Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora Core 5: FEDORA-2006-181 Critical: libsepol Buffer Overflow

fedora
Calendar Grey March 22, 2006
Dist Fedora Esm H88
Important notice for Fedora Core 5 regarding libsepol—vital patch resolves a critical buffer overflow issue. Protect your system by applying the newest updates promptly.
Updated package.

Summary

Security-enhanced Linux is a feature of the Linux® kernel and a number

of utilities with enhanced security functionality designed to add

mandatory access controls to Linux. The Security-enhanced Linux

kernel contains new architectural components originally developed to

improve the security of the Flask operating system. These

architectural components provide general support for the enforcement

of many kinds of mandatory access control policies, including those

based on the concepts of Type Enforcement®, Role-based Access

Control, and Multi-level Security.

libsepol provides an API for the manipulation of SELinux binary policies.

It is used by checkpolicy (the policy compiler) and similar tools, as well

as by programs like load_policy that need to perform specific transformations

on binary policies such as customizing policy boolean settings.

- Rebuild for FC5

* Fri Mar 10 2006 Dan Walsh 1.12.1-1

- Upgrade to latest from NSA

* Fixed sepol_module_package_write buffer overflow bug.

* Fri Mar 10 2006 Dan Walsh 1.12-2

- Upgrade to latest from NSA

* Updated version for release.

* Merged cond_evaluate_expr fix from Serge Hallyn (IBM).

* Fixed bug in copy_avrule_list reported by Ivan Gyurdiev.

* Merged sepol_policydb_mls_enabled interface and error handling

changes from Ivan Gyurdiev.

6a56e03e0ed58605e59bace79658ae6c79ad5526 SRPMS/libsepol-1.12.1-1.fc5.src.rpm

9d6bff26494775a10fb5ded6555b58e25496134d ppc/libsepol-1.12.1-1.fc5.ppc.rpm

68f165fff6bc1f70b738964d7abe8efbd94fcac7 ppc/libsepol-devel-1.12.1-1.fc5.ppc.rpm

13f9577f869e54974ddea33b2a12a3babe91529e ppc/debug/libsepol-debuginfo-1.12.1-1.fc5.ppc.rpm

f92af280e5231267c3f64aa9f8822088a1a88662 x86_64/libsepol-1.12.1-1.fc5.x86_64.rpm

f66da53a2fef5abe89b779f19f6c46dd69983e06 x86_64/libsepol-devel-1.12.1-1.fc5.x86_64.rpm

2dbe14ef4d499261d204606f7b214cca83e32b0b x86_64/debug/libsepol-debuginfo-1.12.1-1.fc5.x86_64.rpm

fac29252d46cd3968c298035624a056b6314ce0d i386/libsepol-1.12.1-1.fc5.i386.rpm

234a7c955123257c99a996f0a7376f7579ce7979 i386/libsepol-devel-1.12.1-1.fc5.i386.rpm

04818575ea15f189dc6ce56028e7ad0c409f4ca0 i386/debug/libsepol-debuginfo-1.12.1-1.fc5.i386.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

fedora-announce-list mailing list

fedora-announce-list@redhat.com

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update Fedora libsepol SELinux

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libsepol
Version: 1.12.1
Release: 1.fc5
Summary: SELinux binary policy manipulation library

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update Fedora libsepol SELinux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here