Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 443
Alerts This Week
Warning Icon 1 443

Scientific Linux SLSA-2013-1409-1: Moderate xinetd Remote Code Exec Risk

Scientific Large Esm H446
Moderate: xinetd security update
Date: Tue, 1 Oct 2013 08:21:05 -0500
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: FASTBUGS for SL 5x i386, x86_64 now available
MIME-Version: 1.0

The following FASTBUGS have been uploaded to

i386:
ghostscript-8.70-15.el5_9.3.i386.rpm
ghostscript-devel-8.70-15.el5_9.3.i386.rpm
ghostscript-gtk-8.70-15.el5_9.3.i386.rpm
libbdevid-python-5.1.19.6-81.el5_9.i386.rpm
mkinitrd-5.1.19.6-81.el5_9.i386.rpm
mkinitrd-devel-5.1.19.6-81.el5_9.i386.rpm
nash-5.1.19.6-81.el5_9.i386.rpm
rgmanager-2.0.52-37.el5_9.5.i386.rpm

x86_64:
ghostscript-8.70-15.el5_9.3.i386.rpm
ghostscript-8.70-15.el5_9.3.x86_64.rpm
ghostscript-devel-8.70-15.el5_9.3.i386.rpm
ghostscript-devel-8.70-15.el5_9.3.x86_64.rpm
ghostscript-gtk-8.70-15.el5_9.3.x86_64.rpm
libbdevid-python-5.1.19.6-81.el5_9.x86_64.rpm
mkinitrd-5.1.19.6-81.el5_9.i386.rpm
mkinitrd-5.1.19.6-81.el5_9.x86_64.rpm
mkinitrd-devel-5.1.19.6-81.el5_9.i386.rpm
mkinitrd-devel-5.1.19.6-81.el5_9.x86_64.rpm
nash-5.1.19.6-81.el5_9.x86_64.rpm
rgmanager-2.0.52-37.el5_9.5.x86_64.rpm
Date: Tue, 1 Oct 2013 08:30:39 -0500
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: FASTBUGS for SL 6x i386, x86_64 now available
MIME-Version: 1.0

The following FASTBUGS have been uploaded to

i386:
abrt-2.0.8-16.el6_4.1.i686.rpm
abrt-addon-ccpp-2.0.8-16.el6_4.1.i686.rpm
abrt-addon-kerneloops-2.0.8-16.el6_4.1.i686.rpm
abrt-addon-python-2.0.8-16.el6_4.1.i686.rpm
abrt-addon-vmcore-2.0.8-16.el6_4.1.i686.rpm
abrt-cli-2.0.8-16.el6_4.1.i686.rpm
abrt-desktop-2.0.8-16.el6_4.1.i686.rpm
abrt-devel-2.0.8-16.el6_4.1.i686.rpm
abrt-gui-2.0.8-16.el6_4.1.i686.rpm
abrt-libs-2.0.8-16.el6_4.1.i686.rpm
abrt-tui-2.0.8-16.el6_4.1.i686.rpm
autofs-5.0.5-75.el6_4.i686.rpm
chkconfig-1.3.49.3-2.el6_4.1.i686.rpm
iputils-20071127-17.el6_4.2.i686.rpm
libipa_hbac-1.9.2-82.10.el6_4.i686.rpm
libipa_hbac-devel-1.9.2-82.10.el6_4.i686.rpm
libipa_hbac-python-1.9.2-82.10.el6_4.i686.rpm
libreport-2.0.9-15.el6_4.1.i686.rpm
libreport-cli-2.0.9-15.el6_4.1.i686.rpm
libreport-compat-2.0.9-15.el6_4.1.i686.rpm
libreport-devel-2.0.9-15.el6_4.1.i686.rpm
libreport-filesystem-2.0.9-15.el6_4.1.i686.rpm
libreport-gtk-2.0.9-15.el6_4.1.i686.rpm
libreport-gtk-devel-2.0.9-15.el6_4.1.i686.rpm
libreport-newt-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-bugzilla-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-kerneloops-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-logger-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-mailx-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-reportuploader-2.0.9-15.el6_4.1.i686.rpm
libreport-plugin-rhtsupport-2.0.9-15.el6_4.1.i686.rpm
libreport-python-2.0.9-15.el6_4.1.i686.rpm
libsss_autofs-1.9.2-82.10.el6_4.i686.rpm
libsss_idmap-1.9.2-82.10.el6_4.i686.rpm
libsss_idmap-devel-1.9.2-82.10.el6_4.i686.rpm
libsss_sudo-1.9.2-82.10.el6_4.i686.rpm
libsss_sudo-devel-1.9.2-82.10.el6_4.i686.rpm
libvirt-cim-0.6.1-4.el6_4.2.i686.rpm
ntsysv-1.3.49.3-2.el6_4.1.i686.rpm
scl-utils-20120927-8.el6.i686.rpm
scl-utils-build-20120927-8.el6.i686.rpm
sssd-1.9.2-82.10.el6_4.i686.rpm
sssd-client-1.9.2-82.10.el6_4.i686.rpm
sssd-tools-1.9.2-82.10.el6_4.i686.rpm

