socat-1.7.4.1-6.el9_6.1

エラータID: AXSA:2025-10632:02

Release date: 
Tuesday, July 29, 2025 - 17:44
Subject: 
socat-1.7.4.1-6.el9_6.1
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The socat utility establishes bi-directional byte streams and transfers data between them. The utility can establish streams between a large set of channels, such as files, pipes, devices, and sockets.

Security Fix(es):

* socat: arbitrary file overwrite via predictable /tmp directory (CVE-2024-54661)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-54661
readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.

Solution: 

Update packages.

CVEs: 
CVE-2024-54661
readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
Additional Info: 

N/A

Download: 

SRPMS
  1. socat-1.7.4.1-6.el9_6.1.src.rpm
    MD5: 563105aeef7328038edecad6b4020e33
    SHA-256: 794a3d7c68645a7392583b8a776f99e5fd13cd3f77b6c84a2d5b440bd093cc47
    Size: 647.65 kB

Asianux Server 9 for x86_64
  1. socat-1.7.4.1-6.el9_6.1.x86_64.rpm
    MD5: 9fb390faf550808cc51af3cab7e9c113
    SHA-256: db340d5b26e06ac8c34d5a188b07d7f056c643631b0cb41fa49035fd577806a9
    Size: 306.40 kB