keepalived-2.2.8-4.el9_5

エラータID: AXSA:2025-9635:02

Release date: 
Wednesday, February 12, 2025 - 21:21
Subject: 
keepalived-2.2.8-4.el9_5
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.

Security Fix(es):

* keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-41184
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.

Solution: 

Update packages.

CVEs: 
CVE-2024-41184
** DISPUTED ** In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
Additional Info: 

N/A

Download: 

SRPMS
  1. keepalived-2.2.8-4.el9_5.src.rpm
    MD5: deb5a00001773ed8ee6016e8f8a20117
    SHA-256: 04bbb4d8bad37c73cc9a3ef6bf5bbc49519656dabc5d37a9cee6884881484387
    Size: 1.16 MB

Asianux Server 9 for x86_64
  1. keepalived-2.2.8-4.el9_5.x86_64.rpm
    MD5: b28318cc1edf566bc1022e7f2b11a093
    SHA-256: cad7f98166fd82e315a4d9e828d7fa98804706b15c3494cf77be51dd4899404e
    Size: 563.00 kB