VMware Horizon

  • Updated Horizon Client to version 2203 8.5.0-19586897

Teradici PCoIP Client

  • Updated Teradici PCoIP Ultra client to version 22.04.

Chromium

  • Fixed Chromium browser security issues:

    CVE-2022-1641, CVE-2022-1640,
    CVE-2022-1639, CVE-2022-1638, CVE-2022-1637, CVE-2022-1636, CVE-2022-1635,
    CVE-2022-1634, CVE-2022-1633, CVE-2022-1501, CVE-2022-1500, CVE-2022-1499,
    CVE-2022-1498, CVE-2022-1497, CVE-2022-1496, CVE-2022-1495, CVE-2022-1494,
    CVE-2022-1493, CVE-2022-1492, CVE-2022-1491, CVE-2022-1490, CVE-2022-1489,
    CVE-2022-1488, CVE-2022-1487, CVE-2022-1486, CVE-2022-1485, CVE-2022-1484,
    CVE-2022-1483, CVE-2022-1482, CVE-2022-1481, CVE-2022-1480, CVE-2022-1479,
    CVE-2022-1478, CVE-2022-1477, CVE-2022-1314, CVE-2022-1313, CVE-2022-1312,
    CVE-2022-1311, CVE-2022-1310, CVE-2022-1309, CVE-2022-1308, CVE-2022-1307,
    CVE-2022-1306, CVE-2022-1305, and CVE-2022-1364

  • Updated Chromium browser to version 101.0.4951.64

Firefox

  • Updated Mozilla Firefox to version 91.9.0 ESR
  • Fixes for mfsa2022-17, also known as
    CVE-2022-29914, CVE-2022-29909, CVE-2022-29916,
    CVE-2022-29911, CVE-2022-29912, CVE-2022-29917.
  • Fixes for mfsa2022-14, also known as
    CVE-2022-1097, CVE-2022-28281, CVE-2022-1196, CVE-2022-28282,
    CVE-2022-28285, CVE-2022-28286, CVE-2022-24713, CVE-2022-28289.
  • Fixes for mfsa2022-11, also known as
    CVE-2022-26383, CVE-2022-26384, CVE-2022-26387,
    CVE-2022-26381, CVE-2022-26386.

Base system

  • Fixed curl security issues:

    CVE-2022-2777, CVE-2022-30115, CVE-2022-27782,
    CVE-2022-27781, CVE-2022-27780, CVE-2022-27779,
    CVE-2022-27778, CVE-2022-27775, CVE-2022-27774, CVE-2022-22576

  • Fixed ghostscript security issue CVE-2019-25059.
  • Fixed libsdl1.2 security issue CVE-2021-33657.
  • Fixed libsepol security issues CVE-2021-36087, CVE-2021-36086, CVE-2021-36085, and CVE-2021-36084.
  • Fixed bash security issue CVE-2019-18276.
  • Fixed zulu8-ca security issues:

    CVE-2022-21426, CVE-2022-21434, CVE-2022-21443,
    CVE-2022-21476, CVE-2022-21496, and CVE-2018-25032

  • Fixed rsyslog security issue CVE-2022-24903.
  • Fixed mysql-5.7 security issues:

    CVE-2022-21460, CVE-2022-21454, CVE-2022-21451,
    CVE-2022-21444, CVE-2022-21427, and CVE-2022-21417

  • Fixed sqlite3 security issue CVE-2021-36690.
  • Fixed openssl1.0 security issue CVE-2022-1292.
  • Fixed openssl security issue CVE-2022-1292.
  • Fixed dbus security issue CVE-2020-35512.
  • Fixed nss security issue CVE-2020-25648.
  • Fixed dnsmasq security issue CVE-2022-0934.
  • Fixed cifs-utils security issues CVE-2022-29869 and CVE-2022-27239.
  • Fixed libxml2 security issue CVE-2022-29824.
  • Fixed cifs-utils security issues CVE-2022-29869 and CVE-2022-27239.
  • Fixed openldap security issue CVE-2022-29155.
  • Fixed pcre3 security issues CVE-2020-14155 and CVE-2019-20838.
  • Fixed tiff security issues:

    CVE-2022-0891, CVE-2022-0865, CVE-2022-0562,
    CVE-2022-0561, and CVE-2020-35522

  • Updated Intel microcode to version 20220510.
  • Updated AMD microcode to version from 20220408.
  • Fixed security issue CVE-2022-21151.
  • Fixed sshd security issue CVE-2002-20001 (Denial of Service).
  • Added new registry key to prevent D(HE)ater CVE-2002-20001 DoS attacks:

    ParameterDisable Diffie Hellman key exchange algorithms
    Registrynetwork.ssh_server.disable_dhe_kexalgorithms
    Typebool
    Valueenabled / disabled 
  • Fixed Nvidia security issues CVE-2022-28181, CVE-2022-28182, CVE-2022-28183, and CVE-2022-28184.