[ALSA-2024:4756] Moderate: libuv security update
Type:
security
Severity:
moderate
Release date:
2024-07-24
Description:
libuv is a multi-platform support library with a focus on asynchronous I/O. Security Fix(es): * libuv: Improper Domain Lookup that potentially leads to SSRF attacks (CVE-2024-24806) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libuv-1.42.0-2.el9_4.aarch64.rpm 25e2f37310d22c20eb8b77404340675ee90a3df6458b9bceca9334625e88460e
aarch64 libuv-devel-1.42.0-2.el9_4.aarch64.rpm f6b30820f6298311ae7dca875e6b8422b4bd45874b5a4eb7ed5d637321534686
i686 libuv-1.42.0-2.el9_4.i686.rpm 85ef690e10cca611a5fc0fd0eb615c6da5a299ebed1e0e04359924f741e09a2f
i686 libuv-devel-1.42.0-2.el9_4.i686.rpm ae7e16ce2e5a54b6c4eaf5a62726ae6fbbc04cd46b6ce3e5dfa47ae9888de8e3
ppc64le libuv-1.42.0-2.el9_4.ppc64le.rpm 65c7ba2518dfb86eb67652cffc756e9edf7d4b21b2037ac1f06126af835d4c71
ppc64le libuv-devel-1.42.0-2.el9_4.ppc64le.rpm 7dc32273cba998bcfd71b64352c4858c4611cc2f5e3c8ca07943ada4deddc876
s390x libuv-1.42.0-2.el9_4.s390x.rpm c43026bd5309b7c41c4802a03cd3e9a78eed16e9eaff104efd7e1602e226191d
s390x libuv-devel-1.42.0-2.el9_4.s390x.rpm d5736a99625818827faba825d3a6fb42b2caffd50a63731115f9352d67212176
x86_64 libuv-devel-1.42.0-2.el9_4.x86_64.rpm 8fa6da2c257bc194bad89676f6cb035d7013ed8bd439c0c3a5c0a968ffce1a28
x86_64 libuv-1.42.0-2.el9_4.x86_64.rpm afcf4a23de576c6f61661e1070cd2398f4856374f7e2abb3ce165662f14d58f8
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.