Synopsis
Important: gvisor-tap-vsock security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
View affected systems
Topic
An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor and is used to provide networking for podman-machine virtual machines. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding.
Security Fix(es):
- golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Products
-
Red Hat Enterprise Linux for x86_64 9 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
-
Red Hat Enterprise Linux Server - AUS 9.4 x86_64
-
Red Hat Enterprise Linux for IBM z Systems 9 s390x
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
-
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
-
Red Hat Enterprise Linux for ARM 64 9 aarch64
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
-
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
-
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
Fixes
-
BZ - 2262921
- CVE-2024-1394 golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for x86_64 9
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
x86_64 |
gvisor-tap-vsock-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 4fab78270ff5b819d1f1bc90e7a2180ff9797fd562a1dd5172b6855d2c66a980 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: cf5869321e5257fb2417db38f4ece9a4c78f600a9c2234003bdcb7feb179b08e |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 75d1fb7f04e0118257202c724a2e412b237f6d34acc9a49f7904e87af6bbed70 |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
x86_64 |
gvisor-tap-vsock-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 4fab78270ff5b819d1f1bc90e7a2180ff9797fd562a1dd5172b6855d2c66a980 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: cf5869321e5257fb2417db38f4ece9a4c78f600a9c2234003bdcb7feb179b08e |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 75d1fb7f04e0118257202c724a2e412b237f6d34acc9a49f7904e87af6bbed70 |
Red Hat Enterprise Linux Server - AUS 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
x86_64 |
gvisor-tap-vsock-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 4fab78270ff5b819d1f1bc90e7a2180ff9797fd562a1dd5172b6855d2c66a980 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: cf5869321e5257fb2417db38f4ece9a4c78f600a9c2234003bdcb7feb179b08e |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 75d1fb7f04e0118257202c724a2e412b237f6d34acc9a49f7904e87af6bbed70 |
Red Hat Enterprise Linux for IBM z Systems 9
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
s390x |
gvisor-tap-vsock-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: 407651e5de7334701452e01019e106f75d1c5454dfa4528d27f37f6db4fd9a62 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: bae01a44a2b4901c08b1b6a97cea540a55b05ed0f4e68a7247c9692286b5f5a9 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: fffeeaf10ef362d1e642a43e97412569bd6139228b952efe6230274788d1679c |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
s390x |
gvisor-tap-vsock-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: 407651e5de7334701452e01019e106f75d1c5454dfa4528d27f37f6db4fd9a62 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: bae01a44a2b4901c08b1b6a97cea540a55b05ed0f4e68a7247c9692286b5f5a9 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: fffeeaf10ef362d1e642a43e97412569bd6139228b952efe6230274788d1679c |
Red Hat Enterprise Linux for Power, little endian 9
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
ppc64le |
gvisor-tap-vsock-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: dbbe57aadc6c98e32a09db4d3c99e1ba05d115e5673fc054ec5b9cc4a609fabd |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 22914d71d85a88e8d2270edfdd7e559058b3ae38b68ce7cfb23961b27861d8dc |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 832f4092a2a79b14099644c641a4b04834e11590952e0b87acbff8282274feda |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
ppc64le |
gvisor-tap-vsock-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: dbbe57aadc6c98e32a09db4d3c99e1ba05d115e5673fc054ec5b9cc4a609fabd |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 22914d71d85a88e8d2270edfdd7e559058b3ae38b68ce7cfb23961b27861d8dc |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 832f4092a2a79b14099644c641a4b04834e11590952e0b87acbff8282274feda |
Red Hat Enterprise Linux for ARM 64 9
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
aarch64 |
gvisor-tap-vsock-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: e88fca0688389b153e834995c2dac0e76a5281f0e4f13f066525c04d269a8fb5 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: 086a006fcee039ba04e968731ce78bfb66c481e5b04049839c5ebf005b870a83 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: f0679ac432b2c630ee3dcc52c157f0d8c355f5b20fa7bc17dfbfdf47605fe51c |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
aarch64 |
gvisor-tap-vsock-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: e88fca0688389b153e834995c2dac0e76a5281f0e4f13f066525c04d269a8fb5 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: 086a006fcee039ba04e968731ce78bfb66c481e5b04049839c5ebf005b870a83 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: f0679ac432b2c630ee3dcc52c157f0d8c355f5b20fa7bc17dfbfdf47605fe51c |
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
ppc64le |
gvisor-tap-vsock-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: dbbe57aadc6c98e32a09db4d3c99e1ba05d115e5673fc054ec5b9cc4a609fabd |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 22914d71d85a88e8d2270edfdd7e559058b3ae38b68ce7cfb23961b27861d8dc |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.ppc64le.rpm
|
SHA-256: 832f4092a2a79b14099644c641a4b04834e11590952e0b87acbff8282274feda |
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
x86_64 |
gvisor-tap-vsock-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 4fab78270ff5b819d1f1bc90e7a2180ff9797fd562a1dd5172b6855d2c66a980 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: cf5869321e5257fb2417db38f4ece9a4c78f600a9c2234003bdcb7feb179b08e |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.x86_64.rpm
|
SHA-256: 75d1fb7f04e0118257202c724a2e412b237f6d34acc9a49f7904e87af6bbed70 |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
aarch64 |
gvisor-tap-vsock-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: e88fca0688389b153e834995c2dac0e76a5281f0e4f13f066525c04d269a8fb5 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: 086a006fcee039ba04e968731ce78bfb66c481e5b04049839c5ebf005b870a83 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.aarch64.rpm
|
SHA-256: f0679ac432b2c630ee3dcc52c157f0d8c355f5b20fa7bc17dfbfdf47605fe51c |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4
SRPM |
gvisor-tap-vsock-0.7.3-4.el9_4.src.rpm
|
SHA-256: 339a321bbb3c5dacc2e80b434a6382c0a2c277f2dab186665fecc28381249ee5 |
s390x |
gvisor-tap-vsock-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: 407651e5de7334701452e01019e106f75d1c5454dfa4528d27f37f6db4fd9a62 |
gvisor-tap-vsock-debuginfo-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: bae01a44a2b4901c08b1b6a97cea540a55b05ed0f4e68a7247c9692286b5f5a9 |
gvisor-tap-vsock-debugsource-0.7.3-4.el9_4.s390x.rpm
|
SHA-256: fffeeaf10ef362d1e642a43e97412569bd6139228b952efe6230274788d1679c |