Red Hat Product Errata RHSA-2025:0505 - Security Advisory
Issued:
2025-01-21
Updated:
2025-01-21

RHSA-2025:0505 - Security Advisory

Synopsis

Important: iperf3 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for iperf3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.

Security Fix(es):

  • iperf: Denial of Service in iperf Due to Improper JSON Handling (CVE-2024-53580)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x

Fixes

  • BZ - 2333146 - CVE-2024-53580 iperf: Denial of Service in iperf Due to Improper JSON Handling

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
x86_64
iperf3-3.9-11.el9_4.1.i686.rpm SHA-256: c19410155dec009c9536cb7480d6c5ac1556e26b7bca547f504c34e0094e9c15
iperf3-3.9-11.el9_4.1.x86_64.rpm SHA-256: f5f7742aa6df92bd4588497c9b84111fec1c07f4a1b225e3dbe020cb22e5b09e
iperf3-debuginfo-3.9-11.el9_4.1.i686.rpm SHA-256: 65761f7f35d00aa3eb87939572e88d3549ecbefd370e365e5a8f461e6707dd41
iperf3-debuginfo-3.9-11.el9_4.1.x86_64.rpm SHA-256: 27828ca2fe2d13ddcd28f6ce8b950538ccaf15681050cc5da7f939369814b8b5
iperf3-debugsource-3.9-11.el9_4.1.i686.rpm SHA-256: 2bdc087bbb13dcb61bda616a27b213974bc00bb389ed0aacff447224ad0cd616
iperf3-debugsource-3.9-11.el9_4.1.x86_64.rpm SHA-256: 232a194494385fc5d4809c30ff35902374511689af6fbdfd92b35011d1e3d478

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
x86_64
iperf3-3.9-11.el9_4.1.i686.rpm SHA-256: c19410155dec009c9536cb7480d6c5ac1556e26b7bca547f504c34e0094e9c15
iperf3-3.9-11.el9_4.1.x86_64.rpm SHA-256: f5f7742aa6df92bd4588497c9b84111fec1c07f4a1b225e3dbe020cb22e5b09e
iperf3-debuginfo-3.9-11.el9_4.1.i686.rpm SHA-256: 65761f7f35d00aa3eb87939572e88d3549ecbefd370e365e5a8f461e6707dd41
iperf3-debuginfo-3.9-11.el9_4.1.x86_64.rpm SHA-256: 27828ca2fe2d13ddcd28f6ce8b950538ccaf15681050cc5da7f939369814b8b5
iperf3-debugsource-3.9-11.el9_4.1.i686.rpm SHA-256: 2bdc087bbb13dcb61bda616a27b213974bc00bb389ed0aacff447224ad0cd616
iperf3-debugsource-3.9-11.el9_4.1.x86_64.rpm SHA-256: 232a194494385fc5d4809c30ff35902374511689af6fbdfd92b35011d1e3d478

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
s390x
iperf3-3.9-11.el9_4.1.s390x.rpm SHA-256: 1752008fbf0a27ba061816d0593fde82906dff572715809f01e336bbbdb9381e
iperf3-debuginfo-3.9-11.el9_4.1.s390x.rpm SHA-256: 8eeb424fd70f4799f62f7898745699a57f3c103d615e76d027485073c9e99007
iperf3-debugsource-3.9-11.el9_4.1.s390x.rpm SHA-256: c143fe11e7030e68d1e0520d2230564830ea674b8f0ed361fe56fa63ec4352ca

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
ppc64le
iperf3-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 0312cbc20f3edf71fc63ddd00551580cf7d3fb9c807645edf8d32114bf709eb0
iperf3-debuginfo-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 9396a33de49f119f91691ce5502c31922424027f17191032678a7ca65307d1e4
iperf3-debugsource-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 3c0fa8d86a6419d76b020cfff3c0b6347b0a888364155c53bc7abcbca4fe4932

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
aarch64
iperf3-3.9-11.el9_4.1.aarch64.rpm SHA-256: 7f414c265df2e841c4795ca993d491231f41ac248c5f382ad754634590630f09
iperf3-debuginfo-3.9-11.el9_4.1.aarch64.rpm SHA-256: e47048db98bdb258a7cdc6a03ae21dbea2617382a953847b50a81a2dfa14609e
iperf3-debugsource-3.9-11.el9_4.1.aarch64.rpm SHA-256: faac016f71cbff6bca9149e3fe5c23e95f1be0facf5ca54b882dee1e467f2a01

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
ppc64le
iperf3-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 0312cbc20f3edf71fc63ddd00551580cf7d3fb9c807645edf8d32114bf709eb0
iperf3-debuginfo-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 9396a33de49f119f91691ce5502c31922424027f17191032678a7ca65307d1e4
iperf3-debugsource-3.9-11.el9_4.1.ppc64le.rpm SHA-256: 3c0fa8d86a6419d76b020cfff3c0b6347b0a888364155c53bc7abcbca4fe4932

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
x86_64
iperf3-3.9-11.el9_4.1.i686.rpm SHA-256: c19410155dec009c9536cb7480d6c5ac1556e26b7bca547f504c34e0094e9c15
iperf3-3.9-11.el9_4.1.x86_64.rpm SHA-256: f5f7742aa6df92bd4588497c9b84111fec1c07f4a1b225e3dbe020cb22e5b09e
iperf3-debuginfo-3.9-11.el9_4.1.i686.rpm SHA-256: 65761f7f35d00aa3eb87939572e88d3549ecbefd370e365e5a8f461e6707dd41
iperf3-debuginfo-3.9-11.el9_4.1.x86_64.rpm SHA-256: 27828ca2fe2d13ddcd28f6ce8b950538ccaf15681050cc5da7f939369814b8b5
iperf3-debugsource-3.9-11.el9_4.1.i686.rpm SHA-256: 2bdc087bbb13dcb61bda616a27b213974bc00bb389ed0aacff447224ad0cd616
iperf3-debugsource-3.9-11.el9_4.1.x86_64.rpm SHA-256: 232a194494385fc5d4809c30ff35902374511689af6fbdfd92b35011d1e3d478

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
aarch64
iperf3-3.9-11.el9_4.1.aarch64.rpm SHA-256: 7f414c265df2e841c4795ca993d491231f41ac248c5f382ad754634590630f09
iperf3-debuginfo-3.9-11.el9_4.1.aarch64.rpm SHA-256: e47048db98bdb258a7cdc6a03ae21dbea2617382a953847b50a81a2dfa14609e
iperf3-debugsource-3.9-11.el9_4.1.aarch64.rpm SHA-256: faac016f71cbff6bca9149e3fe5c23e95f1be0facf5ca54b882dee1e467f2a01

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
iperf3-3.9-11.el9_4.1.src.rpm SHA-256: 53409bd49ef661a8328b4b0a6f70b7f401a7b08b75d25f856e835d285d365f6d
s390x
iperf3-3.9-11.el9_4.1.s390x.rpm SHA-256: 1752008fbf0a27ba061816d0593fde82906dff572715809f01e336bbbdb9381e
iperf3-debuginfo-3.9-11.el9_4.1.s390x.rpm SHA-256: 8eeb424fd70f4799f62f7898745699a57f3c103d615e76d027485073c9e99007
iperf3-debugsource-3.9-11.el9_4.1.s390x.rpm SHA-256: c143fe11e7030e68d1e0520d2230564830ea674b8f0ed361fe56fa63ec4352ca

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.