Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-52336
Vulnerability from cvelistv5
Published
2024-11-26 15:21
Modified
2025-02-03 19:52
Severity ?
EPSS score ?
Summary
A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
References
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ▼ |
Version: 2.23.0 ≤ |
|||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-52336",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-26T16:22:02.290977Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-26T16:22:12.371Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-11-29T04:32:53.450Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
},
{
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/redhat-performance/tuned",
"defaultStatus": "unaffected",
"packageName": "tuned",
"versions": [
{
"lessThan": "2.24.1",
"status": "affected",
"version": "2.23.0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8::fastdatapath"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Fast Datapath for Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.1.20240819gitc082797f.el8fdp",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9::fastdatapath"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Fast Datapath for Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.1.20240819gitc082797f.el9fdp",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::sap_hana",
"cpe:/a:redhat:enterprise_linux:9::sap"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.el9_5",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::sap_hana",
"cpe:/a:redhat:enterprise_linux:9::sap"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.el9_5",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7::fastdatapath"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Fast Datapath for RHEL 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Matthias Gerstner (SUSE Security Team) for reporting this issue."
}
],
"datePublic": "2024-11-26T12:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-269",
"description": "Improper Privilege Management",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-03T19:52:18.467Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:10384",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"name": "RHSA-2025:0879",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"name": "RHSA-2025:0880",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"name": "RHBZ#2324540",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-11-08T00:00:00+00:00",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-11-26T12:00:00+00:00",
"value": "Made public."
}
],
"title": "Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_redhatCweChain": "CWE-269: Improper Privilege Management"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-52336",
"datePublished": "2024-11-26T15:21:13.518Z",
"dateReserved": "2024-11-08T13:09:39.004Z",
"dateUpdated": "2025-02-03T19:52:18.467Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-52336\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-11-26T16:15:17.093\",\"lastModified\":\"2025-02-03T20:15:33.123\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.\"},{\"lang\":\"es\",\"value\":\"Se identific\u00f3 una vulnerabilidad de inyecci\u00f3n de scripts en el paquete Tuned. La funci\u00f3n `instance_create()` de D-Bus puede ser invocada por usuarios que hayan iniciado sesi\u00f3n localmente sin autenticaci\u00f3n. Esta falla permite que un usuario local sin privilegios ejecute una llamada de D-Bus con opciones `script_pre` o `script_post` que permiten pasar scripts arbitrarios con sus rutas absolutas. Estos scripts o programas ejecutables controlados por el usuario o el atacante podr\u00edan ser ejecutados por Tuned con privilegios de superusuario, lo que podr\u00eda permitir a los atacantes una escalada de privilegios local.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-269\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:10384\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:0879\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:0880\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-52336\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2324540\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.openwall.com/lists/oss-security/2024/11/28/1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.openwall.com/lists/oss-security/2024/11/28/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/2\"}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\"}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-11-29T04:32:53.450Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-52336\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-26T16:22:02.290977Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-26T16:22:09.209Z\"}}], \"cna\": {\"title\": \"Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root\", \"credits\": [{\"lang\": \"en\", \"value\": \"Red Hat would like to thank Matthias Gerstner (SUSE Security Team) for reporting this issue.\"}], \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"2.23.0\", \"lessThan\": \"2.24.1\", \"versionType\": \"semver\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://github.com/redhat-performance/tuned\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.1.20240819gitc082797f.el8fdp\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.1.20240819gitc082797f.el9fdp\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/a:redhat:enterprise_linux:9::nfv\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::sap_hana\", \"cpe:/a:redhat:enterprise_linux:9::sap\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.el9_5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/a:redhat:enterprise_linux:9::nfv\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::sap_hana\", \"cpe:/a:redhat:enterprise_linux:9::sap\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.el9_5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-11-08T00:00:00+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-11-26T12:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-11-26T12:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:10384\", \"name\": \"RHSA-2024:10384\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:0879\", \"name\": \"RHSA-2025:0879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:0880\", \"name\": \"RHSA-2025:0880\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-52336\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2324540\", \"name\": \"RHBZ#2324540\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/1\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-269\", \"description\": \"Improper Privilege Management\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-02-03T19:52:18.467Z\"}, \"x_redhatCweChain\": \"CWE-269: Improper Privilege Management\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-52336\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-03T19:52:18.467Z\", \"dateReserved\": \"2024-11-08T13:09:39.004Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-11-26T15:21:13.518Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
rhsa-2025:0880
Vulnerability from csaf_redhat
Published
2025-02-03 00:09
