Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

Red Hat: RHSA-2006:0117-01 Low: Vixie-Cron Security Issue

red hat
Calendar Grey March 15, 2006
Dist Redhat Esm H88
Recent Red Hat notice regarding vixie-cron upgrade highlights minimal security concerns and resolves existing bugs.
An updated vixie-cron package that fixes a bug and security issue is now available. This update has been rated as having low security impact by the Red Hat Security Response Team.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

154424 - [RHEL-3] cronjobs start too early 162022 - CVE-2005-1038 vixie-cron information leak 178432 - prediction: vixie-cron-4.1's pam_unix session log messages will be most unpopular 178436 - network service interruption can cause initgroups() to delay cron job execution by more than one minute


6. RPMs required:

Red Hat Enterprise Linux AS version 3:

SRPMS: 1cd7a13aa04b203dcc6f7c30409c9246 vixie-cron-4.1-10.EL3.src.rpm

i386: c282e07d0178f3330cf7fa617727c4ca vixie-cron-4.1-10.EL3.i386.rpm

ia64: 118831a4b64648ce557166c5379a5a7d vixie-cron-4.1-10.EL3.ia64.rpm

ppc: c0fa18bc6a77a4eb24e762c16093f668 vixie-cron-4.1-10.EL3.ppc.rpm

s390: 812d722b0fa8a7c71f97adf24a00a9c6 vixie-cron-4.1-10.EL3.s390.rpm

s390x: 210220420e2fc1fd91409b6edafe0534 vixie-cron-4.1-10.EL3.s390x.rpm

x86_64: 9fd86935ce8f0019eaaa65977287648a vixie-cron-4.1-10.EL3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS: 1cd7a13aa04b203dcc6f7c30409c9246 vixie-cron-4.1-10.EL3.src.rpm

i386: c282e07d0178f3330cf7fa617727c4ca vixie-cron-4.1-10.EL3.i386.rpm

x86_64: 9fd86935ce8f0019eaaa65977287648a vixie-cron-4.1-10.EL3.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: 1cd7a13aa04b203dcc6f7c30409c9246 vixie-cron-4.1-10.EL3.src.rpm

i386: c282e07d0178f3330cf7fa617727c4ca vixie-cron-4.1-10.EL3.i386.rpm

ia64: 118831a4b64648ce557166c5379a5a7d vixie-cron-4.1-10.EL3.ia64.rpm

x86_64: 9fd86935ce8f0019eaaa65977287648a vixie-cron-4.1-10.EL3.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: 1cd7a13aa04b203dcc6f7c30409c9246 vixie-cron-4.1-10.EL3.src.rpm

i386: c282e07d0178f3330cf7fa617727c4ca vixie-cron-4.1-10.EL3.i386.rpm

ia64: 118831a4b64648ce557166c5379a5a7d vixie-cron-4.1-10.EL3.ia64.rpm

x86_64: 9fd86935ce8f0019eaaa65977287648a vixie-cron-4.1-10.EL3.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2005-1038

Package List


Severity
low
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2006:0117-01
Issue date: 2006-03-15
Updated on: 2006-03-15
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here