SCIENTIFIC-LINUX-ERRATA Archives

January 2014

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Security ERRATA Moderate: augeas on SL6.x i386/x86_64
From:
Pat Riehecky <[log in to unmask]>
Reply To:
[log in to unmask]
Date:
Tue, 21 Jan 2014 13:53:20 +0000
Content-Type:
text/plain
Parts/Attachments:
text/plain (32 lines) 
Synopsis:          Moderate: augeas security update
Advisory ID:       SLSA-2014:0044-1
Issue Date:        2014-01-20
CVE Numbers:       CVE-2013-6412
--

A flaw was found in the way Augeas handled certain umask settings when
creating new configuration files. This flaw could result in configuration
files being created as world writable, allowing unprivileged local users
to modify their content. (CVE-2013-6412)

All running applications using augeas must be restarted for the update to
take effect.
--

SL6
  x86_64
    augeas-debuginfo-1.0.0-5.el6_5.1.i686.rpm
    augeas-debuginfo-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-libs-1.0.0-5.el6_5.1.i686.rpm
    augeas-libs-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-devel-1.0.0-5.el6_5.1.i686.rpm
    augeas-devel-1.0.0-5.el6_5.1.x86_64.rpm
  i386
    augeas-debuginfo-1.0.0-5.el6_5.1.i686.rpm
    augeas-libs-1.0.0-5.el6_5.1.i686.rpm
    augeas-1.0.0-5.el6_5.1.i686.rpm
    augeas-devel-1.0.0-5.el6_5.1.i686.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2