Описание
Security update for keepalived
This update for keepalived fixes the following issues:
- CVE-2024-41184: fixed integer overflow in vrrp_ipsets_handler (bsc#1228123)
Список пакетов
SUSE Linux Enterprise High Availability Extension 15 SP2
keepalived-2.0.19-150100.3.9.1
SUSE Linux Enterprise High Availability Extension 15 SP3
keepalived-2.0.19-150100.3.9.1
Ссылки
- Link for SUSE-SU-2024:3658-1
- E-Mail link for SUSE-SU-2024:3658-1
- SUSE Security Ratings
- SUSE Bug 1228123
- SUSE CVE CVE-2024-41184 page
Описание
** DISPUTED ** In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 15 SP2:keepalived-2.0.19-150100.3.9.1
SUSE Linux Enterprise High Availability Extension 15 SP3:keepalived-2.0.19-150100.3.9.1
Ссылки
- CVE-2024-41184
- SUSE Bug 1228123