Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-9178

Опубликовано: 27 июн. 2025
Источник: oracle-oval
Платформа: Oracle Linux 10

Описание

ELSA-2025-9178: kea security update (IMPORTANT)

[2.6.3-1]

  • New version 2.6.3
  • Fix for: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803
  • kea.conf: Remove /tmp/ from socket-name for existing configurations
  • kea.conf: Set pseudo-random password for default config to secure fresh install and allow CA startup without user intervention
  • kea.conf: Restrict directory permissions
  • Sync service files with upstream
  • Fix leases ownership when switching from root to kea user

[2.6.1-9]

  • Update location of fmf plans

[2.6.1-8]

  • Properly check valgrind arches

[2.6.1-7]

  • Use autoreconf more (fixes riscv64 build)

Обновленные пакеты

Oracle Linux 10

Oracle Linux aarch64

kea

2.6.3-1.el10_0

kea-doc

2.6.3-1.el10_0

kea-hooks

2.6.3-1.el10_0

kea-keama

2.6.3-1.el10_0

kea-libs

2.6.3-1.el10_0

Oracle Linux x86_64

kea

2.6.3-1.el10_0

kea-doc

2.6.3-1.el10_0

kea-hooks

2.6.3-1.el10_0

kea-keama

2.6.3-1.el10_0

kea-libs

2.6.3-1.el10_0

Связанные CVE

CVE-2025-32803
CVE-2025-32801
CVE-2025-32802

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2025-32803

CVSS3: 4
ubuntu
2 месяца назад

In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.

redhat логотип

CVE-2025-32803

CVSS3: 3.3
redhat
2 месяца назад

In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.

nvd логотип

CVE-2025-32803

CVSS3: 4
nvd
2 месяца назад

In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.

debian логотип

CVE-2025-32803

CVSS3: 4
debian
2 месяца назад

In some cases, Kea log files or lease files may be world-readable. Thi ...

github логотип

GHSA-prj7-2jhj-62fj

CVSS3: 4
github
2 месяца назад

In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.