----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated less package fixes security issue
Advisory ID: RHSA-2005:068-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-068.html
Issue date: 2005-01-26
Updated on: 2005-01-26
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-0086
----------------------------------------------------------------------
1. Summary:
An updated less package that fixes segmentation fault when viewing binary files is now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
3. Problem description:
The less utility is a text file browser that resembles more, but has extended capabilities.
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated Xpdf package fixes security issue
Advisory ID: RHSA-2005:059-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-059.html
Issue date: 2005-01-26
Updated on: 2005-01-26
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-0064
----------------------------------------------------------------------
1. Summary:
Updated Xpdf package that fixes a stack based buffer overflow security issue is now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
3. Problem description:
Xpdf is an X Window System based viewer for Portable Document Format (PDF) files.
Red Hat has released a beta of the Application Build Environment for Red Hat Enterprise Linux
New Itanium kernel packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated Itanium kernel packages fix security vulnerabilities
Advisory ID: RHSA-2005:017-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-017.html
Issue date: 2005-01-21
Updated on: 2005-01-21
Product: Red Hat Enterprise Linux
Keywords: kernel security errata
Obsoletes: RHSA-2004:504
CVE Names: CAN-2004-1016 CAN-2004-1017 CAN-2004-1057 CAN-2004-1234 CAN-2004-1235 CAN-2004-1335 CAN-2005-0001 CAN-2005-0003
----------------------------------------------------------------------
1. Summary:
Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 2.1 are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - ia64 Red Hat Linux Advanced Workstation 2.1 - ia64
3. Problem description:
The Linux kernel handles the basic functions of the operating system.
This advisory includes fixes for the following security issues:
iSEC Security Research discovered a VMA handling flaw in the uselib(2) system call of the Linux kernel. A local user could make use of this flaw to gain elevated (root) privileges. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1235 to this issue.
iSEC Security Research discovered a flaw in the page fault handler code that could lead to local users gaining elevated (root) privileges on multiprocessor machines. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0001 to this issue.
A flaw was discovered where an executable could cause a VMA overlap leading to a crash. On Itanium systems, a local user could trigger this flaw by creating a carefully crafted ELF binary. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0003 to
this issue.
iSEC Security Research and Georgi Guninski independently discovered a flaw in the scm_send function in the auxiliary message layer. A local user could create a carefully crafted auxiliary message which could cause a denial of service (system hang). The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1016 to this issue.
Kirill Korotaev found a flaw in load_elf_binary affecting kernels prior to 2.4.26. A local user could create a carefully crafted binary in such a way that it would cause a denial of service (system crash). The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1234 to this issue.
These packages also fix issues in the io_edgeport driver (CAN-2004-1017), a memory leak in ip_options_get (CAN-2004-1335), and missing VM_IO flags in some drivers (CAN-2004-1057).
Olaf Kirch discovered that the recent security fixes for cmsg_len handling (CAN-2004-1016) broke 32-bit compatibility on 64-bit platforms. A patch to correct this issue is included.
A recent Internet Draft by Fernando Gont recommended that ICMP Source Quench messages be ignored by hosts. A patch to ignore these messages is included.
All Red Hat Enterprise Linux 2.1 users running Itanium are advised to upgrade their kernels to the packages listed in this erratum.