x86_64:
abrt-2.0.8-16.el6_4.1.x86_64.rpm
abrt-addon-ccpp-2.0.8-16.el6_4.1.x86_64.rpm
abrt-addon-kerneloops-2.0.8-16.el6_4.1.x86_64.rpm
abrt-addon-python-2.0.8-16.el6_4.1.x86_64.rpm
abrt-addon-vmcore-2.0.8-16.el6_4.1.x86_64.rpm
abrt-cli-2.0.8-16.el6_4.1.x86_64.rpm
abrt-desktop-2.0.8-16.el6_4.1.x86_64.rpm
abrt-devel-2.0.8-16.el6_4.1.i686.rpm
abrt-devel-2.0.8-16.el6_4.1.x86_64.rpm
abrt-gui-2.0.8-16.el6_4.1.x86_64.rpm
abrt-libs-2.0.8-16.el6_4.1.i686.rpm
abrt-libs-2.0.8-16.el6_4.1.x86_64.rpm
abrt-tui-2.0.8-16.el6_4.1.x86_64.rpm
autofs-5.0.5-75.el6_4.x86_64.rpm
chkconfig-1.3.49.3-2.el6_4.1.x86_64.rpm
iputils-20071127-17.el6_4.2.x86_64.rpm
libipa_hbac-1.9.2-82.10.el6_4.i686.rpm
libipa_hbac-1.9.2-82.10.el6_4.x86_64.rpm
libipa_hbac-devel-1.9.2-82.10.el6_4.i686.rpm
libipa_hbac-devel-1.9.2-82.10.el6_4.x86_64.rpm
libipa_hbac-python-1.9.2-82.10.el6_4.x86_64.rpm
libreport-2.0.9-15.el6_4.1.i686.rpm
libreport-2.0.9-15.el6_4.1.x86_64.rpm
libreport-cli-2.0.9-15.el6_4.1.x86_64.rpm
libreport-compat-2.0.9-15.el6_4.1.x86_64.rpm
libreport-devel-2.0.9-15.el6_4.1.i686.rpm
libreport-devel-2.0.9-15.el6_4.1.x86_64.rpm
libreport-filesystem-2.0.9-15.el6_4.1.x86_64.rpm
libreport-gtk-2.0.9-15.el6_4.1.i686.rpm
libreport-gtk-2.0.9-15.el6_4.1.x86_64.rpm
libreport-gtk-devel-2.0.9-15.el6_4.1.i686.rpm
libreport-gtk-devel-2.0.9-15.el6_4.1.x86_64.rpm
libreport-newt-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-bugzilla-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-kerneloops-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-logger-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-mailx-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-reportuploader-2.0.9-15.el6_4.1.x86_64.rpm
libreport-plugin-rhtsupport-2.0.9-15.el6_4.1.x86_64.rpm
libreport-python-2.0.9-15.el6_4.1.x86_64.rpm
libsss_autofs-1.9.2-82.10.el6_4.x86_64.rpm
libsss_idmap-1.9.2-82.10.el6_4.i686.rpm
libsss_idmap-1.9.2-82.10.el6_4.x86_64.rpm
libsss_idmap-devel-1.9.2-82.10.el6_4.i686.rpm
libsss_idmap-devel-1.9.2-82.10.el6_4.x86_64.rpm
libsss_sudo-1.9.2-82.10.el6_4.x86_64.rpm
libsss_sudo-devel-1.9.2-82.10.el6_4.i686.rpm
libsss_sudo-devel-1.9.2-82.10.el6_4.x86_64.rpm
libvirt-cim-0.6.1-4.el6_4.2.i686.rpm
libvirt-cim-0.6.1-4.el6_4.2.x86_64.rpm
ntsysv-1.3.49.3-2.el6_4.1.x86_64.rpm
scl-utils-20120927-8.el6.x86_64.rpm
scl-utils-build-20120927-8.el6.x86_64.rpm
sssd-1.9.2-82.10.el6_4.x86_64.rpm
sssd-client-1.9.2-82.10.el6_4.i686.rpm
sssd-client-1.9.2-82.10.el6_4.x86_64.rpm
sssd-tools-1.9.2-82.10.el6_4.x86_64.rpm
Date: Wed, 9 Oct 2013 13:24:44 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Moderate: xinetd on SL5.x, SL6.x i386/x86_64
MIME-Version: 1.0

Synopsis: Moderate: xinetd security update
Advisory ID: SLSA-2013:1409-1
Issue Date: 2013-10-07
CVE Numbers: CVE-2013-4342
--

It was found that xinetd ignored the user and group configuration
directives for services running under the tcpmux-server service. This flaw
could cause the associated services to run as root. If there was a flaw in
such a service, a remote attacker could use it to execute arbitrary code
with the privileges of the root user. (CVE-2013-4342)
--

SL5
 x86_64
 xinetd-2.3.14-20.el5_10.x86_64.rpm
 xinetd-debuginfo-2.3.14-20.el5_10.x86_64.rpm
 i386
 xinetd-2.3.14-20.el5_10.i386.rpm
 xinetd-debuginfo-2.3.14-20.el5_10.i386.rpm
SL6
 x86_64
 xinetd-2.3.14-39.el6_4.x86_64.rpm
 xinetd-debuginfo-2.3.14-39.el6_4.x86_64.rpm
 i386
 xinetd-2.3.14-39.el6_4.i686.rpm
 xinetd-debuginfo-2.3.14-39.el6_4.i686.rpm

- Scientific Linux Development Team