Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Scientific Linux SL7: 2016-2597-2 Moderate: firewalld Unauthorized Access

Calendar Dec 14, 2016 User Avatar LinuxSecurity Advisories
1 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate bug fix unauthenticated access configuration change firewalld Scientific Linux
Moderate: firewalld security, bug fix, and enhancement update 
Date: Wed, 14 Dec 2016 18:14:01 -0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Scott Reid 
Subject: Security ERRATA Moderate: firewalld on SL7.x (noarch)
MIME-Version: 1.0
Message-ID: <20161214181401.15405.20919@slpackages.fnal.gov>

Synopsis: Moderate: firewalld security, bug fix, and enhancement update
Advisory ID: SLSA-2016:2597-2
Issue Date: 2016-11-03
CVE Numbers: CVE-2016-5410
--

The following packages have been upgraded to a newer upstream version:
firewalld (0.4.3.2).

Security Fix(es):

* A flaw was found in the way firewalld allowed certain firewall
configurations to be modified by unauthenticated users. Any locally logged
in user could use this flaw to tamper or change firewall settings.
(CVE-2016-5410)

Additional Changes:
--

SL7
 noarch
 firewall-config-0.4.3.2-8.el7.noarch.rpm
 firewalld-0.4.3.2-8.el7.noarch.rpm
 firewalld-filesystem-0.4.3.2-8.el7.noarch.rpm
 python-firewall-0.4.3.2-8.el7.noarch.rpm
 firewall-applet-0.4.3.2-8.el7.noarch.rpm

- Scientific Linux Development Team

Related News

Your message here