4. Solution:
Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
142731 - CAN-2004-1016 CMSG validation checks (ipf)
142596 - CAN-2004-1017 io_edgeport driver overflows
137822 - CAN-2004-1057 VM_IO refcount issue
142735 - CAN-2004-1335 ip_options_get memory leak (ipf)
143379 - CAN-2004-1234 kernel denial of service vulnerability and exploit (ipf)
144408 - CAN-2005-0001 page fault @ SMP privilege escalation
144108 - LTC13271- Regression: Fix for E7 can cause sendmsg() to fail
144138 - CAN-2004-1235 isec.pl do_brk() privilege escalation
144785 - CAN-2005-0003 huge vma-in-executable bug
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/kernel-2.4.18-e.54.src.rpm
e2044cfd0b7962f469f3d4aef8fd732b kernel-2.4.18-e.54.src.rpm
ia64:
b211cb497dd51a0de76a3ecd27c67df8 kernel-2.4.18-e.54.ia64.rpm
64f1f624cf89003102bceb817a0a7636 kernel-doc-2.4.18-e.54.ia64.rpm
da5a6340cce9eb2de48bed0815a786ab kernel-smp-2.4.18-e.54.ia64.rpm
253939a8b94519d0eb8bf7ef46e9f055 kernel-source-2.4.18-e.54.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/kernel-2.4.18-e.54.src.rpm
e2044cfd0b7962f469f3d4aef8fd732b kernel-2.4.18-e.54.src.rpm
ia64:
b211cb497dd51a0de76a3ecd27c67df8 kernel-2.4.18-e.54.ia64.rpm
64f1f624cf89003102bceb817a0a7636 kernel-doc-2.4.18-e.54.ia64.rpm
da5a6340cce9eb2de48bed0815a786ab kernel-smp-2.4.18-e.54.ia64.rpm
253939a8b94519d0eb8bf7ef46e9f055 kernel-source-2.4.18-e.54.ia64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://marc.theaimsgroup.com/?m=109503896031720
http://www.isec.pl/vulnerabilities/isec-0019-scm.txt
http://www.isec.pl/vulnerabilities/isec-0021-uselib.txt
http://www.isec.pl/vulnerabilities/isec-0022-pagefault.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1017
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1057
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1234
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1235
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1335
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0003
8. Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://www.redhat.com/security/team/contact/
Copyright 2005 Red Hat, Inc.
An new kernel update is available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated kernel packages fix security vulnerabilities
Advisory ID: RHSA-2005:016-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-016.html
Issue date: 2005-01-21
Updated on: 2005-01-21
Product: Red Hat Enterprise Linux
Keywords: kernel security errata
Obsoletes: RHSA-2004:505
CVE Names: CAN-2004-1016 CAN-2004-1017 CAN-2004-1057 CAN-2004-1234 CAN-2004-1235 CAN-2004-1335 CAN-2005-0001
----------------------------------------------------------------------
1. Summary:
Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 2.1 are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - athlon, i386, i686
Red Hat Enterprise Linux ES version 2.1 - athlon, i386, i686
Red Hat Enterprise Linux WS version 2.1 - athlon, i386, i686
Updated PHP packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated php packages fix security issues
Advisory ID: RHSA-2005:031-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-031.html
Issue date: 2005-01-19
Updated on: 2005-01-19
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1018 CAN-2004-1019
----------------------------------------------------------------------
1. Summary:
Updated php packages that fix various security issues are now available for Red Hat Enterprise Linux 2.1.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Updated krb5 packages are available for Red Hat Enterprise Linux 2.1 and 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated krb5 packages fix security vulnerabilities
Advisory ID: RHSA-2005:012-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-012.html
Issue date: 2005-01-19
Updated on: 2005-01-19
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0971 CAN-2004-1189
----------------------------------------------------------------------
1. Summary:
Updated Kerberos (krb5) packages that correct buffer overflow and temporary file bugs are now available for Red Hat Enterprise Linux.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, ppc64, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
An updated kernel package is available for Red Hat Enterprise Linux 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated kernel packages fix security vulnerabilities
Advisory ID: RHSA-2005:043-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-043.html
Issue date: 2005-01-18
Updated on: 2005-01-18
Product: Red Hat Enterprise Linux
Keywords: taroon kernel security errata
Obsoletes: RHSA-2004:689
CVE Names: CAN-2004-1235 CAN-2004-1237 CAN-2005-0003
----------------------------------------------------------------------
1. Summary:
Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 3 are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - athlon, i386, i686, ia32e, ia64, ppc64, ppc64iseries, ppc64pseries, s390, s390x, x86_64
Red Hat Desktop version 3 - athlon, i386, i686, ia32e, x86_64
Red Hat Enterprise Linux ES version 3 - athlon, i386, i686, ia32e, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - athlon, i386, i686, ia32e, ia64, x86_64
Red Hat plans to launch a major upgrade to its flagship Red Hat Enterprise Linux operating system that will mark the first time the software has fully supported the Linux 2.6 kernel. The launch currently is scheduled to occur at an event that will coincide with the Linuxworld Conference & Expo in Boston next month, a spokeswoman for the company has confirmed.
