Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-52336 (GCVE-0-2024-52336)
Vulnerability from cvelistv5 – Published: 2024-11-26 15:21 – Updated: 2025-11-08 03:14
VLAI?
EPSS
Summary
A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
Severity ?
7.8 (High)
CWE
- CWE-269 - Improper Privilege Management
Assigner
References
| URL | Tags | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | |||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Affected:
2.23.0 , < 2.24.1
(semver)
|
|||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||
Credits
Red Hat would like to thank Matthias Gerstner (SUSE Security Team) for reporting this issue.
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-52336",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-26T16:22:02.290977Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-26T16:22:12.371Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-11-29T04:32:53.450Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
},
{
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/redhat-performance/tuned",
"defaultStatus": "unaffected",
"packageName": "tuned",
"versions": [
{
"lessThan": "2.24.1",
"status": "affected",
"version": "2.23.0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8::fastdatapath"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Fast Datapath for Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.1.20240819gitc082797f.el8fdp",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9::fastdatapath"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Fast Datapath for Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.1.20240819gitc082797f.el9fdp",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::sap",
"cpe:/a:redhat:enterprise_linux:9::sap_hana",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::nfv"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.el9_5",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::sap",
"cpe:/a:redhat:enterprise_linux:9::sap_hana",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::nfv"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.24.0-2.el9_5",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7::fastdatapath"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Fast Datapath for RHEL 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "tuned",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Matthias Gerstner (SUSE Security Team) for reporting this issue."
}
],
"datePublic": "2024-11-26T12:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-269",
"description": "Improper Privilege Management",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-11-08T03:14:13.425Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:10384",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"name": "RHSA-2025:0879",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"name": "RHSA-2025:0880",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"name": "RHBZ#2324540",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-11-08T00:00:00+00:00",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-11-26T12:00:00+00:00",
"value": "Made public."
}
],
"title": "Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_redhatCweChain": "CWE-269: Improper Privilege Management"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-52336",
"datePublished": "2024-11-26T15:21:13.518Z",
"dateReserved": "2024-11-08T13:09:39.004Z",
"dateUpdated": "2025-11-08T03:14:13.425Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.\"}, {\"lang\": \"es\", \"value\": \"Se identific\\u00f3 una vulnerabilidad de inyecci\\u00f3n de scripts en el paquete Tuned. La funci\\u00f3n `instance_create()` de D-Bus puede ser invocada por usuarios que hayan iniciado sesi\\u00f3n localmente sin autenticaci\\u00f3n. Esta falla permite que un usuario local sin privilegios ejecute una llamada de D-Bus con opciones `script_pre` o `script_post` que permiten pasar scripts arbitrarios con sus rutas absolutas. Estos scripts o programas ejecutables controlados por el usuario o el atacante podr\\u00edan ser ejecutados por Tuned con privilegios de superusuario, lo que podr\\u00eda permitir a los atacantes una escalada de privilegios local.\"}]",
"id": "CVE-2024-52336",
"lastModified": "2024-12-05T14:15:21.663",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}]}",
"published": "2024-11-26T16:15:17.093",
"references": "[{\"url\": \"https://access.redhat.com/errata/RHSA-2024:10384\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-52336\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2324540\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/1\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-269\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-52336\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-11-26T16:15:17.093\",\"lastModified\":\"2025-02-03T20:15:33.123\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.\"},{\"lang\":\"es\",\"value\":\"Se identific\u00f3 una vulnerabilidad de inyecci\u00f3n de scripts en el paquete Tuned. La funci\u00f3n `instance_create()` de D-Bus puede ser invocada por usuarios que hayan iniciado sesi\u00f3n localmente sin autenticaci\u00f3n. Esta falla permite que un usuario local sin privilegios ejecute una llamada de D-Bus con opciones `script_pre` o `script_post` que permiten pasar scripts arbitrarios con sus rutas absolutas. Estos scripts o programas ejecutables controlados por el usuario o el atacante podr\u00edan ser ejecutados por Tuned con privilegios de superusuario, lo que podr\u00eda permitir a los atacantes una escalada de privilegios local.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-269\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:10384\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:0879\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:0880\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-52336\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2324540\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.openwall.com/lists/oss-security/2024/11/28/1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.openwall.com/lists/oss-security/2024/11/28/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/2\"}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\"}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-11-29T04:32:53.450Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-52336\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-26T16:22:02.290977Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-26T16:22:09.209Z\"}}], \"cna\": {\"title\": \"Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root\", \"credits\": [{\"lang\": \"en\", \"value\": \"Red Hat would like to thank Matthias Gerstner (SUSE Security Team) for reporting this issue.\"}], \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"2.23.0\", \"lessThan\": \"2.24.1\", \"versionType\": \"semver\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://github.com/redhat-performance/tuned\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.1.20240819gitc082797f.el8fdp\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.1.20240819gitc082797f.el9fdp\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::sap\", \"cpe:/a:redhat:enterprise_linux:9::sap_hana\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::nfv\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.el9_5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::sap\", \"cpe:/a:redhat:enterprise_linux:9::sap_hana\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::nfv\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.24.0-2.el9_5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::fastdatapath\"], \"vendor\": \"Red Hat\", \"product\": \"Fast Datapath for RHEL 7\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"tuned\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-11-08T00:00:00+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-11-26T12:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-11-26T12:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:10384\", \"name\": \"RHSA-2024:10384\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:0879\", \"name\": \"RHSA-2025:0879\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:0880\", \"name\": \"RHSA-2025:0880\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-52336\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2324540\", \"name\": \"RHBZ#2324540\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.opensuse.org/2024/11/26/tuned-instance-create.html\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2024/11/28/1\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-269\", \"description\": \"Improper Privilege Management\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-11-08T03:14:13.425Z\"}, \"x_redhatCweChain\": \"CWE-269: Improper Privilege Management\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-52336\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-08T03:14:13.425Z\", \"dateReserved\": \"2024-11-08T13:09:39.004Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-11-26T15:21:13.518Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
MSRC_CVE-2024-52336
Vulnerability from csaf_microsoft - Published: 2024-11-02 00:00 - Updated: 2024-12-20 00:00Summary
Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-52336 Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-52336.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"tracking": {
"current_release_date": "2024-12-20T00:00:00.000Z",
"generator": {
"date": "2025-10-20T02:32:18.914Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-52336",
"initial_release_date": "2024-11-02T00:00:00.000Z",
"revision_history": [
{
"date": "2024-12-19T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2024-12-20T00:00:00.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 tuned 2.21.0-2",
"product": {
"name": "\u003cazl3 tuned 2.21.0-2",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 tuned 2.21.0-2",
"product": {
"name": "azl3 tuned 2.21.0-2",
"product_id": "17555"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 tuned 2.15.0-5",
"product": {
"name": "\u003ccbl2 tuned 2.15.0-5",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 tuned 2.15.0-5",
"product": {
"name": "cbl2 tuned 2.15.0-5",
"product_id": "19685"
}
}
],
"category": "product_name",
"name": "tuned"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 tuned 2.21.0-2 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 tuned 2.21.0-2 as a component of Azure Linux 3.0",
"product_id": "17555-17084"
},
"product_reference": "17555",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 tuned 2.15.0-5 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 tuned 2.15.0-5 as a component of CBL Mariner 2.0",
"product_id": "19685-17086"
},
"product_reference": "19685",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"notes": [
{
"category": "general",
"text": "redhat",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17555-17084",
"19685-17086"
],
"known_affected": [
"17084-2",
"17086-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-52336 Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-52336.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-19T00:00:00.000Z",
"details": "2.21.0-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2024-12-19T00:00:00.000Z",
"details": "2.15.0-5:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"17084-2",
"17086-1"
]
}
],
"title": "Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
}
]
}
GHSA-CFJC-M7FV-63XJ
Vulnerability from github – Published: 2024-11-26 18:38 – Updated: 2025-02-03 21:31
VLAI?
Details
A script injection vulnerability was identified in the Tuned package. The instance_create() D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with script_pre or script_post options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
Severity ?
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2024-52336"
],
"database_specific": {
"cwe_ids": [
"CWE-269"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-11-26T16:15:17Z",
"severity": "HIGH"
},
"details": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"id": "GHSA-cfjc-m7fv-63xj",
"modified": "2025-02-03T21:31:48Z",
"published": "2024-11-26T18:38:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"type": "WEB",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
FKIE_CVE-2024-52336
Vulnerability from fkie_nvd - Published: 2024-11-26 16:15 - Updated: 2025-02-03 20:15
Severity ?
Summary
A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation."
},
{
"lang": "es",
"value": "Se identific\u00f3 una vulnerabilidad de inyecci\u00f3n de scripts en el paquete Tuned. La funci\u00f3n `instance_create()` de D-Bus puede ser invocada por usuarios que hayan iniciado sesi\u00f3n localmente sin autenticaci\u00f3n. Esta falla permite que un usuario local sin privilegios ejecute una llamada de D-Bus con opciones `script_pre` o `script_post` que permiten pasar scripts arbitrarios con sus rutas absolutas. Estos scripts o programas ejecutables controlados por el usuario o el atacante podr\u00edan ser ejecutados por Tuned con privilegios de superusuario, lo que podr\u00eda permitir a los atacantes una escalada de privilegios local."
