First published: Tue Nov 26 2024(Updated: )
Important: tuned security update
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/tuned | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-gtk | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-ppd | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-atomic | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-cpu-partitioning | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-mssql | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-oracle | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-postgresql | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-spectrumscale | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-utils | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-realtime | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-sap | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-sap-hana | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-nfv | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-nfv-guest | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
redhat/tuned-profiles-nfv-host | <2.24.0-2.el9_5 | 2.24.0-2.el9_5 |
Red Hat Red Hat Enterprise Linux for SAP Applications for Power, little endian | ||
Red Hat Enterprise Linux 8 | ||
Red Hat Red Hat Enterprise Linux for SAP Solutions for Power, little endian | ||
Red Hat Enterprise Linux for IBM z Systems | ||
Red Hat Enterprise Linux 8 | ||
Red Hat Enterprise Linux 8 | ||
Red Hat Red Hat Enterprise Linux for Power, little endian | ||
Red Hat Enterprise Linux for SAP Solutions | ||
Red Hat Red Hat Enterprise Linux for Real Time for NFV | ||
Red Hat Red Hat Enterprise Linux for SAP Applications for IBM z Systems | ||
Red Hat Red Hat Enterprise Linux for SAP Applications for x86_64 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of RHSA-2024:10384 is considered important due to the impact of the vulnerability in tuned.
To fix RHSA-2024:10384, you should update the tuned package to version 2.24.0-2.el9_5 or later.
RHSA-2024:10384 affects various versions of Red Hat Enterprise Linux including for SAP Applications, x86_64, IBM z Systems, and ARM 64.
The main vulnerability addressed in RHSA-2024:10384 allows the execution of arbitrary scripts as root through the tuned package's script_pre and script_post options.
RHSA-2024:10384 was released following the identification of a security issue in the tuned packages.