Modified
2025-02-03 21:29
Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: improper sanitization of `instance_name` parameter of the
`instance_create()` method (CVE-2024-52337)
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: improper sanitization of `instance_name` parameter of the\n`instance_create()` method (CVE-2024-52337)\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:0880",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0880.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-02-03T21:29:31+00:00",
"generator": {
"date": "2025-02-03T21:29:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.6"
}
},
"id": "RHSA-2025:0880",
"initial_release_date": "2025-02-03T00:09:45+00:00",
"revision_history": [
{
"date": "2025-02-03T00:09:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-03T00:09:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-02-03T21:29:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fast Datapath for Red Hat Enterprise Linux 8",
"product": {
"name": "Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
}
}
}
],
"category": "product_family",
"name": "Fast Datapath"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-compat@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-openshift@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils-systemtap@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
RHSA-2024:10384
Vulnerability from csaf_redhat
Published
2024-11-26 15:52
Modified
2025-02-03 20:04
Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\n* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10384",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10384.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-02-03T20:04:43+00:00",
"generator": {
"date": "2025-02-03T20:04:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.6"
}
},
"id": "RHSA-2024:10384",
"initial_release_date": "2024-11-26T15:52:47+00:00",
"revision_history": [
{
"date": "2024-11-26T15:52:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-26T15:52:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-02-03T20:04:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap_hana"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.src",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.src",
"product_id": "tuned-0:2.24.0-2.el9_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.el9_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
rhsa-2024_10384
Vulnerability from csaf_redhat
Published
2024-11-26 15:52
Modified
2024-12-31 03:12
Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\n* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10384",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10384.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2024-12-31T03:12:55+00:00",
"generator": {
"date": "2024-12-31T03:12:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.4"
}
},
"id": "RHSA-2024:10384",
"initial_release_date": "2024-11-26T15:52:47+00:00",
"revision_history": [
{
"date": "2024-11-26T15:52:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-26T15:52:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-31T03:12:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap_hana"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.src",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.src",
"product_id": "tuned-0:2.24.0-2.el9_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.el9_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
rhsa-2025:0879
Vulnerability from csaf_redhat
Published
2025-02-03 00:09
Modified
2025-02-03 21:26
Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: improper sanitization of `instance_name` parameter of the
`instance_create()` method (CVE-2024-52337)
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: improper sanitization of `instance_name` parameter of the\n`instance_create()` method (CVE-2024-52337)\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:0879",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0879.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-02-03T21:26:41+00:00",
"generator": {
"date": "2025-02-03T21:26:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.6"
}
},
"id": "RHSA-2025:0879",
"initial_release_date": "2025-02-03T00:09:34+00:00",
"revision_history": [
{
"date": "2025-02-03T00:09:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-03T00:09:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-02-03T21:26:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fast Datapath for Red Hat Enterprise Linux 9",
"product": {
"name": "Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
}
}
}
],
"category": "product_family",
"name": "Fast Datapath"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-compat@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-openshift@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils-systemtap@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:34+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:34+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
rhsa-2024:10384
Vulnerability from csaf_redhat
Published
2024-11-26 15:52
Modified
2025-02-03 20:04
Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\n* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10384",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10384.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-02-03T20:04:43+00:00",
"generator": {
"date": "2025-02-03T20:04:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.6"
}
},
"id": "RHSA-2024:10384",
"initial_release_date": "2024-11-26T15:52:47+00:00",
"revision_history": [
{
"date": "2024-11-26T15:52:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-26T15:52:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-02-03T20:04:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap_hana"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.src",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.src",
"product_id": "tuned-0:2.24.0-2.el9_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.el9_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
ghsa-cfjc-m7fv-63xj
Vulnerability from github
Published
2024-11-26 18:38
Modified
2025-02-03 21:31
Severity ?
Details
A script injection vulnerability was identified in the Tuned package. The instance_create() D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with script_pre or script_post options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
{
"affected": [],
"aliases": [
"CVE-2024-52336"
],
"database_specific": {
"cwe_ids": [
"CWE-269"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-11-26T16:15:17Z",
"severity": "HIGH"
},
"details": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"id": "GHSA-cfjc-m7fv-63xj",
"modified": "2025-02-03T21:31:48Z",
"published": "2024-11-26T18:38:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"type": "WEB",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
wid-sec-w-2024-3551
Vulnerability from csaf_certbund
Published
2024-11-26 23:00
Modified
2025-01-16 23:00
Summary
Red Hat Enterprise Linux: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff
Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erhöhen und Logs zu manipulieren.