}
],
"id": "CVE-2024-52336",
"lastModified": "2025-02-03T20:15:33.123",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
},
"published": "2024-11-26T16:15:17.093",
"references": [
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"source": "secalert@redhat.com",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"source": "secalert@redhat.com",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/2"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-269"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
}
RHSA-2025:0880
Vulnerability from csaf_redhat - Published: 2025-02-03 00:09 - Updated: 2025-11-21 19:18Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: improper sanitization of `instance_name` parameter of the
`instance_create()` method (CVE-2024-52337)
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: improper sanitization of `instance_name` parameter of the\n`instance_create()` method (CVE-2024-52337)\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:0880",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0880.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-11-21T19:18:36+00:00",
"generator": {
"date": "2025-11-21T19:18:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:0880",
"initial_release_date": "2025-02-03T00:09:45+00:00",
"revision_history": [
{
"date": "2025-02-03T00:09:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-03T00:09:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:18:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fast Datapath for Red Hat Enterprise Linux 8",
"product": {
"name": "Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::fastdatapath"
}
}
}
],
"category": "product_family",
"name": "Fast Datapath"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-compat@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-openshift@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_id": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils-systemtap@2.24.0-2.1.20240819gitc082797f.el8fdp?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 8",
"product_id": "8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
},
"product_reference": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"relates_to_product_reference": "8Base-Fast-Datapath"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el8fdp.src",
"8Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch",
"8Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el8fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
RHSA-2024:10384
Vulnerability from csaf_redhat - Published: 2024-11-26 15:52 - Updated: 2025-11-21 18:54Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\n* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10384",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10384.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-11-21T18:54:48+00:00",
"generator": {
"date": "2025-11-21T18:54:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:10384",
"initial_release_date": "2024-11-26T15:52:47+00:00",
"revision_history": [
{
"date": "2024-11-26T15:52:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-26T15:52:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:54:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap_hana"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.src",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.src",
"product_id": "tuned-0:2.24.0-2.el9_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.el9_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
RHSA-2025:0879
Vulnerability from csaf_redhat - Published: 2025-02-03 00:09 - Updated: 2025-11-21 19:18Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: improper sanitization of `instance_name` parameter of the
`instance_create()` method (CVE-2024-52337)
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Fast Datapath for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: improper sanitization of `instance_name` parameter of the\n`instance_create()` method (CVE-2024-52337)\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:0879",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0879.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2025-11-21T19:18:37+00:00",
"generator": {
"date": "2025-11-21T19:18:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:0879",
"initial_release_date": "2025-02-03T00:09:34+00:00",
"revision_history": [
{
"date": "2025-02-03T00:09:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-03T00:09:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:18:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fast Datapath for Red Hat Enterprise Linux 9",
"product": {
"name": "Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::fastdatapath"
}
}
}
],
"category": "product_family",
"name": "Fast Datapath"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-compat@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-openshift@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_id": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils-systemtap@2.24.0-2.1.20240819gitc082797f.el9fdp?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src"
},
"product_reference": "tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch as a component of Fast Datapath for Red Hat Enterprise Linux 9",
"product_id": "9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
},
"product_reference": "tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"relates_to_product_reference": "9Base-Fast-Datapath"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:34+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-03T00:09:34+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-0:2.24.0-2.1.20240819gitc082797f.el9fdp.src",
"9Base-Fast-Datapath:tuned-gtk-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-ppd-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-atomic-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-compat-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-cpu-partitioning-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-mssql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-guest-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-nfv-host-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-openshift-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-oracle-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-postgresql-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-realtime-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-sap-hana-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-profiles-spectrumscale-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch",
"9Base-Fast-Datapath:tuned-utils-systemtap-0:2.24.0-2.1.20240819gitc082797f.el9fdp.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
RHSA-2024_10384
Vulnerability from csaf_redhat - Published: 2024-11-26 15:52 - Updated: 2024-12-09 12:38Summary
Red Hat Security Advisory: tuned security update
Notes
Topic
An update for tuned is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The tuned packages provide a service that tunes system settings according to a selected profile.
