Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Red Hat: RHSA-2005:825-01 Low: lm_sensors Insecure File Threat

red hat
Calendar Grey November 10, 2005
Dist Redhat Esm H88
Red Hat has issued a minor security patch for lm_sensors focusing on a file vulnerability. Update immediately.
Updated lm_sensors packages that fix an insecure file issue are now available

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

166672 - CVE-2005-2672 lm_sensors pwmconfig insecure temporary file usage


6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS: 196630152fb8a0021e695417b2d81abe lm_sensors-2.8.7-2.40.3.src.rpm

i386: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm f9aa0903706ad5b78d6fb456e4a73879 lm_sensors-devel-2.8.7-2.40.3.i386.rpm

ia64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm

x86_64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm 71668d4442fa5d9871d4d0197208c1ce lm_sensors-2.8.7-2.40.3.x86_64.rpm 7c52e53754616474eae1d9263eba092c lm_sensors-devel-2.8.7-2.40.3.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS: 196630152fb8a0021e695417b2d81abe lm_sensors-2.8.7-2.40.3.src.rpm

i386: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm f9aa0903706ad5b78d6fb456e4a73879 lm_sensors-devel-2.8.7-2.40.3.i386.rpm

x86_64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm 71668d4442fa5d9871d4d0197208c1ce lm_sensors-2.8.7-2.40.3.x86_64.rpm 7c52e53754616474eae1d9263eba092c lm_sensors-devel-2.8.7-2.40.3.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS: 196630152fb8a0021e695417b2d81abe lm_sensors-2.8.7-2.40.3.src.rpm

i386: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm f9aa0903706ad5b78d6fb456e4a73879 lm_sensors-devel-2.8.7-2.40.3.i386.rpm

ia64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm

x86_64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm 71668d4442fa5d9871d4d0197208c1ce lm_sensors-2.8.7-2.40.3.x86_64.rpm 7c52e53754616474eae1d9263eba092c lm_sensors-devel-2.8.7-2.40.3.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS: 196630152fb8a0021e695417b2d81abe lm_sensors-2.8.7-2.40.3.src.rpm

i386: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm f9aa0903706ad5b78d6fb456e4a73879 lm_sensors-devel-2.8.7-2.40.3.i386.rpm

ia64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm

x86_64: b7a50e079501018ccef1196551aaef13 lm_sensors-2.8.7-2.40.3.i386.rpm 71668d4442fa5d9871d4d0197208c1ce lm_sensors-2.8.7-2.40.3.x86_64.rpm 7c52e53754616474eae1d9263eba092c lm_sensors-devel-2.8.7-2.40.3.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2005-2672

Package List


Severity
low
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2005:825-01
Issue date: 2005-11-10
Updated on: 2005-11-10
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here