Explore top 10 tips to secure your open-source projects now. Read More
×
Date: Tue, 1 Oct 2013 08:21:05 -0500 Reply-To: Pat RieheckySender: Security Errata for Scientific Linux From: Pat Riehecky Subject: FASTBUGS for SL 5x i386, x86_64 now available MIME-Version: 1.0 The following FASTBUGS have been uploaded to i386: ghostscript-8.70-15.el5_9.3.i386.rpm ghostscript-devel-8.70-15.el5_9.3.i386.rpm ghostscript-gtk-8.70-15.el5_9.3.i386.rpm libbdevid-python-5.1.19.6-81.el5_9.i386.rpm mkinitrd-5.1.19.6-81.el5_9.i386.rpm mkinitrd-devel-5.1.19.6-81.el5_9.i386.rpm nash-5.1.19.6-81.el5_9.i386.rpm rgmanager-2.0.52-37.el5_9.5.i386.rpm x86_64: ghostscript-8.70-15.el5_9.3.i386.rpm ghostscript-8.70-15.el5_9.3.x86_64.rpm ghostscript-devel-8.70-15.el5_9.3.i386.rpm ghostscript-devel-8.70-15.el5_9.3.x86_64.rpm ghostscript-gtk-8.70-15.el5_9.3.x86_64.rpm libbdevid-python-5.1.19.6-81.el5_9.x86_64.rpm mkinitrd-5.1.19.6-81.el5_9.i386.rpm mkinitrd-5.1.19.6-81.el5_9.x86_64.rpm mkinitrd-devel-5.1.19.6-81.el5_9.i386.rpm mkinitrd-devel-5.1.19.6-81.el5_9.x86_64.rpm nash-5.1.19.6-81.el5_9.x86_64.rpm rgmanager-2.0.52-37.el5_9.5.x86_64.rpm Date: Tue, 1 Oct 2013 08:30:39 -0500 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: FASTBUGS for SL 6x i386, x86_64 now available MIME-Version: 1.0 The following FASTBUGS have been uploaded to i386: abrt-2.0.8-16.el6_4.1.i686.rpm abrt-addon-ccpp-2.0.8-16.el6_4.1.i686.rpm abrt-addon-kerneloops-2.0.8-16.el6_4.1.i686.rpm abrt-addon-python-2.0.8-16.el6_4.1.i686.rpm abrt-addon-vmcore-2.0.8-16.el6_4.1.i686.rpm abrt-cli-2.0.8-16.el6_4.1.i686.rpm abrt-desktop-2.0.8-16.el6_4.1.i686.rpm abrt-devel-2.0.8-16.el6_4.1.i686.rpm abrt-gui-2.0.8-16.el6_4.1.i686.rpm abrt-libs-2.0.8-16.el6_4.1.i686.rpm abrt-tui-2.0.8-16.el6_4.1.i686.rpm autofs-5.0.5-75.el6_4.i686.rpm chkconfig-1.3.49.3-2.el6_4.1.i686.rpm iputils-20071127-17.el6_4.2.i686.rpm libipa_hbac-1.9.2-82.10.el6_4.i686.rpm libipa_hbac-devel-1.9.2-82.10.el6_4.i686.rpm libipa_hbac-python-1.9.2-82.10.el6_4.i686.rpm libreport-2.0.9-15.el6_4.1.i686.rpm libreport-cli-2.0.9-15.el6_4.1.i686.rpm libreport-compat-2.0.9-15.el6_4.1.i686.rpm libreport-devel-2.0.9-15.el6_4.1.i686.rpm libreport-filesystem-2.0.9-15.el6_4.1.i686.rpm libreport-gtk-2.0.9-15.el6_4.1.i686.rpm libreport-gtk-devel-2.0.9-15.el6_4.1.i686.rpm libreport-newt-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-bugzilla-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-kerneloops-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-logger-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-mailx-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-reportuploader-2.0.9-15.el6_4.1.i686.rpm libreport-plugin-rhtsupport-2.0.9-15.el6_4.1.i686.rpm libreport-python-2.0.9-15.el6_4.1.i686.rpm libsss_autofs-1.9.2-82.10.el6_4.i686.rpm libsss_idmap-1.9.2-82.10.el6_4.i686.rpm libsss_idmap-devel-1.9.2-82.10.el6_4.i686.rpm libsss_sudo-1.9.2-82.10.el6_4.i686.rpm libsss_sudo-devel-1.9.2-82.10.el6_4.i686.rpm libvirt-cim-0.6.1-4.el6_4.2.i686.rpm ntsysv-1.3.49.3-2.el6_4.1.i686.rpm scl-utils-20120927-8.el6.i686.rpm scl-utils-build-20120927-8.el6.i686.rpm sssd-1.9.2-82.10.el6_4.i686.rpm sssd-client-1.9.2-82.10.el6_4.i686.rpm sssd-tools-1.9.2-82.10.el6_4.i686.rpm x86_64: abrt-2.0.8-16.el6_4.1.x86_64.rpm