Security Fix(es):
* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)
* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for tuned is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The tuned packages provide a service that tunes system settings according to a selected profile.\n\nSecurity Fix(es):\n\n* tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root (CVE-2024-52336)\n\n* tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method (CVE-2024-52337)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10384",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10384.json"
}
],
"title": "Red Hat Security Advisory: tuned security update",
"tracking": {
"current_release_date": "2024-12-09T12:38:37+00:00",
"generator": {
"date": "2024-12-09T12:38:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2024:10384",
"initial_release_date": "2024-11-26T15:52:47+00:00",
"revision_history": [
{
"date": "2024-11-26T15:52:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-26T15:52:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-09T12:38:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::realtime"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::sap_hana"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.src",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.src",
"product_id": "tuned-0:2.24.0-2.el9_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-cpu-partitioning@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-realtime@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-gtk@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-ppd@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-mssql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-oracle@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-postgresql@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-spectrumscale@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-utils@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-guest@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-nfv-host@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap@2.24.0-2.el9_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_id": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-sap-hana@2.24.0-2.el9_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "AppStream-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "BaseOS-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time for NFV (v. 9)",
"product_id": "NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "NFV-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux Real Time (v. 9)",
"product_id": "RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "RT-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP (v. 9)",
"product_id": "SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAP-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-0:2.24.0-2.el9_5.src as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src"
},
"product_reference": "tuned-0:2.24.0-2.el9_5.src",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-gtk-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-ppd-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-0:2.24.0-2.el9_5.noarch as a component of Red Hat Enterprise Linux for SAP HANA (v. 9)",
"product_id": "SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
},
"product_reference": "tuned-utils-0:2.24.0-2.el9_5.noarch",
"relates_to_product_reference": "SAPHANA-9.5.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52336",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2024-11-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324540"
}
],
"notes": [
{
"category": "description",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `instance_create()` D-Bus method has been added via upstream commit cddcd233 and was first part of version tag v2.23.0. Hence, versions of Tuned before 2.23.0 are unaffected. Also, note that the initial versions already contained support for the script option parameters and the `instance_name` parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "RHBZ#2324540",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324540"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52336"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52336"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root"
},
{
"acknowledgments": [
{
"names": [
"Matthias Gerstner"
],
"organization": "SUSE Security Team"
}
],
"cve": "CVE-2024-52337",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-11-08T12:56:07.615000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324541"
}
],
"notes": [
{
"category": "description",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity instead of important because it primarily affects the integrity of logging rather than directly compromising system confidentiality, availability, or functionality. While an attacker can manipulate log entries to mislead administrators or obfuscate their actions, the impact is limited to the interpretation of logs and does not inherently grant the attacker elevated privileges or direct control over the system. Additionally, the spoofing relies on administrators overlooking inconsistencies, making the success of exploitation context-dependent and less universally impactful. These factors reduce the overall risk compared to vulnerabilities that enable direct compromise or significant disruption.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "RHBZ#2324541",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324541"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52337"
},
{
"category": "external",
"summary": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html",
"url": "https://security.opensuse.org/2024/11/26/tuned-instance-create.html"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/11/28/1",
"url": "https://www.openwall.com/lists/oss-security/2024/11/28/1"
}
],
"release_date": "2024-11-26T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-26T15:52:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"AppStream-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"AppStream-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"BaseOS-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"BaseOS-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"NFV-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"NFV-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"RT-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"RT-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAP-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAP-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-0:2.24.0-2.el9_5.src",
"SAPHANA-9.5.0.Z.MAIN:tuned-gtk-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-ppd-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-atomic-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-cpu-partitioning-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-mssql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-guest-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-nfv-host-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-oracle-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-postgresql-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-realtime-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-sap-hana-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-profiles-spectrumscale-0:2.24.0-2.el9_5.noarch",
"SAPHANA-9.5.0.Z.MAIN:tuned-utils-0:2.24.0-2.el9_5.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method"
}
]
}
WID-SEC-W-2024-3551
Vulnerability from csaf_certbund - Published: 2024-11-26 23:00 - Updated: 2025-02-24 23:00Summary
Red Hat Enterprise Linux: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff
Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erhöhen und Logs zu manipulieren.
