The p11-kit packages provide a mechanism to manage PKCS#11 modules. The p11-kit-trust subpackage includes a PKCS#11 trust module that provides certificate anchors and black lists based on configuration files. The following packages have been upgraded to a later upstream version: p11-kit . Security Fix: * p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers * p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c * p11-kit: out-of-bounds write in p11_rpc_buffer_get_byte_array_value function in rpc-message.c For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.