{ "schema_version": "1.7.0", "id": "RHSA-2025:9838", "related": [], "upstream": [ "CVE-2023-50471", "CVE-2023-50472", "CVE-2024-4340", "CVE-2024-31755", "CVE-2025-46727" ], "published": "2025-06-27T10:05:49Z", "modified": "2026-06-03T10:15:10Z", "summary": "Red Hat Security Advisory: Satellite 6.15.5.3 Async Update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "affected": [ { "package": { "name": "cjson", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/cjson" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "cjson-debuginfo", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/cjson-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "cjson-debugsource", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/cjson-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "cjson", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/cjson" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "cjson-debuginfo", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/cjson-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "cjson-debugsource", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/cjson-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.7.18-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python-sqlparse", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/python-sqlparse" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.5.0-1.el8pc" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python3.11-sqlparse", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/python3.11-sqlparse" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.5.0-1.el8pc" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python-sqlparse", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/python-sqlparse" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.5.0-1.el8pc" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python3.11-sqlparse", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/python3.11-sqlparse" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:0.5.0-1.el8pc" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "rubygem-rack", "ecosystem": "Red Hat:satellite_capsule:6.15::el8", "purl": "pkg:rpm/redhat/rubygem-rack" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.2.14-1.el8sat" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "rubygem-rack", "ecosystem": "Red Hat:satellite:6.15::el8", "purl": "pkg:rpm/redhat/rubygem-rack" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.2.14-1.el8sat" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2025:9838" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "type": "ARTICLE", "url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254641" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254643" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277268" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278038" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364966" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_9838.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-50471" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-50471" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50471" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-50472" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-50472" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50472" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-4340" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-4340" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4340" }, { "type": "ADVISORY", "url": "https://github.com/advisories/GHSA-2m57-hf25-phgg" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2024-31755" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2024-31755" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-31755" }, { "type": "ARTICLE", "url": "https://github.com/DaveGamble/cJSON/issues/839" }, { "type": "ADVISORY", "url": "https://github.com/advisories/GHSA-5g69-hr8r-x577" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2025-46727" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2025-46727" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-46727" }, { "type": "ARTICLE", "url": "https://github.com/rack/rack/commit/2bb5263b464b65ba4b648996a579dbd180d2b712" }, { "type": "ARTICLE", "url": "https://github.com/rack/rack/commit/3f5a4249118d09d199fe480466c8c6717e43b6e3" }, { "type": "ARTICLE", "url": "https://github.com/rack/rack/commit/cd6b70a1f2a1016b73dc906f924869f4902c2d74" }, { "type": "ARTICLE", "url": "https://github.com/rack/rack/security/advisories/GHSA-gjh7-p2fx-99vx" } ] }