keepalived-2.1.5-10.el8_10

エラータID: AXSA:2025-9597:01

Release date: 
Thursday, January 30, 2025 - 15:16
Subject: 
keepalived-2.1.5-10.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.

Security Fix(es):

* keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-41184
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.

Solution: 

Update packages.

CVEs: 
CVE-2024-41184
** DISPUTED ** In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
Additional Info: 

N/A

Download: 

SRPMS
  1. keepalived-2.1.5-10.el8_10.src.rpm
    MD5: a7cab59075bc0537512189f2f8bee962
    SHA-256: 4514c0060dfbe20734ff45d72e0b6d8c0b2293a90f68cc7e8e08583d06535b9b
    Size: 1.06 MB

Asianux Server 8 for x86_64
  1. keepalived-2.1.5-10.el8_10.x86_64.rpm
    MD5: 9da26447a9b28e272cb5a324e711bf21
    SHA-256: a3d97089107b363173bce70d342235efa98e37eb93c6ba283bd58ad6a80374f6
    Size: 535.80 kB