Release date:
2026-05-21 14:27:53 UTC
Description:
- CVE-2024-26306: use OAEP padding instead of PKCS1 padding for OpenSSL to
address timing side-channel in RSA authentication. Note: peers running
patched and unpatched iperf3 will fail to authenticate unless the legacy
behavior is explicitly opted into via --use-pkcs1-padding on both ends.
Updated packages:
-
iperf3-3.9-10.el9_2.alma.tuxcare.els4.i686.rpm
sha:0d1649e9fd4f56b1029413f59416e9777227027b88011abd20761063193215d0
-
iperf3-3.9-10.el9_2.alma.tuxcare.els4.x86_64.rpm
sha:0a02f29af94b1a5a25bc6ec81c2e75b61de61135813095073912ed9375da382e
-
iperf3-devel-3.9-10.el9_2.alma.tuxcare.els4.x86_64.rpm
sha:c88bb3e186bfea4bbf870508f8b9202509f5c8efef222aca0362907538287788
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
