Home » Red Hat Enterprise Linux (python-idna): New safety vulnerability! The vulnerability allows a denial of service

Red Hat Enterprise Linux (python-idna): New safety vulnerability! The vulnerability allows a denial of service

by admin
Red Hat Enterprise Linux (python-idna): New safety vulnerability!  The vulnerability allows a denial of service

BSI has printed the present IT safety advisory for Red Hat Enterprise Linux (python-idna). You can discover out extra in regards to the affected purposes and merchandise and the CVE numbers right here at information.de.

Federal workplace for Security in Information Technology (BSI) reported a safety advisory for Red Hat Enterprise Linux (python-idna) on June 2nd, 2024. The safety vulnerability impacts the Linux working system and the Red Hat Enterprise Linux product.

The newest producer suggestions for updates, workarounds and safety patches for this vulnerability will be discovered right here: Red Hat Safety Advisory (Stop: 02.06.2024).

Security Advisory for Red Hat Enterprise Linux (python-idna) – Risk: Medium

Risk stage: 3 (reasonable)
CVSS Base Score: 6.5
CVSS provisional rating: 5,7
Remote management: Ja

The Common Vulnerability Scoring System (CVSS) is used to evaluate the vulnerability of pc methods. The CVSS normal makes it doable to check potential or precise safety dangers primarily based on numerous standards to create a precedence listing for countermeasures. The attributes “none”, “low”, “medium”, “excessive” and “extreme” are used to find out the severity ranges of vulnerability. The Base Score evaluates the necessities of an assault (together with authentication, complexity, privileges, consumer interplay) and its outcomes. For momentary impact, body circumstances which will change over time are thought of within the take a look at. According to CVSS, the danger of the present vulnerability is assessed as “medium” with 6.5 foundation factors.

Red Hat Enterprise Linux (python-idna) Bug: Vulnerability allows a denial of service

Red Hat Enterprise Linux (RHEL) is a well-liked Linux distribution.

See also  Apache Tomcat: Vulnerability allows information disclosure

A distant, approved attacker may exploit a vulnerability in Red Hat Enterprise Linux to conduct a denial of service assault.

Vulnerabilities had been categorised utilizing the CVE (Common Vulnerability and Exposure) designation system for every serial quantity CVE-2024-3651.

Systems affected by the safety hole at a look

working system

Red Hat Enterprise Linux (cpe:/o:redhat:enterprise_linux)

General steps for coping with IT vulnerabilities

  1. Users of affected methods ought to keep up-to-date. When safety holes are recognized, producers are required to repair them rapidly by creating a patch or workaround. When new safety updates can be found, set up them instantly.
  2. For info, see the sources listed within the subsequent part. This typically incorporates further details about the newest model of the software program in query and the provision of safety patches or efficiency suggestions.
  3. If you might have any additional questions or uncertainties, please contact your accountable administrator. IT safety managers ought to often verify the desired sources to see if a brand new safety replace is accessible.

Manufacturer details about updates, patches and workarounds

Here you will see some hyperlinks with details about bug stories, safety fixes and workarounds.

Red Hat Security Advisory vom 2024-06-02 (02.06.2024)
For extra info, see:

Version historical past of this safety alert

This is the primary model of this IT safety bulletin for Red Hat Enterprise Linux (python-idna). This doc might be up to date as updates are introduced. You can see the adjustments made utilizing the model historical past under.

June 2, 2024 – First model

+++ Editorial be aware: This doc is predicated on present BSI knowledge and might be up to date in a data-driven method relying on the standing of the alert. We welcome suggestions and feedback at [email protected]. +++

See also  RazerStore Hong Kong Reopens with a New Look and Exclusive Gaming Experience

comply with News.de you might be right here Facebook, Twitter, Pinterest once more YouTube? Here you will see scorching information, present movies and a direct line to the editorial group.


You may also like

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy