Описание
ELSA-2025-0917: keepalived security update (MODERATE)
[2.2.8-3]
- Validate vrrp ipset names for CVE-2024-41184 Resolves: RHEL-49557
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
keepalived
2.2.8-4.el9_5
Oracle Linux x86_64
keepalived
2.2.8-4.el9_5
Связанные CVE
Связанные уязвимости
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived th ...