Red Hat Security Advisory: Satellite 6 Client Bug Fix Update
Red Hat Satellite 6 Client has received a security update addressing two vulnerabilities: CVE-2024-45336, where sensitive HTTP headers were incorrectly sent after a cross-domain redirect, and CVE-2024-9355, involving a Golang FIPS zeroed buffer issue. These bugs affect the foreman_ygg_worker and yggdrasil components of the Satellite client. The update is rated as having moderate security impact. Users are advised to upgrade to the updated packages to remediate these issues.
AI Analysis
Technical Summary
Red Hat Satellite is a system management solution for provisioning and configuration management without requiring public Internet access. The advisory addresses two vulnerabilities: CVE-2024-45336, which causes sensitive HTTP headers to be sent incorrectly after cross-domain redirects in foreman_ygg_worker and yggdrasil components, and CVE-2024-9355, a Golang FIPS zeroed buffer bug in foreman_ygg_worker. These issues could expose sensitive information. The update fixes these bugs and is applicable to multiple versions of Red Hat Satellite Client 6 across RHEL 8, 9, and 10.
Potential Impact
The vulnerabilities could lead to unintended disclosure of sensitive HTTP headers due to improper handling of cross-domain redirects and potential issues related to cryptographic buffer handling in Golang FIPS mode. The security impact is rated as moderate by Red Hat Product Security. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released updated Satellite Client packages that fix these vulnerabilities. Users should apply these updates after ensuring all previously released errata relevant to their systems have been applied. Detailed update instructions are available in the Red Hat Satellite documentation. Patch status is confirmed as an official fix is available.
Red Hat Security Advisory: Satellite 6 Client Bug Fix Update
Description
Red Hat Satellite 6 Client has received a security update addressing two vulnerabilities: CVE-2024-45336, where sensitive HTTP headers were incorrectly sent after a cross-domain redirect, and CVE-2024-9355, involving a Golang FIPS zeroed buffer issue. These bugs affect the foreman_ygg_worker and yggdrasil components of the Satellite client. The update is rated as having moderate security impact. Users are advised to upgrade to the updated packages to remediate these issues.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat Satellite is a system management solution for provisioning and configuration management without requiring public Internet access. The advisory addresses two vulnerabilities: CVE-2024-45336, which causes sensitive HTTP headers to be sent incorrectly after cross-domain redirects in foreman_ygg_worker and yggdrasil components, and CVE-2024-9355, a Golang FIPS zeroed buffer bug in foreman_ygg_worker. These issues could expose sensitive information. The update fixes these bugs and is applicable to multiple versions of Red Hat Satellite Client 6 across RHEL 8, 9, and 10.
Potential Impact
The vulnerabilities could lead to unintended disclosure of sensitive HTTP headers due to improper handling of cross-domain redirects and potential issues related to cryptographic buffer handling in Golang FIPS mode. The security impact is rated as moderate by Red Hat Product Security. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released updated Satellite Client packages that fix these vulnerabilities. Users should apply these updates after ensuring all previously released errata relevant to their systems have been applied. Detailed update instructions are available in the Red Hat Satellite documentation. Patch status is confirmed as an official fix is available.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:7624
- Cve Count
- 2
- Additional Cves
- ["CVE-2024-45336"]
- Cvss Version
- null
Threat ID: 6a176c6de29bf47b50f666d7
Added to database: 5/27/2026, 10:13:01 PM
Last enriched: 5/27/2026, 10:18:26 PM
Last updated: 5/27/2026, 11:16:36 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.