Issued:: 2025-01-15
Updated:: 2025-01-15

RHSA-2025:0327 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: tuned security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for tuned is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The tuned packages provide a service that tunes system settings according to a selected profile.

Security Fix(es):

tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux for SAP Solutions for x86_64 - Extended Update Support Extension 8.4 x86_64
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux for SAP Applications for x86_64 - Extended Update Support Extension 8.4 x86_64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
Red Hat Enterprise Linux for SAP Applications for Power LE - Update Services for SAP Solutions 8.4 ppc64le
Red Hat Enterprise Linux for SAP Solutions for Power LE - Update Services for SAP Solutions 8.4 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64
Red Hat Enterprise Linux for SAP Applications for x86_64 - Update Services for SAP Solutions 8.4 x86_64
Red Hat Enterprise Linux for SAP Solutions for x86_64 - Update Services for SAP Solutions 8.4 x86_64
Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4 x86_64
Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4 x86_64

Fixes

BZ - 2324541 - CVE-2024-52337 tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method

CVEs

CVE-2024-52337

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
tuned-2.20.0-1.el8_4.2.src.rpm	SHA-256: 60e38d36154d2cd97429746cc9b19257e00970b17a7f5d2b79843b814eb7e447
x86_64
tuned-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 659178e33fed4129574b4a324b707f11f0088b8a74b0b93ac3e5a06a03382c18
tuned-gtk-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 17d2a1a193987a27f7023f172909910868fd480786658af558f3baa1b19141b6
tuned-profiles-atomic-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 52589f0d9e1019d0061aa10a77ade0741ecbc6045b33d33c809b3aa85922776c
tuned-profiles-compat-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 4688a86dbb896895672c3dbb599389373a62a0b88baffbeb07d603a904e38ce9
tuned-profiles-cpu-partitioning-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: aaf8103a049ba57766434c60b02388d85d24fd050ccf2211670482ad3077d535
tuned-profiles-mssql-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 0dc659e8ad403cdf21e52d353c3d9084fd910ee2a7ab96142bd150f6ef2173f6
tuned-profiles-nfv-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 9e1bd1a41f24ac2545ffb17d329a7406c0efbe02a9ab47178e672ac728bcaecf
tuned-profiles-nfv-guest-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 6e986e9dd2537ff114d1f2b2b058e4162fdda714eeafd92c4250320ead09c60b
tuned-profiles-nfv-host-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 8ae2c301fd71e398de9e4aad1357bf2afff2f07a0e4962cff13ffddd40875a83
tuned-profiles-oracle-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 404ce11a2e223c505f7e78619d07c5ab833aacf29f063c4bc0da65dfcba9f0f8
tuned-profiles-realtime-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: de4b665de2cd0a3df2b2af34188f473277ccc259dfcd9dda9a601b14342608c0
tuned-profiles-realtime-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: de4b665de2cd0a3df2b2af34188f473277ccc259dfcd9dda9a601b14342608c0
tuned-utils-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: b23b4bf790cdcae596678b50c6c35554adb95a7215eeb2aa92790fbfe3012df2
tuned-utils-systemtap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 77ec90abf911598c53dda82da6fa3d6308fe24ef1a7368cf50d089d4e43eae7f

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
tuned-2.20.0-1.el8_4.2.src.rpm	SHA-256: 60e38d36154d2cd97429746cc9b19257e00970b17a7f5d2b79843b814eb7e447
x86_64
tuned-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 659178e33fed4129574b4a324b707f11f0088b8a74b0b93ac3e5a06a03382c18
tuned-gtk-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 17d2a1a193987a27f7023f172909910868fd480786658af558f3baa1b19141b6
tuned-profiles-atomic-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 52589f0d9e1019d0061aa10a77ade0741ecbc6045b33d33c809b3aa85922776c
tuned-profiles-compat-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 4688a86dbb896895672c3dbb599389373a62a0b88baffbeb07d603a904e38ce9
tuned-profiles-cpu-partitioning-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: aaf8103a049ba57766434c60b02388d85d24fd050ccf2211670482ad3077d535
tuned-profiles-mssql-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 0dc659e8ad403cdf21e52d353c3d9084fd910ee2a7ab96142bd150f6ef2173f6
tuned-profiles-oracle-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 404ce11a2e223c505f7e78619d07c5ab833aacf29f063c4bc0da65dfcba9f0f8
tuned-utils-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: b23b4bf790cdcae596678b50c6c35554adb95a7215eeb2aa92790fbfe3012df2
tuned-utils-systemtap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 77ec90abf911598c53dda82da6fa3d6308fe24ef1a7368cf50d089d4e43eae7f

Red Hat Enterprise Linux for SAP Solutions for x86_64 - Extended Update Support Extension 8.4

SRPM
x86_64
tuned-profiles-sap-hana-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: fe831f19eb5a0eed1c078775ea0edc5c5414e4af822ebca22644e58ad54c41c6

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
tuned-2.20.0-1.el8_4.2.src.rpm	SHA-256: 60e38d36154d2cd97429746cc9b19257e00970b17a7f5d2b79843b814eb7e447
x86_64
tuned-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 659178e33fed4129574b4a324b707f11f0088b8a74b0b93ac3e5a06a03382c18
tuned-gtk-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 17d2a1a193987a27f7023f172909910868fd480786658af558f3baa1b19141b6
tuned-profiles-atomic-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 52589f0d9e1019d0061aa10a77ade0741ecbc6045b33d33c809b3aa85922776c
tuned-profiles-compat-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 4688a86dbb896895672c3dbb599389373a62a0b88baffbeb07d603a904e38ce9
tuned-profiles-cpu-partitioning-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: aaf8103a049ba57766434c60b02388d85d24fd050ccf2211670482ad3077d535
tuned-profiles-mssql-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 0dc659e8ad403cdf21e52d353c3d9084fd910ee2a7ab96142bd150f6ef2173f6
tuned-profiles-oracle-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 404ce11a2e223c505f7e78619d07c5ab833aacf29f063c4bc0da65dfcba9f0f8
tuned-utils-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: b23b4bf790cdcae596678b50c6c35554adb95a7215eeb2aa92790fbfe3012df2
tuned-utils-systemtap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 77ec90abf911598c53dda82da6fa3d6308fe24ef1a7368cf50d089d4e43eae7f

Red Hat Enterprise Linux for SAP Applications for x86_64 - Extended Update Support Extension 8.4

SRPM
x86_64
tuned-profiles-sap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 422986d8f47d75d65a29f26cfc1884b26c046d467b57ea65ab20d264622eff37

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4

SRPM
tuned-2.20.0-1.el8_4.2.src.rpm	SHA-256: 60e38d36154d2cd97429746cc9b19257e00970b17a7f5d2b79843b814eb7e447
ppc64le
tuned-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 659178e33fed4129574b4a324b707f11f0088b8a74b0b93ac3e5a06a03382c18
tuned-gtk-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 17d2a1a193987a27f7023f172909910868fd480786658af558f3baa1b19141b6
tuned-profiles-atomic-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 52589f0d9e1019d0061aa10a77ade0741ecbc6045b33d33c809b3aa85922776c
tuned-profiles-compat-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 4688a86dbb896895672c3dbb599389373a62a0b88baffbeb07d603a904e38ce9
tuned-profiles-cpu-partitioning-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: aaf8103a049ba57766434c60b02388d85d24fd050ccf2211670482ad3077d535
tuned-profiles-mssql-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 0dc659e8ad403cdf21e52d353c3d9084fd910ee2a7ab96142bd150f6ef2173f6
tuned-profiles-oracle-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 404ce11a2e223c505f7e78619d07c5ab833aacf29f063c4bc0da65dfcba9f0f8
tuned-utils-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: b23b4bf790cdcae596678b50c6c35554adb95a7215eeb2aa92790fbfe3012df2
tuned-utils-systemtap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 77ec90abf911598c53dda82da6fa3d6308fe24ef1a7368cf50d089d4e43eae7f

