LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

SCIENTIFIC-LINUX-ERRATA Archives

December 2013

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

	LISTSERV Archives
	SCIENTIFIC-LINUX-ERRATA Home
	SCIENTIFIC-LINUX-ERRATA December 2013

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Security ERRATA Moderate: RDMA stack on SL6.x i386/x86_64
From:	Pat Riehecky <[log in to unmask]>
Reply To:	[log in to unmask]
Date:	Mon, 9 Dec 2013 16:03:28 +0000
Content-Type:	text/plain
Parts/Attachments:	text/plain (133 lines)

Synopsis:          Moderate: RDMA stack security, bug fix, and enhancement update
Advisory ID:       SLSA-2013:1661-2
Issue Date:        2013-11-21
CVE Numbers:       CVE-2012-4516
                   CVE-2013-2561
--

A flaw was found in the way ibutils handled temporary files. A local
attacker could use this flaw to cause arbitrary files to be overwritten as
the root user via a symbolic link attack. (CVE-2013-2561)

It was discovered that librdmacm used a static port to connect to the
ib_acm service. A local attacker able to run a specially crafted ib_acm
service on that port could use this flaw to provide incorrect address
resolution information to librmdacm applications. (CVE-2012-4516)

This advisory updates the following packages to the latest upstream
releases, providing a number of bug fixes and enhancements over the
previous versions:

Several bugs have been fixed in the openmpi, mpitests, ibutils, and
infinipath-psm packages.

The most notable changes in these updated packages from the RDMA stack are
the following:

* Multiple bugs in the Message Passing Interface (MPI) test packages were
resolved, allowing more of the mpitest applications to pass on the
underlying MPI implementations.

* The libmlx4 package now includes dracut module files to ensure that any
necessary custom configuration of mlx4 port types is included in the
initramfs dracut builds.

* Multiple test programs in the perftest and qperf packages now work
properly over RoCE interfaces, or when specifying the use of rdmacm queue
pairs.

* The mstflint package has been updated to the latest upstream version,
which is now capable of burning firmware on newly released Mellanox
Connect-IB hardware.

* A compatibility problem between the openmpi and infinipath-psm packages
has been resolved with new builds of these packages.
--