Betroffene Betriebssysteme
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erh\u00f6hen und Logs zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3551 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3551.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3551 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3551"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10381"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-0CAB161B46 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-0cab161b46"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-FB2157C952 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-fb2157c952"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10384 vom 2024-12-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-10384.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11161 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11161"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10381 vom 2024-12-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-10381.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-11161 vom 2024-12-18",
"url": "https://linux.oracle.com/errata/ELSA-2024-11161.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0195 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0195"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0327 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0327"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0368 vom 2025-01-16",
"url": "https://access.redhat.com/errata/RHSA-2025:0368"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-16T23:00:00.000+00:00",
"generator": {
"date": "2025-01-17T09:13:43.454+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3551",
"initial_release_date": "2024-11-26T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-26T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-12-03T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-12-16T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-01-09T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-16T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7",
"product": {
"name": "Red Hat Enterprise Linux \u003c7",
"product_id": "T039444"
}
},
{
"category": "product_version",
"name": "7",
"product": {
"name": "Red Hat Enterprise Linux 7",
"product_id": "T039444-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9",
"product": {
"name": "Red Hat Enterprise Linux \u003c9",
"product_id": "T039445"
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T039445-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52336",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Enterprise Linux. Ein Fehler im Tuned-Paket erlaubt den Aufruf der D-Bus-Funktion instance_create() ohne korrekte Authentifizierung, was die Ausf\u00fchrung beliebiger Skripte mit Root-Rechten erm\u00f6glicht. Ein lokaler, nicht privilegierter Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern und Root-Zugriff zu erlangen."
}
],
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52336"
},
{
"cve": "CVE-2024-52337",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Enterprise Linux. Durch eine unsachgem\u00e4\u00dfe Eingabevalidierung von API-Argumenten im Tuned-Paket k\u00f6nnen kontrollierte Zeichenfolgen, einschlie\u00dflich Zeilenumbr\u00fcchen, in Protokolleintr\u00e4ge eingeschleust werden, was zu gef\u00e4lschten Protokollzeilen f\u00fchrt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um Protokolle zu manipulieren."
}
],
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52337"
}
]
}
WID-SEC-W-2024-3551
Vulnerability from csaf_certbund
Published
2024-11-26 23:00
Modified
2025-01-16 23:00
Summary
Red Hat Enterprise Linux: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff
Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erhöhen und Logs zu manipulieren.
Betroffene Betriebssysteme
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erh\u00f6hen und Logs zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3551 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3551.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3551 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3551"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10381"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-0CAB161B46 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-0cab161b46"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-FB2157C952 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-fb2157c952"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10384 vom 2024-12-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-10384.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11161 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11161"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10381 vom 2024-12-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-10381.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-11161 vom 2024-12-18",
"url": "https://linux.oracle.com/errata/ELSA-2024-11161.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0195 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0195"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0327 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0327"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0368 vom 2025-01-16",
"url": "https://access.redhat.com/errata/RHSA-2025:0368"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-16T23:00:00.000+00:00",
"generator": {
"date": "2025-01-17T09:13:43.454+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3551",
"initial_release_date": "2024-11-26T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-26T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-12-03T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-12-16T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-01-09T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-16T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7",
"product": {
"name": "Red Hat Enterprise Linux \u003c7",
"product_id": "T039444"
}
},
{
"category": "product_version",
"name": "7",
"product": {
"name": "Red Hat Enterprise Linux 7",
"product_id": "T039444-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9",
"product": {
"name": "Red Hat Enterprise Linux \u003c9",
"product_id": "T039445"
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T039445-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52336",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Enterprise Linux. Ein Fehler im Tuned-Paket erlaubt den Aufruf der D-Bus-Funktion instance_create() ohne korrekte Authentifizierung, was die Ausf\u00fchrung beliebiger Skripte mit Root-Rechten erm\u00f6glicht. Ein lokaler, nicht privilegierter Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern und Root-Zugriff zu erlangen."
}
],
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52336"
},
{
"cve": "CVE-2024-52337",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Enterprise Linux. Durch eine unsachgem\u00e4\u00dfe Eingabevalidierung von API-Argumenten im Tuned-Paket k\u00f6nnen kontrollierte Zeichenfolgen, einschlie\u00dflich Zeilenumbr\u00fcchen, in Protokolleintr\u00e4ge eingeschleust werden, was zu gef\u00e4lschten Protokollzeilen f\u00fchrt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um Protokolle zu manipulieren."
}
],
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52337"
}
]
}
fkie_cve-2024-52336
Vulnerability from fkie_nvd
Published
2024-11-26 16:15
Modified
2025-02-03 20:15
Severity ?
Summary
A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation."
},
{
"lang": "es",
"value": "Se identific\u00f3 una vulnerabilidad de inyecci\u00f3n de scripts en el paquete Tuned. La funci\u00f3n `instance_create()` de D-Bus puede ser invocada por usuarios que hayan iniciado sesi\u00f3n localmente sin autenticaci\u00f3n. Esta falla permite que un usuario local sin privilegios ejecute una llamada de D-Bus con opciones `script_pre` o `script_post` que permiten pasar scripts arbitrarios con sus rutas absolutas. Estos scripts o programas ejecutables controlados por el usuario o el atacante podr\u00edan ser ejecutados por Tuned con privilegios de superusuario, lo que podr\u00eda permitir a los atacantes una escalada de privilegios local."
}
],
"id": "CVE-2024-52336",
"lastModified": "2025-02-03T20:15:33.123",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
},
"published": "2024-11-26T16:15:17.093",
"references": [
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"source": "secalert@redhat.com",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"source": "secalert@redhat.com",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-269"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.