Issued:: 2025-02-04
Updated:: 2025-02-04

RHSA-2025:0917 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: keepalived security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for keepalived is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.

Security Fix(es):

keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 9 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

BZ - 2298532 - CVE-2024-41184 keepalived: Integer overflow vulnerability in vrrp_ipsets_handler

CVEs

CVE-2024-41184

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
x86_64
keepalived-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 8c3811581657c94adadee568e99e9fafe71eed7ea2a18305f7382ee93b915148
keepalived-debuginfo-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 419b87b1668ac530d9fa703f2b61c5d6cfd45a0b9980a282558d882825f616ea
keepalived-debugsource-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 2d1636b97b03ba05710b1542676c342fd55ad83537219b4fcdf4e6321622416c

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
x86_64
keepalived-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 8c3811581657c94adadee568e99e9fafe71eed7ea2a18305f7382ee93b915148
keepalived-debuginfo-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 419b87b1668ac530d9fa703f2b61c5d6cfd45a0b9980a282558d882825f616ea
keepalived-debugsource-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 2d1636b97b03ba05710b1542676c342fd55ad83537219b4fcdf4e6321622416c

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
x86_64
keepalived-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 8c3811581657c94adadee568e99e9fafe71eed7ea2a18305f7382ee93b915148
keepalived-debuginfo-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 419b87b1668ac530d9fa703f2b61c5d6cfd45a0b9980a282558d882825f616ea
keepalived-debugsource-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 2d1636b97b03ba05710b1542676c342fd55ad83537219b4fcdf4e6321622416c

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
s390x
keepalived-2.2.8-4.el9_5.s390x.rpm	SHA-256: 4173240696c0e79cf1f439073781442910e92e4ac44107755ae72b838490ce47
keepalived-debuginfo-2.2.8-4.el9_5.s390x.rpm	SHA-256: f48a2980c42729884748e82a8ad1d2ee7cb6a9826cc5a809abc642143e59330b
keepalived-debugsource-2.2.8-4.el9_5.s390x.rpm	SHA-256: 99453f9258c434ab9aa4bcc23abc3d7c950508fd972cadf55cd12a4cd273e27d

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
s390x
keepalived-2.2.8-4.el9_5.s390x.rpm	SHA-256: 4173240696c0e79cf1f439073781442910e92e4ac44107755ae72b838490ce47
keepalived-debuginfo-2.2.8-4.el9_5.s390x.rpm	SHA-256: f48a2980c42729884748e82a8ad1d2ee7cb6a9826cc5a809abc642143e59330b
keepalived-debugsource-2.2.8-4.el9_5.s390x.rpm	SHA-256: 99453f9258c434ab9aa4bcc23abc3d7c950508fd972cadf55cd12a4cd273e27d

Red Hat Enterprise Linux for Power, little endian 9

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
ppc64le
keepalived-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: 73e990ca7be1ae8818f94afb618b2851b6e90aa4b038d2bfcc662860e6c4ea35
keepalived-debuginfo-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: bd27c65e87baf3577685756b9b197e1c89b41e245d2994fd7cda9fa2bd6e44cc
keepalived-debugsource-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: b93e522270dfe2fd2b575e6314c542e3ee3ce65f1b28fc5c235566116402373f

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
ppc64le
keepalived-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: 73e990ca7be1ae8818f94afb618b2851b6e90aa4b038d2bfcc662860e6c4ea35
keepalived-debuginfo-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: bd27c65e87baf3577685756b9b197e1c89b41e245d2994fd7cda9fa2bd6e44cc
keepalived-debugsource-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: b93e522270dfe2fd2b575e6314c542e3ee3ce65f1b28fc5c235566116402373f

Red Hat Enterprise Linux for ARM 64 9

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
aarch64
keepalived-2.2.8-4.el9_5.aarch64.rpm	SHA-256: aaf23571ae561ae763aaccba915a5e8389ffddcd417be3b4ec220fe2c10847f9
keepalived-debuginfo-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 894ead9a7f2ea973521a377fe5b2fa726dd3fb88d1d24acea9b9379b6187d83a
keepalived-debugsource-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 3922175dc0e1e7e9ebc58626d4425ceb4335fd58389735b6f5c4ea8789d7bad5

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
aarch64
keepalived-2.2.8-4.el9_5.aarch64.rpm	SHA-256: aaf23571ae561ae763aaccba915a5e8389ffddcd417be3b4ec220fe2c10847f9
keepalived-debuginfo-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 894ead9a7f2ea973521a377fe5b2fa726dd3fb88d1d24acea9b9379b6187d83a
keepalived-debugsource-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 3922175dc0e1e7e9ebc58626d4425ceb4335fd58389735b6f5c4ea8789d7bad5

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
ppc64le
keepalived-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: 73e990ca7be1ae8818f94afb618b2851b6e90aa4b038d2bfcc662860e6c4ea35
keepalived-debuginfo-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: bd27c65e87baf3577685756b9b197e1c89b41e245d2994fd7cda9fa2bd6e44cc
keepalived-debugsource-2.2.8-4.el9_5.ppc64le.rpm	SHA-256: b93e522270dfe2fd2b575e6314c542e3ee3ce65f1b28fc5c235566116402373f

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
x86_64
keepalived-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 8c3811581657c94adadee568e99e9fafe71eed7ea2a18305f7382ee93b915148
keepalived-debuginfo-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 419b87b1668ac530d9fa703f2b61c5d6cfd45a0b9980a282558d882825f616ea
keepalived-debugsource-2.2.8-4.el9_5.x86_64.rpm	SHA-256: 2d1636b97b03ba05710b1542676c342fd55ad83537219b4fcdf4e6321622416c

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
aarch64
keepalived-2.2.8-4.el9_5.aarch64.rpm	SHA-256: aaf23571ae561ae763aaccba915a5e8389ffddcd417be3b4ec220fe2c10847f9
keepalived-debuginfo-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 894ead9a7f2ea973521a377fe5b2fa726dd3fb88d1d24acea9b9379b6187d83a
keepalived-debugsource-2.2.8-4.el9_5.aarch64.rpm	SHA-256: 3922175dc0e1e7e9ebc58626d4425ceb4335fd58389735b6f5c4ea8789d7bad5

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
keepalived-2.2.8-4.el9_5.src.rpm	SHA-256: e7df90a943fd2c61703448fed9fc94c215b24612f2201343c4782ac3e1f38983
s390x
keepalived-2.2.8-4.el9_5.s390x.rpm	SHA-256: 4173240696c0e79cf1f439073781442910e92e4ac44107755ae72b838490ce47
keepalived-debuginfo-2.2.8-4.el9_5.s390x.rpm	SHA-256: f48a2980c42729884748e82a8ad1d2ee7cb6a9826cc5a809abc642143e59330b
keepalived-debugsource-2.2.8-4.el9_5.s390x.rpm	SHA-256: 99453f9258c434ab9aa4bcc23abc3d7c950508fd972cadf55cd12a4cd273e27d

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation