Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 5 articles for you...
219
security advisorysecurity fixnetwork toolRocky Linux 9 RLSA-2023:4582 Critical: Iperf3 Memory Leak Resolution
Important: iperf3 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:4571", "synopsis": "Important: iperf3 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for iperf3.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.\n\nSecurity Fix(es):\n\n* iperf3: memory allocation hazard and crash (CVE-2023-38403)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2222204", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222204", "description": ""}], "cves": [{"name": "CVE-2023-38403", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-38403", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2023-08-24T04:21:37.458838Z", "rpms": {"Rocky Linux 9": {"nvras": ["iperf3-0:3.9-10.el9_2.aarch64.rpm", "iperf3-0:3.9-10.el9_2.src.rpm", "iperf3-debuginfo-0:3.9-10.el9_2.aarch64.rpm", "iperf3-debugsource-0:3.9-10.el9_2.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A security enhancement for Iperf3 on Rocky Linux resolves memory management vulnerabilities, essential for optimizing network efficiency.. iperf3 Security Update, Rocky Linux 9, Memory Hazard Fix, Network Protocol Security, Important Security Fix. . Severity: Important. LinuxSecurity.com Team
Aug 24, 2023
•Important
Rocky Linux
219
security advisoryupdateimportantRocky Linux 8 RLSA-2023:4570 Important Memory Hazard in Iperf3
Important: iperf3 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:4570", "synopsis": "Important: iperf3 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for iperf3.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss.\n\nSecurity Fix(es):\n\n* iperf3: memory allocation hazard and crash (CVE-2023-38403)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2222204", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2222204", "description": ""}], "cves": [{"name": "CVE-2023-38403", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-38403", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2023-08-24T04:20:28.436734Z", "rpms": {"Rocky Linux 8": {"nvras": ["iperf3-0:3.5-7.el8_8.aarch64.rpm", "iperf3-0:3.5-7.el8_8.i686.rpm", "iperf3-0:3.5-7.el8_8.src.rpm", "iperf3-0:3.5-7.el8_8.x86_64.rpm", "iperf3-debuginfo-0:3.5-7.el8_8.aarch64.rpm", "iperf3-debuginfo-0:3.5-7.el8_8.i686.rpm", "iperf3-debuginfo-0:3.5-7.el8_8.x86_64.rpm", "iperf3-debugsource-0:3.5-7.el8_8.aarch64.rpm", "iperf3-debugsource-0:3.5-7.el8_8.i686.rpm", "iperf3-debugsource-0:3.5-7.el8_8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Enhance your safety with the new iperf3 release tackling memory issues and system failures on Rocky Linux. Learn more here!. iperf3 update, security fix, Rocky Linux 8, memory crash, iPerftool. . Severity: Important. LinuxSecurity.com Team
Aug 24, 2023
•Important
Rocky Linux
217
security advisoryimportant updateOracle LinuxOracle Linux 7 ELSA-2023-4326 Critical: iperf3 Memory Hazard Fix
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-4326 https://linux.oracle.com/errata/ELSA-2023-4326.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: iperf3-3.1.7-3.el7_9.i686.rpm iperf3-3.1.7-3.el7_9.x86_64.rpm iperf3-devel-3.1.7-3.el7_9.i686.rpm iperf3-devel-3.1.7-3.el7_9.x86_64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//iperf3-3.1.7-3.el7_9.src.rpm Related CVEs: CVE-2023-38403 Description of changes: [3.1.7-3] - Resolves: #2224558 - iperf3: memory allocation hazard and crash (CVE-2023-38403) _______________________________________________ El-errata mailing list
Aug 10, 2023
•Critical
Oracle
98
security advisorysecurity issueRed Hat Enterprise LinuxRed Hat Enterprise Linux 9 RHSA-2023:4571-01 Critical: Iperf3 Crash
An update for iperf3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: iperf3 security update Advisory ID: RHSA-2023:4571-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4571 Issue date: 2023-08-08 CVE Names: CVE-2023-38403 ===================================================================== 1. Summary: An update for iperf3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222204 - CVE-2023-38403 iperf3: memory allocation hazard and crash 6. Package List: Red Hat Enterprise LinuxAppStream (v. 9): Source: iperf3-3.9-10.el9_2.src.rpm aarch64: iperf3-3.9-10.el9_2.aarch64.rpm iperf3-debuginfo-3.9-10.el9_2.aarch64.rpm iperf3-debugsource-3.9-10.el9_2.aarch64.rpm ppc64le: iperf3-3.9-10.el9_2.ppc64le.rpm iperf3-debuginfo-3.9-10.el9_2.ppc64le.rpm iperf3-debugsource-3.9-10.el9_2.ppc64le.rpm s390x: iperf3-3.9-10.el9_2.s390x.rpm iperf3-debuginfo-3.9-10.el9_2.s390x.rpm iperf3-debugsource-3.9-10.el9_2.s390x.rpm x86_64: iperf3-3.9-10.el9_2.i686.rpm iperf3-3.9-10.el9_2.x86_64.rpm iperf3-debuginfo-3.9-10.el9_2.i686.rpm iperf3-debuginfo-3.9-10.el9_2.x86_64.rpm iperf3-debugsource-3.9-10.el9_2.i686.rpm iperf3-debugsource-3.9-10.el9_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-38403 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk0qOVAAoJENzjgjWX9erEim4P/j6cppYdQK2YOr+UfsZow0nS xe2B2YZzu4wDh9Ps+oe+mtiBccjAZp328N6+x18BDO3iKctF1dgmHRDkwe95IaZk kmOtEaUX7VTgHteDae2xDTtJ8cttD2EqVPZgflq4pHqo5N8YtMeRvE/1+dT0Ms8d TJIcdEXK6EMLDQYs+E+EB5uQRcV0ySd3eKLJXGOidfMXkmV1bQ7AxIDaTOZU+5pe bxfZJqkkTrVJcoP0oadmIGNPBVb7t0FdZjZg3JtDb3xA4fB/Vx6cCdbZNrotl4SX XQF29x9GnYYLx5tDgd6iImRH49oPjSGxji1iUuALN74mdvtrn6tPenrjOvSwcosW a5EFOoyP3asoaXyUkcL6OTfFBgMJQE+L2thIsh7Vror24ZeUG0R44mLhyA/wQDyq oj8LDGJa645EwuuYTlruXDkRX41XolwWD2mfiB7X+fZM8VNoOhgaDiueLw/zBhEB sD+gV09yMLJbuMtcuQhWOjBd8Y4CCzFsdwmD7kPqvBgRoNeOsXuu4nNYYbYi45+W H0uvSxjaIKgI3GL4PGRgwkMIp6xS2NSDtJbnbx9V7F0CVw1WLAQ41mIN4TA2I3Sa +Nrgj1PMgXWu+w2aq5ykyRrrLwknGD8Hy9iSNQjllXO6MRaSEhFsVVo2BWsQYSEL B6Dem0aaLAGpNJ7qV1lS =gW6k -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 08, 2023
•Important
Red Hat
98
security advisoryRed Hatsoftware patchRed Hat: RHSA-2023-4570-01 Important: iperf3 Memory Hazard Risk
An update for iperf3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: iperf3 security update Advisory ID: RHSA-2023:4570-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4570 Issue date: 2023-08-08 CVE Names: CVE-2023-38403 ===================================================================== 1. Summary: An update for iperf3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222204 - CVE-2023-38403 iperf3: memory allocation hazard and crash 6. Package List: Red Hat Enterprise LinuxAppStream (v. 8): Source: iperf3-3.5-7.el8_8.src.rpm aarch64: iperf3-3.5-7.el8_8.aarch64.rpm iperf3-debuginfo-3.5-7.el8_8.aarch64.rpm iperf3-debugsource-3.5-7.el8_8.aarch64.rpm ppc64le: iperf3-3.5-7.el8_8.ppc64le.rpm iperf3-debuginfo-3.5-7.el8_8.ppc64le.rpm iperf3-debugsource-3.5-7.el8_8.ppc64le.rpm s390x: iperf3-3.5-7.el8_8.s390x.rpm iperf3-debuginfo-3.5-7.el8_8.s390x.rpm iperf3-debugsource-3.5-7.el8_8.s390x.rpm x86_64: iperf3-3.5-7.el8_8.i686.rpm iperf3-3.5-7.el8_8.x86_64.rpm iperf3-debuginfo-3.5-7.el8_8.i686.rpm iperf3-debuginfo-3.5-7.el8_8.x86_64.rpm iperf3-debugsource-3.5-7.el8_8.i686.rpm iperf3-debugsource-3.5-7.el8_8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-38403 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk0qNaAAoJENzjgjWX9erEoW4P/3bPOtStFGt+KJqM32Dii0JP 2thyH5EtuzidhUmQbLtRz5IzBBfbMu8FbjxOlDmMQeMh5NwQYJUf9E6Cl1LIBvAD qrCbvlRrTJWEf6ZVkBaRjl+jLDbgW1mrF5GoXo8l1Ebv4wrgSkMAV5rQfqdYy7k2 pVMfaC1vjyNSR5rUgZwULudjLuihvndj44VXqB7QIDDyFosO2YdKjpTcc/Syqp6H ohmPkLX2WEoWKB98zeRFI71Hh7L0HoRcl0uXiV0DHrGAj5ObeoLO5+FAiQIWSDBg 2XDjFJjmBu2d5KjkjQuH4RqVTxLe2Z1izL5FAXYW1fT+n4KL6xXdRK1i+BoVIeg1 0+YFUg17J2pgQlDDA5YWLv1XVKIrf9GHLFo41pBgUSm03XsHXG80D1BljYXlPFAH e7b9bA0Onz1siKkXCT+7d7mBXjPpM4yQlcz20HY01it3zWBeOOX8Xfd8SzRy5SSc H58rXuExRrE8rub3XMi0qzutZj8Pc6/ftPDLzlQhfqsJvzxx+49rLKPGymNjBe3a zJ8WjSQMDKym0JqOOTaneuSd6qABHxGyFBdzMoNNpbfK2hQgcDT1NOkH53CuQTqy ZGpUn/Frd1RGO5GMmDpYr+knXZ7/2Z30xGiakLqpS9ruZ/y8BfbnAWidhfHCPR0b SsmhU0hyjcD7cv8zFvcO =RGFP -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 08, 2023
•Important
Red Hat
98
security advisorysecurity updateRed HatRed Hat Enterprise Linux 9: RHSA-2023-4431-01 Critical: iperf3 Memory Issue
An update for iperf3 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: iperf3 security update Advisory ID: RHSA-2023:4431-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4431 Issue date: 2023-08-02 CVE Names: CVE-2023-38403 ===================================================================== 1. Summary: An update for iperf3 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v.9.0) - aarch64, ppc64le, s390x, x86_64 3. Description: Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222204 - CVE-2023-38403 iperf3: memory allocation hazard and crash 6. Package List: Red Hat Enterprise Linux AppStream EUS(v.9.0): Source: iperf3-3.9-10.el9_0.src.rpm aarch64: iperf3-3.9-10.el9_0.aarch64.rpm iperf3-debuginfo-3.9-10.el9_0.aarch64.rpm iperf3-debugsource-3.9-10.el9_0.aarch64.rpm ppc64le: iperf3-3.9-10.el9_0.ppc64le.rpm iperf3-debuginfo-3.9-10.el9_0.ppc64le.rpm iperf3-debugsource-3.9-10.el9_0.ppc64le.rpm s390x: iperf3-3.9-10.el9_0.s390x.rpm iperf3-debuginfo-3.9-10.el9_0.s390x.rpm iperf3-debugsource-3.9-10.el9_0.s390x.rpm x86_64: iperf3-3.9-10.el9_0.i686.rpm iperf3-3.9-10.el9_0.x86_64.rpm iperf3-debuginfo-3.9-10.el9_0.i686.rpm iperf3-debuginfo-3.9-10.el9_0.x86_64.rpm iperf3-debugsource-3.9-10.el9_0.i686.rpm iperf3-debugsource-3.9-10.el9_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-38403 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJkymZaAAoJENzjgjWX9erE/pYQAINylqnutjNN7z0ZM10ks87n 2aIm5INuxrKtLIr4EMPIJ0q0uAZCACqDYDTEH1rGKpbEolUz+KRTmyYUQDYHihde jix7wg2lW+HjVwUSyxNQ1ZrH4DF5mlL2VmNyjQFOdzvW7RetZkkAUBUFhYyrrtlM aCXliGAzBCni1GsTpXtxGSwD8FMFu845Ua/W0gwp/7BL/+9ECzlPyyFVzDwj53Fp ki+m+xsv2oW99cJcLPudj2t3qdhBqwy5n9fQ8dvKqrS3qU7QeTbVCzJ+6ic8KV0R v71+VQwKh4SKhSnkib/YeZ3RW80+4oOYzPY8Ifll7uV0rfIwPYrndCCI9JcI+Cu2 x3VgVIZ6DQ8c68DHQi6ls9QOOnzm8wijmq6Esp4DtIXzdqsCpaoe0IJcusvVnsyc BhjlsVu6iNJimuN2lP0VcN3h2JOmZrxQSup3qWjVoGHXvhcnPiTX/voF/GdALa/Y rFHbm3iche92wL6svV7Lw2gljQ3K1EdWUZDwrvxVMTF778YGkJh5i1+KJ20K+j0U Djo/gvLU5V8YH204lWLBsoCzjesdzrH5mDXSxcjPwHCkemQQcKmz60SxYQUIZG88 eqVQSDyNL2UksjdJdMtb2HXx6R6sZacjjes3WdWnV9hL74dvBj/TtiaGs9v9mBtV AVYEScDCJcQsXSPVfizU =7qR3 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 02, 2023
•Important
Red Hat
98
security advisoryRed Hatsoftware updateRed Hat Enterprise Linux 8.4 RHSA-2023:4432-01 Critical Iperf3 Memory Issue
An update for iperf3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: iperf3 security update Advisory ID: RHSA-2023:4432-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4432 Issue date: 2023-08-02 CVE Names: CVE-2023-38403 ===================================================================== 1. Summary: An update for iperf3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream AUS (v.8.4) - x86_64 Red Hat Enterprise Linux AppStream E4S (v.8.4) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream TUS (v.8.4) - aarch64, ppc64le, s390x, x86_64 3. Description: Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply thisupdate, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222204 - CVE-2023-38403 iperf3: memory allocation hazard and crash 6. Package List: Red Hat Enterprise Linux AppStream AUS (v.8.4): Source: iperf3-3.5-7.el8_4.src.rpm x86_64: iperf3-3.5-7.el8_4.i686.rpm iperf3-3.5-7.el8_4.x86_64.rpm iperf3-debuginfo-3.5-7.el8_4.i686.rpm iperf3-debuginfo-3.5-7.el8_4.x86_64.rpm iperf3-debugsource-3.5-7.el8_4.i686.rpm iperf3-debugsource-3.5-7.el8_4.x86_64.rpm Red Hat Enterprise Linux AppStream E4S (v.8.4): Source: iperf3-3.5-7.el8_4.src.rpm aarch64: iperf3-3.5-7.el8_4.aarch64.rpm iperf3-debuginfo-3.5-7.el8_4.aarch64.rpm iperf3-debugsource-3.5-7.el8_4.aarch64.rpm ppc64le: iperf3-3.5-7.el8_4.ppc64le.rpm iperf3-debuginfo-3.5-7.el8_4.ppc64le.rpm iperf3-debugsource-3.5-7.el8_4.ppc64le.rpm s390x: iperf3-3.5-7.el8_4.s390x.rpm iperf3-debuginfo-3.5-7.el8_4.s390x.rpm iperf3-debugsource-3.5-7.el8_4.s390x.rpm x86_64: iperf3-3.5-7.el8_4.i686.rpm iperf3-3.5-7.el8_4.x86_64.rpm iperf3-debuginfo-3.5-7.el8_4.i686.rpm iperf3-debuginfo-3.5-7.el8_4.x86_64.rpm iperf3-debugsource-3.5-7.el8_4.i686.rpm iperf3-debugsource-3.5-7.el8_4.x86_64.rpm Red Hat Enterprise Linux AppStream TUS (v.8.4): Source: iperf3-3.5-7.el8_4.src.rpm aarch64: iperf3-3.5-7.el8_4.aarch64.rpm iperf3-debuginfo-3.5-7.el8_4.aarch64.rpm iperf3-debugsource-3.5-7.el8_4.aarch64.rpm ppc64le: iperf3-3.5-7.el8_4.ppc64le.rpm iperf3-debuginfo-3.5-7.el8_4.ppc64le.rpm iperf3-debugsource-3.5-7.el8_4.ppc64le.rpm s390x: iperf3-3.5-7.el8_4.s390x.rpm iperf3-debuginfo-3.5-7.el8_4.s390x.rpm iperf3-debugsource-3.5-7.el8_4.s390x.rpm x86_64: iperf3-3.5-7.el8_4.i686.rpm iperf3-3.5-7.el8_4.x86_64.rpm iperf3-debuginfo-3.5-7.el8_4.i686.rpm iperf3-debuginfo-3.5-7.el8_4.x86_64.rpm iperf3-debugsource-3.5-7.el8_4.i686.rpm iperf3-debugsource-3.5-7.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-38403 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJkymZRAAoJENzjgjWX9erEj8gQAKgKpGvgECCm7hT0wbQAfWmn Kb+23tSUUSWVWDxwa7sez0fsvdpLlk5EN7M9aJD3zF5TBor++pGDPvzODiABiWOQ kzEaq0U2IEhKieHfNLuHk6ICotNq21OSEE5vKSsgaT02pZv4bte2j4x2rDxkFOf6 HkfNjCUDAIjFXnsENbEwv0g4DnK80h4vVtVSa5MqltNdcL4KdkyFFLCbkbBzAw2U KDiv7QpFe7arst2PJX2MGZOzCJO9LUQB9NycfLLcSCq82LZY5vQOyoFCH0yHESmC 3EYqXQNeh5WH5RVIaosMotbuEvROdxHtdf8b0NdBKKjsinwJu0oMT6q2zbHUUTVE 7u2x4hriua0+YFM8pCXAVEqjS9dwHvr/MLv8WAIwfE0GJ3YWMpIouhwLWB7QEiNo pRtr6xqBSH6ziOZPWxIz1yOtVFtfLG5YfsGFbkQN6f4vYWJrRVddHAU8rINAKxPi W9iomIgZyIulhIbOXIsoExDHQmnVgMNcg68i9SZvj8gQw+zPFoANTDX9wq0jCuEg EWe/ot0uQbz99zgUlrWFR93el2VXiEnYncIFtbIa+KEFVrhH/rZtYsO3ykZAIhoD rz6dq5gG/oietQoIOAT9kyhAZk4T55HP9X9d7ZpGK8dr/mVGVimXO81ar/BQcOvz f+uxc6cPuJpxkOJ7sqJO =iwCS -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 02, 2023
•Important
Red Hat
98
security advisoryRed HatupdateRed Hat Enterprise Linux 8.2 RHSA-2023-4415-01 Critical Iperf3 Memory Issue
An update for iperf3 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: iperf3 security update Advisory ID: RHSA-2023:4415-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4415 Issue date: 2023-08-01 CVE Names: CVE-2023-38403 ===================================================================== 1. Summary: An update for iperf3 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream AUS (v. 8.2) - x86_64 Red Hat Enterprise Linux AppStream E4S (v. 8.2) - ppc64le, x86_64 Red Hat Enterprise Linux AppStream TUS (v. 8.2) - x86_64 3. Description: Iperf is a tool which can measure maximum TCP bandwidth and tune various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, and data-gram loss. Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2222204 - CVE-2023-38403 iperf3: memory allocation hazard and crash 6. Package List: Red Hat Enterprise Linux AppStream AUS (v. 8.2): Source: iperf3-3.5-4.el8_2.src.rpm x86_64: iperf3-3.5-4.el8_2.i686.rpm iperf3-3.5-4.el8_2.x86_64.rpm iperf3-debuginfo-3.5-4.el8_2.i686.rpm iperf3-debuginfo-3.5-4.el8_2.x86_64.rpm iperf3-debugsource-3.5-4.el8_2.i686.rpm iperf3-debugsource-3.5-4.el8_2.x86_64.rpm Red Hat Enterprise Linux AppStream E4S (v. 8.2): Source: iperf3-3.5-4.el8_2.src.rpm ppc64le: iperf3-3.5-4.el8_2.ppc64le.rpm iperf3-debuginfo-3.5-4.el8_2.ppc64le.rpm iperf3-debugsource-3.5-4.el8_2.ppc64le.rpm x86_64: iperf3-3.5-4.el8_2.i686.rpm iperf3-3.5-4.el8_2.x86_64.rpm iperf3-debuginfo-3.5-4.el8_2.i686.rpm iperf3-debuginfo-3.5-4.el8_2.x86_64.rpm iperf3-debugsource-3.5-4.el8_2.i686.rpm iperf3-debugsource-3.5-4.el8_2.x86_64.rpm Red Hat Enterprise Linux AppStream TUS (v. 8.2): Source: iperf3-3.5-4.el8_2.src.rpm x86_64: iperf3-3.5-4.el8_2.i686.rpm iperf3-3.5-4.el8_2.x86_64.rpm iperf3-debuginfo-3.5-4.el8_2.i686.rpm iperf3-debuginfo-3.5-4.el8_2.x86_64.rpm iperf3-debugsource-3.5-4.el8_2.i686.rpm iperf3-debugsource-3.5-4.el8_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-38403 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIcBAEBCAAGBQJkyRWLAAoJENzjgjWX9erEo88P/1OHNL6CR6xt4acUuAVKm+oW uoDXhqxaEW6BKftigUM7FShjwgn9M8NrzxvYV4NIgfuVwqFSzhsg4Reoh5osjVov tELBhMn/VFVbhVYUC4hYg+X/w1HMkAMYQJOduhk5CL1MzZTMrZNh2u3ULAgCTZkw p0KuDJUsXu8+rP2rqm4HjzYd4OopwFYHluwTusMc/E8Hdcyjgf6dUlJF/ckEbMvN spE32W2lhNEeWqLevSg20nz7l81jlvl4SMVdpDZUrr0vk4/hmGdwoiVb623Xgkhi sFTP6DFcWZRoWx3xJQLUpfczCL+FWEtMfdqOOf42CZzuZMAdZVGuUoOYsO9Uw9Jw eOlxVH9ZUVPpf/XC+NF5qi8ZKjwCiyhTxwkWzO1q0t4G7BrRmKtBcI+Jj0KuJX26 StF0bJsohuQOuN9Swk4FahJwygm9DkYj1AwNlOIMZsPFJ5dV4NjuV3AXRWy6Xmxl MM5YMMKxGTcn/iJ/6VEpUnRT9iponYNh9tNOJtgX7JAqiaJtbiYwM4Uddup99A00 K3fH84C0Te4qvqqNEHpQAqrOlUZyRH0OPuHiFJ1+wRfBXXt5aqyUQ+JBh0fzpMoS TzkRdxqVh0fn/W8vCQKR8trdL74V2rAg7UL3x8R7SAtlfMDlAMMcJmqN1YWiS4iK BonTKPCd62RC9VL+YOUw =eNrN -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 01, 2023
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!