Issued at: 2025-03-17
Updated at: 2025-03-17
Synopsis
Moderate: keepalived security update
Description
The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.
Security Fix(es):
* keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected products
Rocky Linux 9 aarch64
Rocky Linux 9 ppc64le
Rocky Linux 9 s390x
Rocky Linux 9 x86_64
Fixes
2298532
CVEs
CVE-2024-41184
Affected packages
Rocky Linux 9 aarch64 - AppStream
keepalived-0:2.2.8-4.el9_5.aarch64.rpm
keepalived-0:2.2.8-4.el9_5.src.rpm
keepalived-debuginfo-0:2.2.8-4.el9_5.aarch64.rpm
keepalived-debugsource-0:2.2.8-4.el9_5.aarch64.rpm
Rocky Linux 9 ppc64le - AppStream
keepalived-0:2.2.8-4.el9_5.ppc64le.rpm
keepalived-0:2.2.8-4.el9_5.src.rpm
keepalived-debuginfo-0:2.2.8-4.el9_5.ppc64le.rpm
keepalived-debugsource-0:2.2.8-4.el9_5.ppc64le.rpm
Rocky Linux 9 s390x - AppStream
keepalived-0:2.2.8-4.el9_5.s390x.rpm
keepalived-0:2.2.8-4.el9_5.src.rpm
keepalived-debuginfo-0:2.2.8-4.el9_5.s390x.rpm
keepalived-debugsource-0:2.2.8-4.el9_5.s390x.rpm
Rocky Linux 9 x86_64 - AppStream
keepalived-0:2.2.8-4.el9_5.src.rpm
keepalived-0:2.2.8-4.el9_5.x86_64.rpm
keepalived-debuginfo-0:2.2.8-4.el9_5.x86_64.rpm
keepalived-debugsource-0:2.2.8-4.el9_5.x86_64.rpm