Red Hat Product Errata RHSA-2025:0404 - Security Advisory
Issued:
2025-01-20
Updated:
2025-01-20

RHSA-2025:0404 - Security Advisory

Synopsis

Important: iperf3 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for iperf3 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.

Security Fix(es):

  • iperf: Denial of Service in iperf Due to Improper JSON Handling (CVE-2024-53580)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2333146 - CVE-2024-53580 iperf: Denial of Service in iperf Due to Improper JSON Handling

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
x86_64
iperf3-3.5-7.el8_8.1.i686.rpm SHA-256: a82ec65850edb3aaba32df3a8bfca2e5a6917cfa1063c31cbb82ca708362a471
iperf3-3.5-7.el8_8.1.x86_64.rpm SHA-256: 3f4544a55101c278639bbf2e87e511a5d6a869f80e4d08a685741c91587d21a5
iperf3-debuginfo-3.5-7.el8_8.1.i686.rpm SHA-256: 140691b977adfe0671650abcf4465c554539b60d4ddbf6ac448b797d68e71fb3
iperf3-debuginfo-3.5-7.el8_8.1.x86_64.rpm SHA-256: b2bf0b5f81b687e3a5f7b1c97b0244fa445705459ba502d5448b72d0bd7a2699
iperf3-debugsource-3.5-7.el8_8.1.i686.rpm SHA-256: 5dc41c14e13ad37eab54f261fb830f4a223466d185f4560574c125fcaf5f1e74
iperf3-debugsource-3.5-7.el8_8.1.x86_64.rpm SHA-256: 7e04c682c11ff36277fd61e13001d60e314e00272ee2a8644f5803d02ee17ae2

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
x86_64
iperf3-3.5-7.el8_8.1.i686.rpm SHA-256: a82ec65850edb3aaba32df3a8bfca2e5a6917cfa1063c31cbb82ca708362a471
iperf3-3.5-7.el8_8.1.x86_64.rpm SHA-256: 3f4544a55101c278639bbf2e87e511a5d6a869f80e4d08a685741c91587d21a5
iperf3-debuginfo-3.5-7.el8_8.1.i686.rpm SHA-256: 140691b977adfe0671650abcf4465c554539b60d4ddbf6ac448b797d68e71fb3
iperf3-debuginfo-3.5-7.el8_8.1.x86_64.rpm SHA-256: b2bf0b5f81b687e3a5f7b1c97b0244fa445705459ba502d5448b72d0bd7a2699
iperf3-debugsource-3.5-7.el8_8.1.i686.rpm SHA-256: 5dc41c14e13ad37eab54f261fb830f4a223466d185f4560574c125fcaf5f1e74
iperf3-debugsource-3.5-7.el8_8.1.x86_64.rpm SHA-256: 7e04c682c11ff36277fd61e13001d60e314e00272ee2a8644f5803d02ee17ae2

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
s390x
iperf3-3.5-7.el8_8.1.s390x.rpm SHA-256: a75e57228041411601f35a02e82c5045238ad5164b620d2ff781b37ce33894b6
iperf3-debuginfo-3.5-7.el8_8.1.s390x.rpm SHA-256: 9f81344c04fe7a82cae91f9298a397785eb302774c932128840d0b59668c3c02
iperf3-debugsource-3.5-7.el8_8.1.s390x.rpm SHA-256: 4c7d549a550f7408009c74dbdb4a1592fab3efd2790c0b409e9ca4b6c5359ace

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
ppc64le
iperf3-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 85c52a58f3f53fa6034153f984b9543335edb102899e397c6515910a6a66249e
iperf3-debuginfo-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 73e0c021908e424ea06bd44062668ed910603392ce341307ddfce561e23224d8
iperf3-debugsource-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 765b151c7d9fd4bfd9643502968aa14616b021b9b6222db9d34bffd597aa93a9

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
x86_64
iperf3-3.5-7.el8_8.1.i686.rpm SHA-256: a82ec65850edb3aaba32df3a8bfca2e5a6917cfa1063c31cbb82ca708362a471
iperf3-3.5-7.el8_8.1.x86_64.rpm SHA-256: 3f4544a55101c278639bbf2e87e511a5d6a869f80e4d08a685741c91587d21a5
iperf3-debuginfo-3.5-7.el8_8.1.i686.rpm SHA-256: 140691b977adfe0671650abcf4465c554539b60d4ddbf6ac448b797d68e71fb3
iperf3-debuginfo-3.5-7.el8_8.1.x86_64.rpm SHA-256: b2bf0b5f81b687e3a5f7b1c97b0244fa445705459ba502d5448b72d0bd7a2699
iperf3-debugsource-3.5-7.el8_8.1.i686.rpm SHA-256: 5dc41c14e13ad37eab54f261fb830f4a223466d185f4560574c125fcaf5f1e74
iperf3-debugsource-3.5-7.el8_8.1.x86_64.rpm SHA-256: 7e04c682c11ff36277fd61e13001d60e314e00272ee2a8644f5803d02ee17ae2

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
aarch64
iperf3-3.5-7.el8_8.1.aarch64.rpm SHA-256: cfa08f8b408b7fa540d4c2a6cf592c4c4b1812dd3cdcee8f8841e301b4f3e747
iperf3-debuginfo-3.5-7.el8_8.1.aarch64.rpm SHA-256: 7b77bdcaf74851aa481f7844b6072fd71e1e316590e578400efd6c1497bc122d
iperf3-debugsource-3.5-7.el8_8.1.aarch64.rpm SHA-256: 38f62ef1b59fb4678db6ea5d6bc95b13f328019d93e5d9668b8674843630be36

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
ppc64le
iperf3-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 85c52a58f3f53fa6034153f984b9543335edb102899e397c6515910a6a66249e
iperf3-debuginfo-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 73e0c021908e424ea06bd44062668ed910603392ce341307ddfce561e23224d8
iperf3-debugsource-3.5-7.el8_8.1.ppc64le.rpm SHA-256: 765b151c7d9fd4bfd9643502968aa14616b021b9b6222db9d34bffd597aa93a9

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
iperf3-3.5-7.el8_8.1.src.rpm SHA-256: 348b0916d256d72bf8009d8e246d18042e250ac167ee8559c46b5173fc7ead3e
x86_64
iperf3-3.5-7.el8_8.1.i686.rpm SHA-256: a82ec65850edb3aaba32df3a8bfca2e5a6917cfa1063c31cbb82ca708362a471
iperf3-3.5-7.el8_8.1.x86_64.rpm SHA-256: 3f4544a55101c278639bbf2e87e511a5d6a869f80e4d08a685741c91587d21a5
iperf3-debuginfo-3.5-7.el8_8.1.i686.rpm SHA-256: 140691b977adfe0671650abcf4465c554539b60d4ddbf6ac448b797d68e71fb3
iperf3-debuginfo-3.5-7.el8_8.1.x86_64.rpm SHA-256: b2bf0b5f81b687e3a5f7b1c97b0244fa445705459ba502d5448b72d0bd7a2699
iperf3-debugsource-3.5-7.el8_8.1.i686.rpm SHA-256: 5dc41c14e13ad37eab54f261fb830f4a223466d185f4560574c125fcaf5f1e74
iperf3-debugsource-3.5-7.el8_8.1.x86_64.rpm SHA-256: 7e04c682c11ff36277fd61e13001d60e314e00272ee2a8644f5803d02ee17ae2

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.