Red Hat Enterprise Linux for SAP Applications for Power LE - Update Services for SAP Solutions 8.4

SRPM
ppc64le
tuned-profiles-sap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 422986d8f47d75d65a29f26cfc1884b26c046d467b57ea65ab20d264622eff37

Red Hat Enterprise Linux for SAP Solutions for Power LE - Update Services for SAP Solutions 8.4

SRPM
ppc64le
tuned-profiles-sap-hana-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: fe831f19eb5a0eed1c078775ea0edc5c5414e4af822ebca22644e58ad54c41c6

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4

SRPM
tuned-2.20.0-1.el8_4.2.src.rpm	SHA-256: 60e38d36154d2cd97429746cc9b19257e00970b17a7f5d2b79843b814eb7e447
x86_64
tuned-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 659178e33fed4129574b4a324b707f11f0088b8a74b0b93ac3e5a06a03382c18
tuned-gtk-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 17d2a1a193987a27f7023f172909910868fd480786658af558f3baa1b19141b6
tuned-profiles-atomic-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 52589f0d9e1019d0061aa10a77ade0741ecbc6045b33d33c809b3aa85922776c
tuned-profiles-compat-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 4688a86dbb896895672c3dbb599389373a62a0b88baffbeb07d603a904e38ce9
tuned-profiles-cpu-partitioning-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: aaf8103a049ba57766434c60b02388d85d24fd050ccf2211670482ad3077d535
tuned-profiles-mssql-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 0dc659e8ad403cdf21e52d353c3d9084fd910ee2a7ab96142bd150f6ef2173f6
tuned-profiles-oracle-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 404ce11a2e223c505f7e78619d07c5ab833aacf29f063c4bc0da65dfcba9f0f8
tuned-utils-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: b23b4bf790cdcae596678b50c6c35554adb95a7215eeb2aa92790fbfe3012df2
tuned-utils-systemtap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 77ec90abf911598c53dda82da6fa3d6308fe24ef1a7368cf50d089d4e43eae7f

Red Hat Enterprise Linux for SAP Applications for x86_64 - Update Services for SAP Solutions 8.4

SRPM
x86_64
tuned-profiles-sap-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 422986d8f47d75d65a29f26cfc1884b26c046d467b57ea65ab20d264622eff37

Red Hat Enterprise Linux for SAP Solutions for x86_64 - Update Services for SAP Solutions 8.4

SRPM
x86_64
tuned-profiles-sap-hana-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: fe831f19eb5a0eed1c078775ea0edc5c5414e4af822ebca22644e58ad54c41c6

Red Hat Enterprise Linux for Real Time - Telecommunications Update Service 8.4

SRPM
x86_64
tuned-profiles-realtime-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: de4b665de2cd0a3df2b2af34188f473277ccc259dfcd9dda9a601b14342608c0

Red Hat Enterprise Linux for Real Time for NFV - Telecommunications Update Service 8.4

SRPM
x86_64
tuned-profiles-nfv-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 9e1bd1a41f24ac2545ffb17d329a7406c0efbe02a9ab47178e672ac728bcaecf
tuned-profiles-nfv-guest-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 6e986e9dd2537ff114d1f2b2b058e4162fdda714eeafd92c4250320ead09c60b
tuned-profiles-nfv-host-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: 8ae2c301fd71e398de9e4aad1357bf2afff2f07a0e4962cff13ffddd40875a83
tuned-profiles-realtime-2.20.0-1.el8_4.2.noarch.rpm	SHA-256: de4b665de2cd0a3df2b2af34188f473277ccc259dfcd9dda9a601b14342608c0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation