issued: 2024-01-23) | CVE-2023-44271
| High | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.0 or later
|
kernel security and bug fix update (RHSA-2024:0346)
(Issued: 2024-01-23) | CVE-2023-42753
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R20.0.1.1 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.2 or later
|
java-11-openjdk security update (RHSA-2024:0266)
(Issued: 2024-01-18) | CVE-2024-20918
CVE-2024-20919
CVE-2024-20921
CVE-2024-20926
CVE-2024-20945
CVE-2024-20952
| High | - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
java-17-openjdk security and bug fix update (RHSA-2024:0267)
(Issued: 2024-01-17) | CVE-2024-20918
CVE-2024-20919
CVE-2024-20921
CVE-2024-20932
CVE-2024-20945
CVE-2024-20952
| High | - Avaya CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later
|
java-1.8.0-openjdk security and bug fix update (RHSA-2024:0265)
(Issued: 2024-01-17) | CVE-2024-20918
CVE-2024-20919
CVE-2024-20921
CVE-2024-20926
CVE-2024-20945
CVE-2024-20952
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
java-1.8.0-openjdk security and bug fix update (RHSA-2024:0223)
(Issued: 2024-01-17) | CVE-2024-20918
CVE-2024-20919
CVE-2024-20921
CVE-2024-20926
CVE-2024-20945
CVE-2024-20952
| High | - Avaya Breeze: 3.x,
Resolution: Pending - Avaya CMS: R19.x,
Resolution: Install R20.0.1.1 or later - Avaya IP Office: 11.x,
Resolution: Pending - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.2 or later
|
java-11-openjdk security update (RHSA-2024:0232)
(Issued: 2024-01-17) | CVE-2024-20918
CVE-2024-20919
CVE-2024-20921
CVE-2024-20926
CVE-2024-20945
CVE-2024-20952
| High | - Avaya CMS: R19.x,
Resolution: Install R20.0.1.1 or later - Avaya Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.1.2.2 or later
|
python3 security update (RHSA-2024:0256)
(Issued: 2024-01-15) | CVE-2023-27043
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
sqlite security update (RHSA-2024:0253)
(Issued: 2024-01-15) | CVE-2023-7104
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
gnutls security update (RHSA-2024:0155)
(Issued: 2024-01-10) | CVE-2023-5981
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
python3 security update (RHSA-2024:0114)
(Issued: 2024-01-10) | CVE-2022-48560
CVE-2022-48564
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
libxml2 security update (RHSA-2024:0119)
(Issued: 2024-01-10) | CVE-2023-39615
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
pixman security update (RHSA-2024:0131)
(Issued: 2024-01-10) | CVE-2022-44638
| High | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® CMS: R20.x,
Resolution: Install R20.0.1.1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP21, 10.2.x SSP1 or later - Avaya Aura® Device Services: 10.x,
Resolution: Install 10.1.x.x SSP6 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates - Avaya Aura® Session Border Controller for Enterprise: 10.x,
Resolution: Install 10.2.1.0 or later - Avaya Aura® Session Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® System Manager: 10.x,
Resolution: Install 10.1 SSP22, 10.2 SSP1 or later
|
container-tools:4.0 security update (RHSA-2024:0121)
(Issued: 2024-01-10) | CVE-2022-2879
CVE-2022-2880
CVE-2022-27664
CVE-2022-41715
CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322
| High | - Avaya Aura® Communication Manager: 10.x,
Resolution: Install 10.1.x SSP9, 10.2.0.0 or later - Avaya Aura® Experience Portal: 8.x,
Resolution: Install the 8.x Latest Security Updates
|
virt:rhel and virt-devel:rhel security update (RHSA-2024:0135)
(Issued: 2024-01-10) | CVE-2023-3019
| Medium | - Avaya Aura® Application Enablement Services: 10.x,
Resolution: 10.1 SSP22, 10.2 SSP1 or later - Avaya Aura® Communication Manager: 10.x,
Resolution: 10.1 SSP21, 10.2 SSP1 or later
|
Avaya software-only products operate on general-purpose operating systems. Occasionally, vulnerabilities may be discovered in the underlying operating system or applications that come with the operating system. These vulnerabilities may not impact the software-only product directly but may threaten the integrity of the underlying platform.
In the event an affected package is installed, review the Avaya product software-only RPM updates documentation before following the mitigation actions provided by the operating system vendor. DO NOT install Security Service Packs (SSP) on software-only products. Failure to follow these requirements may result in system breakage and may impact support agreements.
Avaya strongly recommends following networking and security best practices by implementing firewalls, ACLs, physical security or other appropriate access restrictions. Though Avaya believes such restrictions should always be in place, risk to Avaya products and the surrounding network from this potential vulnerability may be mitigated by ensuring these practices are implemented until such time as an Avaya provided product update or the recommended Avaya action is applied. Further restrictions as deemed necessary based on the customer's security policies may be required during this interim period, but the System Product operating system or application should not be modified unless the change is approved by Avaya. Making changes that are not approved may void the Avaya product service contract.
All information is believed to be correct at the time of publication, is provided "as is", and is applicable only to product versions eligible for manufacturer support in accordance with Avaya Product Life Cycle Policy. Avaya LLC., on behalf itself and its subsidiaries and affiliates (hereinafter collectively referred to as "Avaya"), disclaims all warranties, either extras or implied, including but not limited to the warranties of merchantability and fitness for a particular purpose and furthermore, Avaya makes no representations or warranties that the steps recommended will eliminate security or virus threats to customers' systems. In no event shall Avaya be liable for any damages whatsoever arising out of or in connection with the information or recommended action provided herein, including direct, indirect, incidental, statutory , consequential damages, loss of business profits or special damages, even if Avaya has been advised of the possibility of such damages.
The information provided here does not affect the support agreements in place for Avaya products. Support for Avaya products continues to be executed as per existing agreements with Avaya.
© 2024 Avaya Inc. All Rights Reserved. All trademarks identifying Avaya products by the ® or ™ are registered trademarks or trademarks, respectively, of Avaya Inc. All other trademarks are the property of their respective owners.