SL6
  x86_64
    infinipath-psm-3.0.1-115.1015_open.2.el6.x86_64.rpm
    infinipath-psm-debuginfo-3.0.1-115.1015_open.2.el6.x86_64.rpm
    libibverbs-1.1.7-1.el6.i686.rpm
    libibverbs-1.1.7-1.el6.x86_64.rpm
    libibverbs-debuginfo-1.1.7-1.el6.i686.rpm
    libibverbs-debuginfo-1.1.7-1.el6.x86_64.rpm
    librdmacm-1.0.17-1.el6.i686.rpm
    librdmacm-1.0.17-1.el6.x86_64.rpm
    librdmacm-debuginfo-1.0.17-1.el6.i686.rpm
    librdmacm-debuginfo-1.0.17-1.el6.x86_64.rpm
    openmpi-1.5.4-2.el6.x86_64.rpm
    openmpi-debuginfo-1.5.4-2.el6.x86_64.rpm
    infinipath-psm-devel-3.0.1-115.1015_open.2.el6.x86_64.rpm
    libibverbs-devel-1.1.7-1.el6.i686.rpm
    libibverbs-devel-1.1.7-1.el6.x86_64.rpm
    libibverbs-devel-static-1.1.7-1.el6.x86_64.rpm
    libibverbs-utils-1.1.7-1.el6.x86_64.rpm
    libmlx4-1.0.5-4.el6.1.i686.rpm
    libmlx4-1.0.5-4.el6.1.x86_64.rpm
    libmlx4-debuginfo-1.0.5-4.el6.1.i686.rpm
    libmlx4-debuginfo-1.0.5-4.el6.1.x86_64.rpm
    libmlx4-static-1.0.5-4.el6.1.x86_64.rpm
    librdmacm-devel-1.0.17-1.el6.i686.rpm
    librdmacm-devel-1.0.17-1.el6.x86_64.rpm
    librdmacm-static-1.0.17-1.el6.x86_64.rpm
    librdmacm-utils-1.0.17-1.el6.x86_64.rpm
    openmpi-1.5.4-2.el6.i686.rpm
    openmpi-debuginfo-1.5.4-2.el6.i686.rpm
    openmpi-devel-1.5.4-2.el6.i686.rpm
    openmpi-devel-1.5.4-2.el6.x86_64.rpm
    ibutils-1.5.7-8.el6.x86_64.rpm
    ibutils-debuginfo-1.5.7-8.el6.i686.rpm
    ibutils-debuginfo-1.5.7-8.el6.x86_64.rpm
    ibutils-libs-1.5.7-8.el6.i686.rpm
    ibutils-libs-1.5.7-8.el6.x86_64.rpm
    mpitests-debuginfo-3.2-9.el6.x86_64.rpm
    mpitests-mvapich-3.2-9.el6.x86_64.rpm
    mpitests-mvapich2-3.2-9.el6.x86_64.rpm
    mpitests-openmpi-3.2-9.el6.x86_64.rpm
    mstflint-3.0-0.6.g6961daa.1.el6.x86_64.rpm
    mstflint-debuginfo-3.0-0.6.g6961daa.1.el6.x86_64.rpm
    perftest-2.0-2.el6.x86_64.rpm
    perftest-debuginfo-2.0-2.el6.x86_64.rpm
    qperf-0.4.9-1.el6.x86_64.rpm
    qperf-debuginfo-0.4.9-1.el6.x86_64.rpm
    ibutils-devel-1.5.7-8.el6.i686.rpm
    ibutils-devel-1.5.7-8.el6.x86_64.rpm
    mpitests-mvapich-psm-3.2-9.el6.x86_64.rpm
    mpitests-mvapich2-psm-3.2-9.el6.x86_64.rpm
  i386
    libibverbs-1.1.7-1.el6.i686.rpm
    libibverbs-debuginfo-1.1.7-1.el6.i686.rpm
    librdmacm-1.0.17-1.el6.i686.rpm
    librdmacm-debuginfo-1.0.17-1.el6.i686.rpm
    openmpi-1.5.4-2.el6.i686.rpm
    openmpi-debuginfo-1.5.4-2.el6.i686.rpm
    libibverbs-devel-1.1.7-1.el6.i686.rpm
    libibverbs-devel-static-1.1.7-1.el6.i686.rpm
    libibverbs-utils-1.1.7-1.el6.i686.rpm
    libmlx4-1.0.5-4.el6.1.i686.rpm
    libmlx4-debuginfo-1.0.5-4.el6.1.i686.rpm
    libmlx4-static-1.0.5-4.el6.1.i686.rpm
    librdmacm-devel-1.0.17-1.el6.i686.rpm
    librdmacm-static-1.0.17-1.el6.i686.rpm
    librdmacm-utils-1.0.17-1.el6.i686.rpm
    openmpi-devel-1.5.4-2.el6.i686.rpm
    ibutils-1.5.7-8.el6.i686.rpm
    ibutils-debuginfo-1.5.7-8.el6.i686.rpm
    ibutils-libs-1.5.7-8.el6.i686.rpm
    mpitests-debuginfo-3.2-9.el6.i686.rpm
    mpitests-mvapich-3.2-9.el6.i686.rpm
    mpitests-mvapich2-3.2-9.el6.i686.rpm
    mpitests-openmpi-3.2-9.el6.i686.rpm
    mstflint-3.0-0.6.g6961daa.1.el6.i686.rpm
    mstflint-debuginfo-3.0-0.6.g6961daa.1.el6.i686.rpm
    perftest-2.0-2.el6.i686.rpm
    perftest-debuginfo-2.0-2.el6.i686.rpm
    qperf-0.4.9-1.el6.i686.rpm
    qperf-debuginfo-0.4.9-1.el6.i686.rpm
    ibutils-devel-1.5.7-8.el6.i686.rpm
  noarch
    rdma-3.10-3.el6.noarch.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2

LISTSERV.FNAL.GOV