[ALSA-2025:0917] Moderate: keepalived security update
Type:
security
Severity:
moderate
Release date:
2025-02-05
Description:
The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover. Security Fix(es): * keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 keepalived-2.2.8-4.el9_5.aarch64.rpm 22f0450aa34e887aa4fe161ae35ac1d0e7e9a97f458fb99ff888136410c18db4
ppc64le keepalived-2.2.8-4.el9_5.ppc64le.rpm 49bee38629ef7337fb1b4262d077bc5ee8ec0c6f722ce0ab2a796f99ac9261a1
s390x keepalived-2.2.8-4.el9_5.s390x.rpm 3978775733cbf7fc862d7c032962b6186100508f2da34b0cdb8ee4004a44da1f
x86_64 keepalived-2.2.8-4.el9_5.x86_64.rpm 1dc5e10e6488f0ad1e3d48adefb7e49e229629e610a0df08f7d40e4bb3975cab
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.