Alerts This Week
Warning Icon 1 905
Alerts This Week
Warning Icon 1 905

Critical Security Update RHSA-2007:0951-01 for Nfs-Utils-Lib on RHEL 5

red hat
Calendar Grey October 2, 2007
Dist Redhat Esm H88
Red Hat Security Advisory Synopsis: Important: nfs-utils-lib security update Advisory ID: RHSA-2007:
An updated nfs-utils-lib package to correct two security flaws is now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by ...

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

5. Bug IDs fixed (http://bugzilla.redhat.com/):

250973 - CVE-2007-3999 krb5 RPC library buffer overflow 254040 - CVE-2007-4135 nfs-utils-lib NFSv4 user id mapping flaw

6. RPMs required:

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS: 80a7bf1fdfb74b567f0b98882b5de084 nfs-utils-lib-1.0.8-7.2.z2.src.rpm

i386: 4a7766d840a3b84ba568a283a3acf1d3 nfs-utils-lib-1.0.8-7.2.z2.i386.rpm 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm

x86_64: 4a7766d840a3b84ba568a283a3acf1d3 nfs-utils-lib-1.0.8-7.2.z2.i386.rpm 0319d4618fd0cfc2ae148f91cb37eb2e nfs-utils-lib-1.0.8-7.2.z2.x86_64.rpm 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm 69c11a02a653647939fc32be7c3c2dd2 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.x86_64.rpm

RHEL Desktop Workstation (v. 5 client):

SRPMS: 80a7bf1fdfb74b567f0b98882b5de084 nfs-utils-lib-1.0.8-7.2.z2.src.rpm

i386: 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm c890d8f2e7e6b5fa0bb0878936f343ad nfs-utils-lib-devel-1.0.8-7.2.z2.i386.rpm

x86_64: 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm 69c11a02a653647939fc32be7c3c2dd2 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.x86_64.rpm c890d8f2e7e6b5fa0bb0878936f343ad nfs-utils-lib-devel-1.0.8-7.2.z2.i386.rpm 33fe924d3a325d426858b6aad70f1fe6 nfs-utils-lib-devel-1.0.8-7.2.z2.x86_64.rpm

Red Hat Enterprise Linux (v. 5 server):

SRPMS: 80a7bf1fdfb74b567f0b98882b5de084 nfs-utils-lib-1.0.8-7.2.z2.src.rpm

i386: 4a7766d840a3b84ba568a283a3acf1d3 nfs-utils-lib-1.0.8-7.2.z2.i386.rpm 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm c890d8f2e7e6b5fa0bb0878936f343ad nfs-utils-lib-devel-1.0.8-7.2.z2.i386.rpm

ia64: b49bcc58f42fe1a3c1fb01aa86f40749 nfs-utils-lib-1.0.8-7.2.z2.ia64.rpm ac743b06cbf45483ec3c22ccc7e12f86 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.ia64.rpm 981f9c4878a63f59d23c1b56e88a4488 nfs-utils-lib-devel-1.0.8-7.2.z2.ia64.rpm

ppc: f9b8f236a9cd1e0af83e75c6328034ef nfs-utils-lib-1.0.8-7.2.z2.ppc.rpm 15f30c10412135fe3c72c3810fbff021 nfs-utils-lib-1.0.8-7.2.z2.ppc64.rpm 9912592260df40ce8844a90103269689 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.ppc.rpm 6a81a1c21d61f183a9a3d32a5a434471 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.ppc64.rpm e9010a2a7b9051ef213535caf3720c82 nfs-utils-lib-devel-1.0.8-7.2.z2.ppc.rpm 6d0ff75429edca9126c9eb3c03a61060 nfs-utils-lib-devel-1.0.8-7.2.z2.ppc64.rpm

s390x: 45ec57215f2edd048a6fbf06bcc0fefe nfs-utils-lib-1.0.8-7.2.z2.s390.rpm ba87ae35fc6b3fefd91bf158d0c77d5d nfs-utils-lib-1.0.8-7.2.z2.s390x.rpm 777e9f6e54acf0ef3eae43e53593713e nfs-utils-lib-debuginfo-1.0.8-7.2.z2.s390.rpm 1a9be8a4081877d406845b4f510715a3 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.s390x.rpm f0cc242918a225377f7b05302a82d5a7 nfs-utils-lib-devel-1.0.8-7.2.z2.s390.rpm dea17a87ca13c7859fdac6607cd489d1 nfs-utils-lib-devel-1.0.8-7.2.z2.s390x.rpm

x86_64: 4a7766d840a3b84ba568a283a3acf1d3 nfs-utils-lib-1.0.8-7.2.z2.i386.rpm 0319d4618fd0cfc2ae148f91cb37eb2e nfs-utils-lib-1.0.8-7.2.z2.x86_64.rpm 77bb5a12d96fc450ad8f04fbc1abcdde nfs-utils-lib-debuginfo-1.0.8-7.2.z2.i386.rpm 69c11a02a653647939fc32be7c3c2dd2 nfs-utils-lib-debuginfo-1.0.8-7.2.z2.x86_64.rpm c890d8f2e7e6b5fa0bb0878936f343ad nfs-utils-lib-devel-1.0.8-7.2.z2.i386.rpm 33fe924d3a325d426858b6aad70f1fe6 nfs-utils-lib-devel-1.0.8-7.2.z2.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

Topics%20covered

Topics Covered

security advisory Red Hat buffer overflow remote attack important update nfs-utils-lib user id mapping

References

https://www.cve.org/CVERecord?id=CVE-2007-3999 https://www.cve.org/CVERecord?id=CVE-2007-4135 https://access.redhat.com/security/updates/classification#important

Package List


Severity
important
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2007:0951-01
Advisory URL: https://access.redhat.com/errata/RHSA-2007:0951.html
Issue date: 2007-10-02
Updated on: 2007-10-02
Product: Red Hat Enterprise Linux

Topic

Topics%20covered

Topics Covered

security advisory Red Hat buffer overflow remote attack important update nfs-utils-lib user id mapping

Relevant Releases Architectures

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

RHEL Desktop Workstation (v. 5 client) - i386, x86_64

Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here