Betroffene Betriebssysteme
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um seine Privilegien zu erh\u00f6hen und Logs zu manipulieren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3551 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3551.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3551 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3551"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10381"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:10384"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-0CAB161B46 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-0cab161b46"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-FB2157C952 vom 2024-11-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-fb2157c952"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10384 vom 2024-12-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-10384.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11161 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11161"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-10381 vom 2024-12-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-10381.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-11161 vom 2024-12-18",
"url": "https://linux.oracle.com/errata/ELSA-2024-11161.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0195 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0195"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0327 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0327"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0368 vom 2025-01-16",
"url": "https://access.redhat.com/errata/RHSA-2025:0368"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0881 vom 2025-02-03",
"url": "https://access.redhat.com/errata/RHSA-2025:0881"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0879 vom 2025-02-03",
"url": "https://access.redhat.com/errata/RHSA-2025:0879"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0880 vom 2025-02-03",
"url": "https://access.redhat.com/errata/RHSA-2025:0880"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:1785 vom 2025-02-25",
"url": "https://access.redhat.com/errata/RHSA-2025:1785"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:1802 vom 2025-02-25",
"url": "https://access.redhat.com/errata/RHSA-2025:1802"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-02-24T23:00:00.000+00:00",
"generator": {
"date": "2025-02-25T09:08:22.949+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-3551",
"initial_release_date": "2024-11-26T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-26T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-12-03T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-12-16T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-01-09T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-16T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-02T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-24T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "9"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7",
"product": {
"name": "Red Hat Enterprise Linux \u003c7",
"product_id": "T039444"
}
},
{
"category": "product_version",
"name": "7",
"product": {
"name": "Red Hat Enterprise Linux 7",
"product_id": "T039444-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9",
"product": {
"name": "Red Hat Enterprise Linux \u003c9",
"product_id": "T039445"
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T039445-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52336",
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52336"
},
{
"cve": "CVE-2024-52337",
"product_status": {
"known_affected": [
"67646",
"T004914",
"74185",
"T039445",
"T039444"
]
},
"release_date": "2024-11-26T23:00:00.000+00:00",
"title": "CVE-2024-52337"
}
]
}
OPENSUSE-SU-2024:14605-1
Vulnerability from csaf_opensuse - Published: 2024-12-19 00:00 - Updated: 2024-12-19 00:00Summary
tuned-2.24.1.0+git.90c24ee-1.1 on GA media
Notes
Title of the patch
tuned-2.24.1.0+git.90c24ee-1.1 on GA media
Description of the patch
These are all security issues fixed in the tuned-2.24.1.0+git.90c24ee-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14605
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "tuned-2.24.1.0+git.90c24ee-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the tuned-2.24.1.0+git.90c24ee-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14605",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14605-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52336 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52336/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52337/"
}
],
"title": "tuned-2.24.1.0+git.90c24ee-1.1 on GA media",
"tracking": {
"current_release_date": "2024-12-19T00:00:00Z",
"generator": {
"date": "2024-12-19T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14605-1",
"initial_release_date": "2024-12-19T00:00:00Z",
"revision_history": [
{
"date": "2024-12-19T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"product": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"product_id": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"product_id": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x"
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"product": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"product_id": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64",
"product": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64",
"product_id": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64"
},
"product_reference": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le"
},
"product_reference": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x"
},
"product_reference": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
},
"product_reference": "tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52336",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52336"
}
],
"notes": [
{
"category": "general",
"text": "A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52336",
"url": "https://www.suse.com/security/cve/CVE-2024-52336"
},
{
"category": "external",
"summary": "SUSE Bug 1233806 for CVE-2024-52336",
"url": "https://bugzilla.suse.com/1233806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-19T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-52336"
},
{
"cve": "CVE-2024-52337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52337"
}
],
"notes": [
{
"category": "general",
"text": "A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the \u0027evil\u0027 the attacker could mimic a valid TuneD log line and trick the administrator. The quotes \u0027\u0027 are usually used in TuneD logs citing raw user input, so there will always be the \u0027 character ending the spoofed input, and the administrator can easily overlook this. This logged string is later used in logging and in the output of utilities, for example, `tuned-adm get_instances` or other third-party programs that use Tuned\u0027s D-Bus interface for such operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52337",
"url": "https://www.suse.com/security/cve/CVE-2024-52337"
},
{
"category": "external",
"summary": "SUSE Bug 1233807 for CVE-2024-52337",
"url": "https://bugzilla.suse.com/1233807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-gtk-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-ppd-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-atomic-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-nfv-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-openshift-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-oracle-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-postgresql-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-realtime-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-sap-hana-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-profiles-spectrumscale-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-2.24.1.0+git.90c24ee-1.1.x86_64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.aarch64",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.ppc64le",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.s390x",
"openSUSE Tumbleweed:tuned-utils-systemtap-2.24.1.0+git.90c24ee-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-12-19T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-52337"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…