toolbox security update

🗓️ 17 Mar 2025 20:16:49Reported by Rockylinux Product ErrataType

rocky

rocky🔗 errata.rockylinux.org👁 5 Views

Update for toolbox on Rocky Linux 9 addresses multiple vulnerabilities with CVSS scores listed.

Reporter	Title	Published	Views	Family All 2900
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Node.js, Golang Go, HTTP/2, NGINX, OpenSSH, Linux kernel might affect IBM Spectrum Protect Plus	4 Feb 202518:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to Golang Go security bypass vulnerabilitiy( CVE-2024-24785)	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service due to [CVE-2024-24788]	5 Jun 202415:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite uses axios-1.7.7.tgz, Kubectl-1.22.4 and Websphere Liberty - 24.0.0.11 which is vulnerable to CVE-2025-27152, CVE-2024-47535, CVE-2024-24791, CVE-2024-45336, CVE-2024.	30 May 202513:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container operator, IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service [CVE-2023-45290]	5 Jun 202415:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph contains vulnerabilities found in Golang (CVE-2024-24785 CVE-2024-24784 CVE-2024-24783 CVE-2024-24788 CVE-2024-24789 CVE-2024-24790 CVE-2024-6104 CVE-2024-24791 CVE-2024-34155 CVE-2024-34156)	7 Jul 202520:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	25 Sep 202413:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Golang Affect IBM Cloud Pak System	4 Feb 202518:15	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate with watsonx Assistant Cartridge	6 Jan 202605:54	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Rocky Linux	9	aarch64	toolbox	0:0.0.99.5-5.el9.rocky.0.2	toolbox-0:0.0.99.5-5.el9.rocky.0.2.aarch64.rpm
Rocky Linux	9	ppc64le	toolbox	0:0.0.99.5-5.el9.rocky.0.2	toolbox-0:0.0.99.5-5.el9.rocky.0.2.ppc64le.rpm
Rocky Linux	9	s390x	toolbox	0:0.0.99.5-5.el9.rocky.0.2	toolbox-0:0.0.99.5-5.el9.rocky.0.2.s390x.rpm
Rocky Linux	9	x86_64	toolbox	0:0.0.99.5-5.el9.rocky.0.2	toolbox-0:0.0.99.5-5.el9.rocky.0.2.x86_64.rpm
Rocky Linux	9	aarch64	toolbox-debuginfo	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debuginfo-0:0.0.99.5-5.el9.rocky.0.2.aarch64.rpm
Rocky Linux	9	ppc64le	toolbox-debuginfo	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debuginfo-0:0.0.99.5-5.el9.rocky.0.2.ppc64le.rpm
Rocky Linux	9	s390x	toolbox-debuginfo	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debuginfo-0:0.0.99.5-5.el9.rocky.0.2.s390x.rpm
Rocky Linux	9	x86_64	toolbox-debuginfo	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debuginfo-0:0.0.99.5-5.el9.rocky.0.2.x86_64.rpm
Rocky Linux	9	aarch64	toolbox-debugsource	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debugsource-0:0.0.99.5-5.el9.rocky.0.2.aarch64.rpm
Rocky Linux	9	ppc64le	toolbox-debugsource	0:0.0.99.5-5.el9.rocky.0.2	toolbox-debugsource-0:0.0.99.5-5.el9.rocky.0.2.ppc64le.rpm

17 Mar 2025 20:16Current

7.2High risk

Vulners AI Score7.2

CVSS 3.17.5

EPSS0.01414

SSVC

toolbox security update rocky linux vulnerabilities common vulnerability scoring system cve details