[ALSA-2022:9058] Important: prometheus-jmx-exporter security update
Type:
security
Severity:
important
Release date:
2022-12-16
Description:
Prometheus JMX Exporter is a JMX to Prometheus exporter: a collector that can be configured to scrape and expose MBeans of a JMX target. Security Fix(es): * SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch prometheus-jmx-exporter-openjdk11-0.12.0-9.el8_7.noarch.rpm 092595c3e3675725ca57c286ed2b02968305444ce9fe5f4f716da9c41776040a
noarch prometheus-jmx-exporter-openjdk8-0.12.0-9.el8_7.noarch.rpm 716f4872b3b42348e3f280dfdec7c8a494cab8538cf3676db28a51c120d64612
noarch prometheus-jmx-exporter-openjdk17-0.12.0-9.el8_7.noarch.rpm 9f16fd5ecb5b22aee02dfb06d9ba8e18f3fb1ab6648e4e07e0f9d89f61a06306
noarch prometheus-jmx-exporter-0.12.0-9.el8_7.noarch.rpm bb67c53ce5918db88c91dbf399fa57bdd2217245f96e037f6974503852055e5c
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.