红帽产品勘误 RHSA-2025:10353 - Security Advisory
发布:
2025-07-07
已更新:
2025-07-07

RHSA-2025:10353 - Security Advisory

概述

Moderate: socat security update

类型/严重性

Security Advisory: Moderate

Red Hat Insights 补丁分析

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for socat is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

The socat utility establishes bi-directional byte streams and transfers data between them. The utility can establish streams between a large set of channels, such as files, pipes, devices, and sockets.

Security Fix(es):

  • socat: arbitrary file overwrite via predictable /tmp directory (CVE-2024-54661)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

受影响的产品

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x

修复

  • BZ - 2330297 - CVE-2024-54661 socat: arbitrary file overwrite via predictable /tmp directory

Red Hat Enterprise Linux for x86_64 9

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
x86_64
socat-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 9ac9ded656ee3afbdbf3ac00f5f678101b3461df626998a7bd92f10546345396
socat-debuginfo-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: c21584a1d1dcabaca0fe1ce04e63d47ac091056ed00c7be4708478a1a9d3b3e6
socat-debugsource-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 249f56fd227b2b669d683b6a7fc364dd2ba3271e48a24c1880d4a166a945ecd0

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
x86_64
socat-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 9ac9ded656ee3afbdbf3ac00f5f678101b3461df626998a7bd92f10546345396
socat-debuginfo-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: c21584a1d1dcabaca0fe1ce04e63d47ac091056ed00c7be4708478a1a9d3b3e6
socat-debugsource-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 249f56fd227b2b669d683b6a7fc364dd2ba3271e48a24c1880d4a166a945ecd0

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
x86_64
socat-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 9ac9ded656ee3afbdbf3ac00f5f678101b3461df626998a7bd92f10546345396
socat-debuginfo-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: c21584a1d1dcabaca0fe1ce04e63d47ac091056ed00c7be4708478a1a9d3b3e6
socat-debugsource-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 249f56fd227b2b669d683b6a7fc364dd2ba3271e48a24c1880d4a166a945ecd0

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
s390x
socat-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: a253a1f53e95847ee879cda007ad471eeb4d4a6f01b526f5b819bcbf339cd12a
socat-debuginfo-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: 3288ebd279816ce0d83fb3c14c21baaed93a2f8f718025292d23ad9e90100aea
socat-debugsource-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: c037369674760de1c7ae625e31b591abcfe45cdf293476490e663d420b50ab4b

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
s390x
socat-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: a253a1f53e95847ee879cda007ad471eeb4d4a6f01b526f5b819bcbf339cd12a
socat-debuginfo-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: 3288ebd279816ce0d83fb3c14c21baaed93a2f8f718025292d23ad9e90100aea
socat-debugsource-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: c037369674760de1c7ae625e31b591abcfe45cdf293476490e663d420b50ab4b

Red Hat Enterprise Linux for Power, little endian 9

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
ppc64le
socat-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 93b2c5e9fb6987a6658763469ecce247fef2bed03a2b973249cf8134dda8a3c0
socat-debuginfo-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: d3ded395e540b42d49941bde6d6dc0bcbdb210b712efe38eac4935340111872f
socat-debugsource-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 147e4703ad21e8ed18adc96db568dc945f12b829c30d8c38cbebb2b05b232f85

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
ppc64le
socat-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 93b2c5e9fb6987a6658763469ecce247fef2bed03a2b973249cf8134dda8a3c0
socat-debuginfo-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: d3ded395e540b42d49941bde6d6dc0bcbdb210b712efe38eac4935340111872f
socat-debugsource-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 147e4703ad21e8ed18adc96db568dc945f12b829c30d8c38cbebb2b05b232f85

Red Hat Enterprise Linux for ARM 64 9

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
aarch64
socat-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 9f0e56543ef34d3e71895daa16b1b46412d98809ea41046d44c9e1be80fe7966
socat-debuginfo-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: e631ddcc5eaa803ec73c66b14df69c51ccba0d583ad96589f5c4bcf14b03104f
socat-debugsource-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 2b14ece456ee9480a0ebc01e72a314299b9ffda152548d1e2e7e62fa08e25002

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
aarch64
socat-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 9f0e56543ef34d3e71895daa16b1b46412d98809ea41046d44c9e1be80fe7966
socat-debuginfo-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: e631ddcc5eaa803ec73c66b14df69c51ccba0d583ad96589f5c4bcf14b03104f
socat-debugsource-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 2b14ece456ee9480a0ebc01e72a314299b9ffda152548d1e2e7e62fa08e25002

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
ppc64le
socat-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 93b2c5e9fb6987a6658763469ecce247fef2bed03a2b973249cf8134dda8a3c0
socat-debuginfo-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: d3ded395e540b42d49941bde6d6dc0bcbdb210b712efe38eac4935340111872f
socat-debugsource-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 147e4703ad21e8ed18adc96db568dc945f12b829c30d8c38cbebb2b05b232f85

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
x86_64
socat-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 9ac9ded656ee3afbdbf3ac00f5f678101b3461df626998a7bd92f10546345396
socat-debuginfo-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: c21584a1d1dcabaca0fe1ce04e63d47ac091056ed00c7be4708478a1a9d3b3e6
socat-debugsource-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 249f56fd227b2b669d683b6a7fc364dd2ba3271e48a24c1880d4a166a945ecd0

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
aarch64
socat-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 9f0e56543ef34d3e71895daa16b1b46412d98809ea41046d44c9e1be80fe7966
socat-debuginfo-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: e631ddcc5eaa803ec73c66b14df69c51ccba0d583ad96589f5c4bcf14b03104f
socat-debugsource-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 2b14ece456ee9480a0ebc01e72a314299b9ffda152548d1e2e7e62fa08e25002

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
s390x
socat-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: a253a1f53e95847ee879cda007ad471eeb4d4a6f01b526f5b819bcbf339cd12a
socat-debuginfo-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: 3288ebd279816ce0d83fb3c14c21baaed93a2f8f718025292d23ad9e90100aea
socat-debugsource-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: c037369674760de1c7ae625e31b591abcfe45cdf293476490e663d420b50ab4b

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
x86_64
socat-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 9ac9ded656ee3afbdbf3ac00f5f678101b3461df626998a7bd92f10546345396
socat-debuginfo-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: c21584a1d1dcabaca0fe1ce04e63d47ac091056ed00c7be4708478a1a9d3b3e6
socat-debugsource-1.7.4.1-6.el9_6.1.x86_64.rpm SHA-256: 249f56fd227b2b669d683b6a7fc364dd2ba3271e48a24c1880d4a166a945ecd0

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
aarch64
socat-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 9f0e56543ef34d3e71895daa16b1b46412d98809ea41046d44c9e1be80fe7966
socat-debuginfo-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: e631ddcc5eaa803ec73c66b14df69c51ccba0d583ad96589f5c4bcf14b03104f
socat-debugsource-1.7.4.1-6.el9_6.1.aarch64.rpm SHA-256: 2b14ece456ee9480a0ebc01e72a314299b9ffda152548d1e2e7e62fa08e25002

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
ppc64le
socat-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 93b2c5e9fb6987a6658763469ecce247fef2bed03a2b973249cf8134dda8a3c0
socat-debuginfo-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: d3ded395e540b42d49941bde6d6dc0bcbdb210b712efe38eac4935340111872f
socat-debugsource-1.7.4.1-6.el9_6.1.ppc64le.rpm SHA-256: 147e4703ad21e8ed18adc96db568dc945f12b829c30d8c38cbebb2b05b232f85

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6

SRPM
socat-1.7.4.1-6.el9_6.1.src.rpm SHA-256: cc4dafb6691824cae1db6f8c99baba2e9af74fdab06334f14558272cb3e92832
s390x
socat-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: a253a1f53e95847ee879cda007ad471eeb4d4a6f01b526f5b819bcbf339cd12a
socat-debuginfo-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: 3288ebd279816ce0d83fb3c14c21baaed93a2f8f718025292d23ad9e90100aea
socat-debugsource-1.7.4.1-6.el9_6.1.s390x.rpm SHA-256: c037369674760de1c7ae625e31b591abcfe45cdf293476490e663d420b50ab4b

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/