Issued:: 2025-09-10
Updated:: 2025-09-10

RHSA-2025:15643 - Security Advisory

Overview
Updated Packages

Synopsis

Important: Satellite 6.15.5.4 Async Update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update is now available for Red Hat Satellite 6.15 for RHEL 8.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

Description

Red Hat Satellite is a system management solution that allows organizations
to configure and maintain their systems without the necessity to provide
public Internet access to their servers or other client systems. It
performs provisioning and configuration management of predefined standard
operating environments.

Security Fix(es):

Jetty: Gzip Request Body Buffer Corruption (CVE-2024-13009)

Users of Red Hat Satellite are advised to upgrade to these updated
packages, which fix these bugs.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Satellite 6.15 x86_64
Red Hat Satellite Capsule 6.15 x86_64
Red Hat Enterprise Linux for x86_64 8 x86_64

Fixes

BZ - 2365135 - CVE-2024-13009 jetty-server: Jetty: Gzip Request Body Buffer Corruption

CVEs

CVE-2024-13009

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Satellite 6.15

SRPM
puppetserver-7.17.3.1-1.el8sat.src.rpm	SHA-256: ad430f3572ea85484e0371759d419285ee6711d3a73c49d52649ccad413b1f7e
satellite-6.15.5.4-1.el8sat.src.rpm	SHA-256: 510d3083cc971c72ff079019dace8e03e1678e80b1c1010cd98c6ea2a2377d42
x86_64
puppetserver-7.17.3.1-1.el8sat.noarch.rpm	SHA-256: 067fb4105d8d6a5d610726cf069e633aba79a532a28be37d050846f81f092caf
satellite-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: dd739a1478c37ee1e420b16bfd3a8bc3a0d95e2f691cfb0fe795c92763a891a2
satellite-cli-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: 114b9f8cbc60d6eb3a807e5978972ff9d6a08d6034aaf08996b2c4ad9f0976c2
satellite-common-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: c0bc62f66ffc8ffe0e12c5ba00a4fe7053519da5e94fe89c33d1c1175048a023

Red Hat Satellite Capsule 6.15

SRPM
puppetserver-7.17.3.1-1.el8sat.src.rpm	SHA-256: ad430f3572ea85484e0371759d419285ee6711d3a73c49d52649ccad413b1f7e
satellite-6.15.5.4-1.el8sat.src.rpm	SHA-256: 510d3083cc971c72ff079019dace8e03e1678e80b1c1010cd98c6ea2a2377d42
x86_64
puppetserver-7.17.3.1-1.el8sat.noarch.rpm	SHA-256: 067fb4105d8d6a5d610726cf069e633aba79a532a28be37d050846f81f092caf
satellite-capsule-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: c40589fe60c45ac58006782b479da1da8d613c8609eafc3c317879731296ab3e
satellite-common-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: c0bc62f66ffc8ffe0e12c5ba00a4fe7053519da5e94fe89c33d1c1175048a023

Red Hat Enterprise Linux for x86_64 8

SRPM
satellite-6.15.5.4-1.el8sat.src.rpm	SHA-256: 510d3083cc971c72ff079019dace8e03e1678e80b1c1010cd98c6ea2a2377d42
x86_64
satellite-cli-6.15.5.4-1.el8sat.noarch.rpm	SHA-256: 114b9f8cbc60d6eb3a807e5978972ff9d6a08d6034aaf08996b2c4ad9f0976c2

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation