Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 456
Alerts This Week
Warning Icon 1 456

Red Hat Linux 7.x RHSA-2003:206-01 Critical NFS-Utils DoS Issue

red hat
Calendar Grey July 14, 2003
Dist Redhat Esm H88
The latest enhancements to nfs-utils for Red Hat rectify a critical denial of service flaw that has the potential to lead to NFS server failures.
A buffer overflow bug in nfs-utils version 1.0.3and earlier.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs.

Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. RPMs required:

Red Hat Linux 7.1:

SRPMS:


i386:


Red Hat Linux 7.2:

SRPMS:


i386:


ia64:


Red Hat Linux 7.3:

SRPMS:


i386:


Red Hat Linux 8.0:

SRPMS:


i386:


Red Hat Linux 9:

SRPMS:


i386:




6. Verification:

MD5 sum Package Name 310db07d759fe4e4462ac555d70f47b2 7.1/en/os/SRPMS/nfs-utils-0.3.1-6.71.src.rpm ab8ca9b6daf3f65a720e47a8f7bd7b1d 7.1/en/os/i386/nfs-utils-0.3.1-6.71.i386.rpm 0a1a9674ae946f9968790343ad014285 7.2/en/os/SRPMS/nfs-utils-0.3.1-14.72.src.rpm 332ca9cabfee2fd3f119bf4b0526685c 7.2/en/os/i386/nfs-utils-0.3.1-14.72.i386.rpm d672f188bb53273e9148acaecb3bdd37 7.2/en/os/ia64/nfs-utils-0.3.1-14.72.ia64.rpm 6d5107a412655f7b4b65434c906673f7 7.3/en/os/SRPMS/nfs-utils-0.3.3-6.73.src.rpm 3462808562e694d4e0c86df5340f8337 7.3/en/os/i386/nfs-utils-0.3.3-6.73.i386.rpm 8daa79231059651541204f0944f21959 8.0/en/os/SRPMS/nfs-utils-1.0.1-2.80.src.rpm cce23fd6a17e8304b0c9bfad097ae45f 8.0/en/os/i386/nfs-utils-1.0.1-2.80.i386.rpm 0dcc44660e89ff09dd22b680b9ec28ca 9/en/os/SRPMS/nfs-utils-1.0.1-3.9.src.rpm cf5c65a715751de995fe33546e4b57a6 9/en/os/i386/nfs-utils-1.0.1-3.9.i386.rpm


These packages are GPG signed by Red Hat for security. Our key is available from Product Signing Keys - Red Hat Customer Portal

You can verify each package with the following command:

rpm --checksig -v

If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command:

md5sum


Summary

References

https://sourceforge.net/projects/nfs/;content-type=text/vnd.viewcvs-markup CVE -CVE-2003-0252

Package List


Severity
critical
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2003:206-01
Issue date: 2003-07-14
Updated on: 2003-07-14
Product: Red Hat Linux
Keywords: mountd DoS
Cross references:
Obsoletes:

Topic

Relevant Releases Architectures

Red Hat Linux 7.1 - i386

Red Hat Linux 7.2 - i386, ia64

Red Hat Linux 7.3 - i386

Red Hat Linux 8.0 - i386

Red Hat Linux 9 - i386

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.