Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
89
security advisoryFedoratcp wrapperFedora 9: FEDORA-2009-0297 Moderate: Nfs-Utils Tcp Wrapper Update
- Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. - gssd: By default, don't spam syslog when users' credentials expire Re-enabled and fixed/enhanced tcp wrappers.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-0297 2009-01-07 19:08:21 --------------------------------------------------------------------------------Name : nfs-utils Product : Fedora 9 Version : 1.1.2 Release : 9.fc9 URL : https://sourceforge.net/projects/nfs/ Summary : NFS utilities and supporting clients and daemons for the kernel NFS server Description : The nfs-utils package provides a daemon for the kernel NFS server and related tools, which provides a much higher level of performance than the traditional Linux NFS server used by most users. This package also contains the showmount program. Showmount queries the mount daemon on a remote host for information about the NFS (Network File System) server on the remote host. For example, showmount can display the clients which are mounted on that host. This package also contains the mount.nfs and umount.nfs program. --------------------------------------------------------------------------------Update Information: - Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. - gssd: By default, don't spam syslog when users' credentials expire Re-enabled and fixed/enhanced tcp wrappers. --------------------------------------------------------------------------------ChangeLog: * Mon Jan 5 2009 Steve Dickson 1.1.2-9 - Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. - gssd: By default, don't spam syslog when users' credentials expire * Sat Dec 20 2008 Steve Dickson 1.1.2-8 - Re-enabled and fixed/enhanced tcp wrappers. * Mon Dec 1 2008 Steve Dickson 1.1.2-7 - Make sure /proc/fs/nfsd exists whenthe nfs init script does the exports (bz 473396) * Wed Jul 2 2008 Steve Dickson 1.1.2-6 - Changed the default directories for sm-notify (bz 435480) - Removed the nfslock service start/stop from %post section (bz 453046) * Tue Jun 24 2008 Steve Dickson 1.1.2-5 - FQDNs in the rmtab causes exportfs to seg fault (bz 444275) * Wed May 7 2008 Steve Dickson 1.1.2-4 - Added ppc arch to the all_32bit_archs list (bz 442847) * Wed Apr 23 2008 Steve Dickson 1.1.2-3 - Documented how to turn off/on protocol support for rpc.nfsd in /etc/sysconfig/nfs (bz443625) --------------------------------------------------------------------------------References: [ 1 ] Bug #477864 - nfs-utils: missing tcp_wrappers support in Fedora 9 and 10 https://bugzilla.redhat.com/show_bug.cgi?id=477864 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update nfs-utils' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Jan 14, 2009
Fedora
89
security advisorycriticalFedoraFedora 10: 2009-0266 Critical: Nfs-Utils Tcp Wrapper Update
Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. gssd: By default, don't spam syslog when users' credentials expire. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-0266 2009-01-07 19:07:59 --------------------------------------------------------------------------------Name : nfs-utils Product : Fedora 10 Version : 1.1.4 Release : 6.fc10 URL : / Summary : NFS utilities and supporting clients and daemons for the kernel NFS server Description : The nfs-utils package provides a daemon for the kernel NFS server and related tools, which provides a much higher level of performance than the traditional Linux NFS server used by most users. This package also contains the showmount program. Showmount queries the mount daemon on a remote host for information about the NFS (Network File System) server on the remote host. For example, showmount can display the clients which are mounted on that host. This package also contains the mount.nfs and umount.nfs program. --------------------------------------------------------------------------------Update Information: Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. gssd: By default, don't spam syslog when users' credentials expire --------------------------------------------------------------------------------ChangeLog: * Mon Jan 5 2009 Steve Dickson 1.1.4-6 - Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. - gssd: By default, don't spam syslog when users' credentials expire * Sat Dec 20 2008 Steve Dickson 1.1.4-5 - Re-enabled and fixed/enhanced tcp wrappers. * Mon Dec 8 2008 Steve Dickson 1.1.4-4 - sm-notify: always exiting without any notification. - statd: not unlinking up host files (Note: 1.1.4-3 was skipped) * Mon Dec 1 2008 Steve Dickson 1.1.4-2 -Make sure /proc/fs/nfsd exists when the nfs init script does the exports (bz 473396) - Fixed typo in nfs init script that caused rpc.rquotad daemons to be started but not stoppped (bz 473929) --------------------------------------------------------------------------------References: [ 1 ] Bug #477864 - nfs-utils: missing tcp_wrappers support in Fedora 9 and 10 https://bugzilla.redhat.com/show_bug.cgi?id=477864 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update nfs-utils' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Jan 14, 2009
•Critical
Fedora
172
security advisorycriticalremote accessUbuntu 7.04 USN-507-1 Critical: Tcp Wrap Remote Access Flaw
It was discovered that the TCP wrapper library was incorrectly allowing connections to services that did not specify server-side connection details. Remote attackers could connect to services that had been configured to block such connections. This only affected Ubuntu Feisty. . =========================================================== Ubuntu Security Notice USN-507-1 August 30, 2007 tcp-wrappers vulnerability https://bugs.launchpad.net/ubuntu/+source/tcp-wrappers/+bug/135332 ========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.04 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.04: libwrap0 7.6.dbs-11ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that the TCP wrapper library was incorrectly allowing connections to services that did not specify server-side connection details. Remote attackers could connect to services that had been configured to block such connections. This only affected Ubuntu Feisty. Updated packages for Ubuntu 7.04: Source archives: Size/MD5: 51563 a66ffe0947add0d626dc9d813298c931 Size/MD5: 784 4430f26d95e93408a174206b2da912d2 Size/MD5: 99548 3a8f32fa7a030d84c7260578ffb46c29 amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 37234 297a97e32256bfd222a08b7a249fca50 Size/MD5: 30876 81ab1ff3bc887cba421857b92599f064 Size/MD5: 80144 c502d7ca97203abef9d8468ae14a2751 i386 architecture (x86 compatible Intel/AMD): Size/MD5: 34432 64f1a0e9d0dc0dd2eae5af32d35e8a2b Size/MD5: 29374 31f7af2847ae763f268c0f3a4c683335 Size/MD5: 78086 8ee708787754927c56bed98631cc739c powerpcarchitecture (Apple Macintosh G3/G4/G5): Size/MD5: 37028 62d8517de1af829ebd5baf0cc39d2cbb Size/MD5: 32804 0cc1db9a4c4f5577a99e887d8094c86a Size/MD5: 87362 54d419fa50c66cad5c04ad2ca3ed4163 sparc architecture (Sun SPARC/UltraSPARC): Size/MD5: 35094 e400ccb9a4c8f78c1e451d5a3602958f Size/MD5: 28856 abe647adb76cba044f17786e028da758 Size/MD5: 79062 e6e97f4e4e585dfaef10f08a1608952b --r5lq+205vWdkqwtk Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE-----Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFG1gmyH/9LqRcGPm0RAmoSAKCLE8+tlh75Kdc+pTsfdtN/7tiZMACeNZOi 6kLjlajPULvH6ymFRm846g4=RZvk -----END PGP SIGNATURE-------r5lq+205vWdkqwtk-- --==============$93301513909770005=Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline --ubuntu-security-announce mailing list
Aug 29, 2007
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!