Read more
Updated mozilla packages are available for Red Hat Enterprise Linux 2.1 and 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated mozilla packages fix a buffer overflow
Advisory ID: RHSA-2005:038-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-038.html
Issue date: 2005-01-13
Updated on: 2005-01-13
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1316
----------------------------------------------------------------------
1. Summary:
Updated mozilla packages that fix a buffer overflow issue are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Updated libtiff packages are available for Red Hat Enterprise Linux 2.1 and 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated libtiff packages fix security issues
Advisory ID: RHSA-2005:019-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-019.html
Issue date: 2005-01-13
Updated on: 2005-01-13
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1308 CAN-2004-1183
----------------------------------------------------------------------
1. Summary:
Updated libtiff packages that fix various integer overflows are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, ppc64, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Updated Pine packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated Pine packages fix security vulnerability
Advisory ID: RHSA-2005:015-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-015.html
Issue date: 2005-01-12
Updated on: 2005-01-12
Product: Red Hat Enterprise Linux
CVE Names: CAN-2003-0297
----------------------------------------------------------------------
1. Summary:
An updated Pine package is now available for Red Hat Enterprise Linux 2.1 to fix a denial of service attack.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
An updated nfs-utils package has been released for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated nfs-utils package fixes security vulnerabilities
Advisory ID: RHSA-2005:014-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-014.html
Issue date: 2005-01-12
Updated on: 2005-01-12
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1014 CAN-2004-0946
----------------------------------------------------------------------
1. Summary:
An updated nfs-utils package that fixes various security issues is now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Updated CUPS packages are available for Red Hat Enterprise Linux 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated CUPS packages fix security issues
Advisory ID: RHSA-2005:013-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-013.html
Issue date: 2005-01-12
Updated on: 2005-01-12
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1125 CAN-2004-1267 CAN-2004-1268 CAN-2004-1269 CAN-2004-1270
----------------------------------------------------------------------
1. Summary:
Updated CUPS packages that fix several security issues are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Updated unarj packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated unarj package fixes security issue
Advisory ID: RHSA-2005:007-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-007.html
Issue date: 2005-01-12
Updated on: 2005-01-12
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0947 CAN-2004-1027
----------------------------------------------------------------------
1. Summary:
An updated unarj package that fixes a buffer overflow vulnerability and a directory traversal vulnerability is now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Updated lesstif packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated lesstif package fixes image vulnerability
Advisory ID: RHSA-2005:004-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-004.html
Issue date: 2005-01-12
Updated on: 2005-01-12
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0687 CAN-2004-0688 CAN-2004-0914
----------------------------------------------------------------------
1. Summary:
An updated lesstif package that fixes flaws in the Xpm library is now available for Red Hat Enterprise Linux 2.1.
Updated samba packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated samba packages fix security issue
Advisory ID: RHSA-2005:020-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-020.html
Issue date: 2005-01-05
Updated on: 2005-01-05
Product: Red Hat Enterprise Linux
Obsoletes: RHSA-2004:681
CVE Names: CAN-2004-1154
----------------------------------------------------------------------
1. Summary:
Updated samba packages that fix an integer overflow vulnerability are now available for Red Hat Enterprise Linux 2.1.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Updated VIM packages are available for Red Hat Enterprise Linux 2.1 and 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated VIM packages fix security vulnerability
Advisory ID: RHSA-2005:010-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-010.html
Issue date: 2005-01-05
Updated on: 2005-01-05
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-1138
----------------------------------------------------------------------
1. Summary:
Updated vim packages that fix a modeline vulnerability are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Updated fam packages are available for Red Hat Enterprise Linux 2.1
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated fam packages fix security issue
Advisory ID: RHSA-2005:005-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-005.html
Issue date: 2005-01-05
Updated on: 2005-01-05
Product: Red Hat Enterprise Linux
CVE Names: CAN-2002-0875
----------------------------------------------------------------------
1. Summary:
Updated fam packages that fix an information disclosure bug are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
An updated mc package has been released for Red Hat Enterprise Linux 3.0
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated mc package resolves security vulnerabilities
Advisory ID: RHSA-2004:464-02
Advisory URL: https://rhn.redhat.com/errata/RHSA-2004-464.html
Issue date: 2005-01-05
Updated on: 2005-01-05
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0494
----------------------------------------------------------------------
1. Summary:
An updated mc package that resolves several shell escape security issues is now available.
[Updated 5 January 2005]
Packages have been updated to include the gmc and mcserv packages which were left out of the initial errata.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux WS version 2.1 - i386
