CVE & CISA-KEV Catalog

CVE-2024-49769

HIGH
7.5
CVSS v3
NVD

Description

Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote client closes the connection before waitress has had the opportunity to call getpeername() waitress won't correctly clean up the connection leading to the main thread attempting to write to a socket that no longer exists, but not removing it from the list of sockets to attempt to process. This leads to a busy-loop calling the write function. A remote attacker could run waitress out of available sockets with very little resources required. Waitress 3.0.1 contains fixes that remove the race condition.

How to fix

Remediation Available
waitressDebian
Fixed in:1.4.4-1.1+deb11u2CVE-2024-49769
Fixed in:2.1.2-2+deb12u1CVE-2024-49769
Fixed in:3.0.1-1CVE-2024-49769
Fixed in:3.0.1-1CVE-2024-49769
kata-containersRed Hat / RHEL
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
kata-containersRocky
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.17.el9RHSA-2024:9613
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
Fixed in:0:3.7.0-4.rhaos4.16.el9RHSA-2024:9618
kernel-rtRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rtRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-coreRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-coreRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debugRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debugRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-coreRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-coreRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-debuginfoRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-develRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-develRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-kvmRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-kvmRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modulesRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modulesRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modules-extraRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modules-internalRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debug-modules-internalRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debuginfoRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debuginfoRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debuginfo-common-x86_64Rocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-debuginfo-common-x86_64Red Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-develRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-develRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-kvmRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-kvmRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modulesRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modulesRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modules-extraRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modules-extraRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modules-internalRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-modules-internalRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-selftests-internalRocky
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
kernel-rt-selftests-internalRed Hat / RHEL
Fixed in:0:4.18.0-372.131.1.rt7.291.el8_6RHSA-2024:10535
openshiftRocky
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
openshiftRed Hat / RHEL
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
openshift-ansibleRocky
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
openshift-ansibleRed Hat / RHEL
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
openshift-ansible-testRed Hat / RHEL
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
openshift-ansible-testRocky
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411120704.p0.g5c737da.assembly.stream.el9RHSA-2024:9613
openshift-hyperkubeRed Hat / RHEL
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
openshift-hyperkubeRocky
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el8RHSA-2024:10815
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el8RHSA-2024:10535
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el8RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.13.0-202411110736.p0.g53fd427.assembly.stream.el9RHSA-2024:10815
Fixed in:0:4.12.0-202411110730.p0.g1eb8682.assembly.stream.el9RHSA-2024:10535
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.14.0-202411110739.p0.g03a907c.assembly.stream.el9RHSA-2024:9623
openshift-kube-apiserverRocky
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
openshift-kube-apiserverRed Hat / RHEL
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
openshift-kube-controller-managerRocky
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
openshift-kube-controller-managerRed Hat / RHEL
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
openshift-kube-schedulerRed Hat / RHEL
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
openshift-kube-schedulerRocky
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
openshift-kubeletRed Hat / RHEL
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
openshift-kubeletRocky
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el8RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el8RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
Fixed in:0:4.16.0-202411111337.p0.g7423cac.assembly.stream.el9RHSA-2024:9618
Fixed in:0:4.17.0-202411070335.p0.g82afd77.assembly.stream.el9RHSA-2024:9613
python-waitressRocky
Fixed in:0:2.0.0-4.el8ostRHSA-2025:1192
Fixed in:0:2.0.0-4.el8ostRHSA-2025:0201
Fixed in:0:3.0.1-1.el9RHSA-2024:10535
Fixed in:0:2.0.0-4.el9ostRHSA-2025:1191
Fixed in:0:3.0.1-1.el9RHSA-2024:9618
Fixed in:0:3.0.1-1.el9RHSA-2024:9613
Fixed in:0:3.0.1-1.el9RHSA-2024:9623
Fixed in:0:3.0.1-1.el9RHSA-2024:10815
Fixed in:0:3.0.1-1.el9RHSA-2024:10145
python-waitressRed Hat / RHEL
Fixed in:0:2.0.0-4.el8ostRHSA-2025:1192
Fixed in:0:2.0.0-4.el8ostRHSA-2025:0201
Fixed in:0:2.0.0-4.el9ostRHSA-2025:1191
Fixed in:0:3.0.1-1.el9RHSA-2024:10815
Fixed in:0:3.0.1-1.el9RHSA-2024:9623
Fixed in:0:3.0.1-1.el9RHSA-2024:9618
Fixed in:0:3.0.1-1.el9RHSA-2024:10535
Fixed in:0:3.0.1-1.el9RHSA-2024:10145
Fixed in:0:3.0.1-1.el9RHSA-2024:9613
python3-waitressRed Hat / RHEL
Fixed in:0:2.0.0-4.el8ostRHSA-2025:0201
Fixed in:0:2.0.0-4.el8ostRHSA-2025:1192
Fixed in:0:3.0.1-1.el9RHSA-2024:9613
Fixed in:0:2.0.0-4.el9ostRHSA-2025:1191
Fixed in:0:3.0.1-1.el9RHSA-2024:10145
Fixed in:0:3.0.1-1.el9RHSA-2024:10815
Fixed in:0:3.0.1-1.el9RHSA-2024:9618
Fixed in:0:3.0.1-1.el9RHSA-2024:10535
Fixed in:0:3.0.1-1.el9RHSA-2024:9623
python3-waitressRocky
Fixed in:0:2.0.0-4.el8ostRHSA-2025:0201
Fixed in:0:2.0.0-4.el8ostRHSA-2025:1192
Fixed in:0:3.0.1-1.el9RHSA-2024:9613
Fixed in:0:3.0.1-1.el9RHSA-2024:9618
Fixed in:0:3.0.1-1.el9RHSA-2024:9623
Fixed in:0:3.0.1-1.el9RHSA-2024:10815
Fixed in:0:3.0.1-1.el9RHSA-2024:10535
Fixed in:0:3.0.1-1.el9RHSA-2024:10145
Fixed in:0:2.0.0-4.el9ostRHSA-2025:1191
python3-waitressUbuntu
Fixed in:1.4.1-1ubuntu0.2USN-7115-1
Fixed in:1.4.4-1.1ubuntu1.1USN-7115-1
Fixed in:2.1.2-2ubuntu0.1~esm1USN-7115-1
waitressUbuntu
Fixed in:1.4.1-1ubuntu0.2USN-7115-1
Fixed in:1.4.4-1.1ubuntu1.1USN-7115-1
Fixed in:2.1.2-2ubuntu0.1~esm1USN-7115-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

1.39%probability of exploitation in 30 days
69thpercentile

Moderate risk: more likely to be exploited than 69% of all known CVEs.

References

Vendor Advisory1
Issue Tracking1
Other references1
Embed a live status badge for CVE-2024-49769
CVE-2024-49769 severity badge

Markdown

[![CVE-2024-49769](https://tridentstack.com/cve/badge/CVE-2024-49769.svg)](https://tridentstack.com/cve/CVE-2024-49769)

HTML

<a href="https://tridentstack.com/cve/CVE-2024-49769"><img src="https://tridentstack.com/cve/badge/CVE-2024-49769.svg" alt="CVE-2024-49769"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.