红帽产品勘误 RHSA-2025:14592 - Security Advisory
发布:
2025-08-26
已更新:
2025-08-26

RHSA-2025:14592 - Security Advisory

概述

Important: aide security update

类型/严重性

Security Advisory: Important

Red Hat Lightspeed patch analysis

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for aide is now available for Red Hat Enterprise Linux 10.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

Advanced Intrusion Detection Environment (AIDE) is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions.

Security Fix(es):

  • aide: improper output neutralization enables bypassing (CVE-2025-54389)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

受影响的产品

  • Red Hat Enterprise Linux for x86_64 10 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 10 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x
  • Red Hat Enterprise Linux for Power, little endian 10 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le
  • Red Hat Enterprise Linux for ARM 64 10 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x
  • Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le
  • Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64

修复

  • BZ - 2388019 - CVE-2025-54389 aide: improper output neutralization enables bypassing

Red Hat Enterprise Linux for x86_64 10

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
x86_64
aide-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: c75a26011675a9da1e4b9279dfc8e7115225568a315f58fdf9da70917b91278b
aide-debuginfo-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: b68ab71302db34273fc25c7486e26ff79abaa11dab72798717359e513ecdbae9
aide-debugsource-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: e8e850df5c710fe50595dd932daa402d35de82ef2333892e30a8e98cd4598789

Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
x86_64
aide-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: c75a26011675a9da1e4b9279dfc8e7115225568a315f58fdf9da70917b91278b
aide-debuginfo-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: b68ab71302db34273fc25c7486e26ff79abaa11dab72798717359e513ecdbae9
aide-debugsource-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: e8e850df5c710fe50595dd932daa402d35de82ef2333892e30a8e98cd4598789

Red Hat Enterprise Linux for IBM z Systems 10

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
s390x
aide-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 9185e38535371833ff846d30e866509b7aa735fc7d09628e70f3befbfbaf15ee
aide-debuginfo-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 4a157893d2768f4a5b44ca54b51a5119a1696744634bb89496437e418bc805fc
aide-debugsource-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 8b5cdddcf073f1b86d74685982f048b1a293f0e2f96d5d77036db976eb84afc5

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
s390x
aide-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 9185e38535371833ff846d30e866509b7aa735fc7d09628e70f3befbfbaf15ee
aide-debuginfo-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 4a157893d2768f4a5b44ca54b51a5119a1696744634bb89496437e418bc805fc
aide-debugsource-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 8b5cdddcf073f1b86d74685982f048b1a293f0e2f96d5d77036db976eb84afc5

Red Hat Enterprise Linux for Power, little endian 10

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
ppc64le
aide-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: a81fb0467b7ad003f281a109a5c98a579b7cb4079c620948f947322d54ea34b3
aide-debuginfo-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 158a663342ad9ec48a397ce6c95bba42c2e131d289c94d7aa152df19af643472
aide-debugsource-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 7efeba30723f5c08fd93990a161ea07b5a683711d6d018f815367133001ed483

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
ppc64le
aide-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: a81fb0467b7ad003f281a109a5c98a579b7cb4079c620948f947322d54ea34b3
aide-debuginfo-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 158a663342ad9ec48a397ce6c95bba42c2e131d289c94d7aa152df19af643472
aide-debugsource-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 7efeba30723f5c08fd93990a161ea07b5a683711d6d018f815367133001ed483

Red Hat Enterprise Linux for ARM 64 10

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
aarch64
aide-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: be6e25ac5e98436b6ceccfbc6db19e1dc4f8e539ecc8eda45604fe5cece86ed6
aide-debuginfo-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: 9dee88bc36bf77143229da747fbc728e0d2f2d2766c478b70d906d75eaa19f00
aide-debugsource-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: f7a3b711409ab50708259d195a19f05a2597be780f4f1893d098b75fa163885f

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
aarch64
aide-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: be6e25ac5e98436b6ceccfbc6db19e1dc4f8e539ecc8eda45604fe5cece86ed6
aide-debuginfo-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: 9dee88bc36bf77143229da747fbc728e0d2f2d2766c478b70d906d75eaa19f00
aide-debugsource-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: f7a3b711409ab50708259d195a19f05a2597be780f4f1893d098b75fa163885f

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
aarch64
aide-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: be6e25ac5e98436b6ceccfbc6db19e1dc4f8e539ecc8eda45604fe5cece86ed6
aide-debuginfo-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: 9dee88bc36bf77143229da747fbc728e0d2f2d2766c478b70d906d75eaa19f00
aide-debugsource-0.18.6-8.el10_0.2.aarch64.rpm SHA-256: f7a3b711409ab50708259d195a19f05a2597be780f4f1893d098b75fa163885f

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
s390x
aide-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 9185e38535371833ff846d30e866509b7aa735fc7d09628e70f3befbfbaf15ee
aide-debuginfo-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 4a157893d2768f4a5b44ca54b51a5119a1696744634bb89496437e418bc805fc
aide-debugsource-0.18.6-8.el10_0.2.s390x.rpm SHA-256: 8b5cdddcf073f1b86d74685982f048b1a293f0e2f96d5d77036db976eb84afc5

Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
ppc64le
aide-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: a81fb0467b7ad003f281a109a5c98a579b7cb4079c620948f947322d54ea34b3
aide-debuginfo-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 158a663342ad9ec48a397ce6c95bba42c2e131d289c94d7aa152df19af643472
aide-debugsource-0.18.6-8.el10_0.2.ppc64le.rpm SHA-256: 7efeba30723f5c08fd93990a161ea07b5a683711d6d018f815367133001ed483

Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0

SRPM
aide-0.18.6-8.el10_0.2.src.rpm SHA-256: 14d636a2d78f0b6ae9bfca0ab703e4f18f7507c4ae55deb31d1a718c75b74298
x86_64
aide-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: c75a26011675a9da1e4b9279dfc8e7115225568a315f58fdf9da70917b91278b
aide-debuginfo-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: b68ab71302db34273fc25c7486e26ff79abaa11dab72798717359e513ecdbae9
aide-debugsource-0.18.6-8.el10_0.2.x86_64.rpm SHA-256: e8e850df5c710fe50595dd932daa402d35de82ef2333892e30a8e98cd4598789

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/