LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

SCIENTIFIC-LINUX-ERRATA Archives

December 2016

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

	LISTSERV Archives
	SCIENTIFIC-LINUX-ERRATA Home
	SCIENTIFIC-LINUX-ERRATA December 2016

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Security ERRATA Moderate: firewalld on SL7.x (noarch)
From:	Scott Reid <[log in to unmask]>
Reply To:	[log in to unmask]
Date:	Wed, 14 Dec 2016 18:14:01 -0000
Content-Type:	text/plain
Parts/Attachments:	text/plain (29 lines)

Synopsis:          Moderate: firewalld security, bug fix, and enhancement update
Advisory ID:       SLSA-2016:2597-2
Issue Date:        2016-11-03
CVE Numbers:       CVE-2016-5410
--

The following packages have been upgraded to a newer upstream version:
firewalld (0.4.3.2).

Security Fix(es):

* A flaw was found in the way firewalld allowed certain firewall
configurations to be modified by unauthenticated users. Any locally logged
in user could use this flaw to tamper or change firewall settings.
(CVE-2016-5410)

Additional Changes:
--

SL7
  noarch
    firewall-config-0.4.3.2-8.el7.noarch.rpm
    firewalld-0.4.3.2-8.el7.noarch.rpm
    firewalld-filesystem-0.4.3.2-8.el7.noarch.rpm
    python-firewall-0.4.3.2-8.el7.noarch.rpm
    firewall-applet-0.4.3.2-8.el7.noarch.rpm

- Scientific Linux Development Team

ATOM RSS1 RSS2

LISTSERV.FNAL.GOV