abrt-addon-ccpp-2.0.8-16.el6_4.1.x86_64.rpm abrt-addon-kerneloops-2.0.8-16.el6_4.1.x86_64.rpm abrt-addon-python-2.0.8-16.el6_4.1.x86_64.rpm abrt-addon-vmcore-2.0.8-16.el6_4.1.x86_64.rpm abrt-cli-2.0.8-16.el6_4.1.x86_64.rpm abrt-desktop-2.0.8-16.el6_4.1.x86_64.rpm abrt-devel-2.0.8-16.el6_4.1.i686.rpm abrt-devel-2.0.8-16.el6_4.1.x86_64.rpm abrt-gui-2.0.8-16.el6_4.1.x86_64.rpm abrt-libs-2.0.8-16.el6_4.1.i686.rpm abrt-libs-2.0.8-16.el6_4.1.x86_64.rpm abrt-tui-2.0.8-16.el6_4.1.x86_64.rpm autofs-5.0.5-75.el6_4.x86_64.rpm chkconfig-1.3.49.3-2.el6_4.1.x86_64.rpm iputils-20071127-17.el6_4.2.x86_64.rpm libipa_hbac-1.9.2-82.10.el6_4.i686.rpm libipa_hbac-1.9.2-82.10.el6_4.x86_64.rpm libipa_hbac-devel-1.9.2-82.10.el6_4.i686.rpm libipa_hbac-devel-1.9.2-82.10.el6_4.x86_64.rpm libipa_hbac-python-1.9.2-82.10.el6_4.x86_64.rpm libreport-2.0.9-15.el6_4.1.i686.rpm libreport-2.0.9-15.el6_4.1.x86_64.rpm libreport-cli-2.0.9-15.el6_4.1.x86_64.rpm libreport-compat-2.0.9-15.el6_4.1.x86_64.rpm libreport-devel-2.0.9-15.el6_4.1.i686.rpm libreport-devel-2.0.9-15.el6_4.1.x86_64.rpm libreport-filesystem-2.0.9-15.el6_4.1.x86_64.rpm libreport-gtk-2.0.9-15.el6_4.1.i686.rpm libreport-gtk-2.0.9-15.el6_4.1.x86_64.rpm libreport-gtk-devel-2.0.9-15.el6_4.1.i686.rpm libreport-gtk-devel-2.0.9-15.el6_4.1.x86_64.rpm libreport-newt-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-bugzilla-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-kerneloops-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-logger-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-mailx-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-reportuploader-2.0.9-15.el6_4.1.x86_64.rpm libreport-plugin-rhtsupport-2.0.9-15.el6_4.1.x86_64.rpm libreport-python-2.0.9-15.el6_4.1.x86_64.rpm libsss_autofs-1.9.2-82.10.el6_4.x86_64.rpm libsss_idmap-1.9.2-82.10.el6_4.i686.rpm libsss_idmap-1.9.2-82.10.el6_4.x86_64.rpm libsss_idmap-devel-1.9.2-82.10.el6_4.i686.rpm libsss_idmap-devel-1.9.2-82.10.el6_4.x86_64.rpm libsss_sudo-1.9.2-82.10.el6_4.x86_64.rpm libsss_sudo-devel-1.9.2-82.10.el6_4.i686.rpm libsss_sudo-devel-1.9.2-82.10.el6_4.x86_64.rpm libvirt-cim-0.6.1-4.el6_4.2.i686.rpm libvirt-cim-0.6.1-4.el6_4.2.x86_64.rpm ntsysv-1.3.49.3-2.el6_4.1.x86_64.rpm scl-utils-20120927-8.el6.x86_64.rpm scl-utils-build-20120927-8.el6.x86_64.rpm sssd-1.9.2-82.10.el6_4.x86_64.rpm sssd-client-1.9.2-82.10.el6_4.i686.rpm sssd-client-1.9.2-82.10.el6_4.x86_64.rpm sssd-tools-1.9.2-82.10.el6_4.x86_64.rpm Date: Wed, 9 Oct 2013 13:24:44 +0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Moderate: xinetd on SL5.x, SL6.x i386/x86_64 MIME-Version: 1.0 Synopsis: Moderate: xinetd security update Advisory ID: SLSA-2013:1409-1 Issue Date: 2013-10-07 CVE Numbers: CVE-2013-4342 -- It was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote attacker could use it to execute arbitrary code with the privileges of the root user. (CVE-2013-4342) -- SL5 x86_64 xinetd-2.3.14-20.el5_10.x86_64.rpm xinetd-debuginfo-2.3.14-20.el5_10.x86_64.rpm i386 xinetd-2.3.14-20.el5_10.i386.rpm xinetd-debuginfo-2.3.14-20.el5_10.i386.rpm SL6 x86_64 xinetd-2.3.14-39.el6_4.x86_64.rpm xinetd-debuginfo-2.3.14-39.el6_4.x86_64.rpm i386 xinetd-2.3.14-39.el6_4.i686.rpm xinetd-debuginfo-2.3.14-39.el6_4.i686.rpm - Scientific Linux Development Team