Red Hat Product Errata RHSA-2025:0440 - Security Advisory
Issued:
2025-01-20
Updated:
2025-01-20

RHSA-2025:0440 - Security Advisory

Synopsis

Important: iperf3 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for iperf3 is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.

Security Fix(es):

  • iperf: Denial of Service in iperf Due to Improper JSON Handling (CVE-2024-53580)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x

Fixes

  • BZ - 2333146 - CVE-2024-53580 iperf: Denial of Service in iperf Due to Improper JSON Handling

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
x86_64
iperf3-3.9-10.el9_2.1.i686.rpm SHA-256: f764c10b56bc023caa0088357662844cdfe30e71653e2006a84b48c6f7c0e4e0
iperf3-3.9-10.el9_2.1.x86_64.rpm SHA-256: a518d81b2cfd3c313cabbd5abff2f9ec43fac634dbe376553f3352eb5c5472de
iperf3-debuginfo-3.9-10.el9_2.1.i686.rpm SHA-256: b63993824ac35fd97c2bf5956332b4f9bd565837914ca145011d81e9adb6565d
iperf3-debuginfo-3.9-10.el9_2.1.x86_64.rpm SHA-256: 2c77341b06fa6b3104bf9f8424af1ce4886c755428a8643326a9a3ac2db725c9
iperf3-debugsource-3.9-10.el9_2.1.i686.rpm SHA-256: 9c797b2cb12f83898c1c80dcbda35a47824c3476d9dfaaf4f1a7e63d97f9d13c
iperf3-debugsource-3.9-10.el9_2.1.x86_64.rpm SHA-256: 61f2140257d3d24e661fb6ea78d2b8d5b1afb52ca9d515cd841b8dfb797f67e0

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
x86_64
iperf3-3.9-10.el9_2.1.i686.rpm SHA-256: f764c10b56bc023caa0088357662844cdfe30e71653e2006a84b48c6f7c0e4e0
iperf3-3.9-10.el9_2.1.x86_64.rpm SHA-256: a518d81b2cfd3c313cabbd5abff2f9ec43fac634dbe376553f3352eb5c5472de
iperf3-debuginfo-3.9-10.el9_2.1.i686.rpm SHA-256: b63993824ac35fd97c2bf5956332b4f9bd565837914ca145011d81e9adb6565d
iperf3-debuginfo-3.9-10.el9_2.1.x86_64.rpm SHA-256: 2c77341b06fa6b3104bf9f8424af1ce4886c755428a8643326a9a3ac2db725c9
iperf3-debugsource-3.9-10.el9_2.1.i686.rpm SHA-256: 9c797b2cb12f83898c1c80dcbda35a47824c3476d9dfaaf4f1a7e63d97f9d13c
iperf3-debugsource-3.9-10.el9_2.1.x86_64.rpm SHA-256: 61f2140257d3d24e661fb6ea78d2b8d5b1afb52ca9d515cd841b8dfb797f67e0

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
s390x
iperf3-3.9-10.el9_2.1.s390x.rpm SHA-256: 5dcd53eb15d9a35fbd96c5ab244c3678ad9da3ab8ee1cb1c995fd9c10442290e
iperf3-debuginfo-3.9-10.el9_2.1.s390x.rpm SHA-256: 8ff3c217fad14aa121d6edf3f2a72dd42f957ae828b48eababad14e7ce6d99b1
iperf3-debugsource-3.9-10.el9_2.1.s390x.rpm SHA-256: 68b5a011eab07ac4849583144a4759f232589d6542b2325586d1415b8fc019cd

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
ppc64le
iperf3-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 3727d5bff4dcdad6416e51d345536575908b2740d64e23cd0cc3cdc306e4132b
iperf3-debuginfo-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 1f3d1fb4b0fe893fa4765d0a747ccc6fe57b99a992be4e392c66bac6623de360
iperf3-debugsource-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 4981b02e0d5fd7896629c290265bb550a2b81919e235cc20f3cb4b33cbad74a0

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
aarch64
iperf3-3.9-10.el9_2.1.aarch64.rpm SHA-256: c878736cb30167d1550be95ebfd78182989eb1d28e1357481e78c8022719d6cd
iperf3-debuginfo-3.9-10.el9_2.1.aarch64.rpm SHA-256: cce9a7113cd56bdaf1ea0d9d5ae41a69efe3c57933fc93ed6be5ebfa00506e46
iperf3-debugsource-3.9-10.el9_2.1.aarch64.rpm SHA-256: 3f94824cd1b1d2a53e440be8ca92badd963c0b1230572f0b57e66deb3320092c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
ppc64le
iperf3-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 3727d5bff4dcdad6416e51d345536575908b2740d64e23cd0cc3cdc306e4132b
iperf3-debuginfo-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 1f3d1fb4b0fe893fa4765d0a747ccc6fe57b99a992be4e392c66bac6623de360
iperf3-debugsource-3.9-10.el9_2.1.ppc64le.rpm SHA-256: 4981b02e0d5fd7896629c290265bb550a2b81919e235cc20f3cb4b33cbad74a0

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
x86_64
iperf3-3.9-10.el9_2.1.i686.rpm SHA-256: f764c10b56bc023caa0088357662844cdfe30e71653e2006a84b48c6f7c0e4e0
iperf3-3.9-10.el9_2.1.x86_64.rpm SHA-256: a518d81b2cfd3c313cabbd5abff2f9ec43fac634dbe376553f3352eb5c5472de
iperf3-debuginfo-3.9-10.el9_2.1.i686.rpm SHA-256: b63993824ac35fd97c2bf5956332b4f9bd565837914ca145011d81e9adb6565d
iperf3-debuginfo-3.9-10.el9_2.1.x86_64.rpm SHA-256: 2c77341b06fa6b3104bf9f8424af1ce4886c755428a8643326a9a3ac2db725c9
iperf3-debugsource-3.9-10.el9_2.1.i686.rpm SHA-256: 9c797b2cb12f83898c1c80dcbda35a47824c3476d9dfaaf4f1a7e63d97f9d13c
iperf3-debugsource-3.9-10.el9_2.1.x86_64.rpm SHA-256: 61f2140257d3d24e661fb6ea78d2b8d5b1afb52ca9d515cd841b8dfb797f67e0

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
aarch64
iperf3-3.9-10.el9_2.1.aarch64.rpm SHA-256: c878736cb30167d1550be95ebfd78182989eb1d28e1357481e78c8022719d6cd
iperf3-debuginfo-3.9-10.el9_2.1.aarch64.rpm SHA-256: cce9a7113cd56bdaf1ea0d9d5ae41a69efe3c57933fc93ed6be5ebfa00506e46
iperf3-debugsource-3.9-10.el9_2.1.aarch64.rpm SHA-256: 3f94824cd1b1d2a53e440be8ca92badd963c0b1230572f0b57e66deb3320092c

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
iperf3-3.9-10.el9_2.1.src.rpm SHA-256: e0274383f063b8152e55c6d2fe79a3be7f85a4a2e103f40a2e1780f7a6d3e0c1
s390x
iperf3-3.9-10.el9_2.1.s390x.rpm SHA-256: 5dcd53eb15d9a35fbd96c5ab244c3678ad9da3ab8ee1cb1c995fd9c10442290e
iperf3-debuginfo-3.9-10.el9_2.1.s390x.rpm SHA-256: 8ff3c217fad14aa121d6edf3f2a72dd42f957ae828b48eababad14e7ce6d99b1
iperf3-debugsource-3.9-10.el9_2.1.s390x.rpm SHA-256: 68b5a011eab07ac4849583144a4759f232589d6542b2325586d1415b8fc019cd

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.