Synopsis: Moderate: aide security update Issue date: 2007-09-04 CVE Names: CVE-2007-3849 A flaw was discovered in the way file checksums were stored in the AIDE database. A packaging flaw in the Red Hat AIDE rpm resulted in the file database not containing any file checksum information. This could prevent AIDE from detecting certain file modifications. (CVE-2007-3849) This update also fixes the following bugs: * certain configurations could result in a segmentation fault upon initialization. * AIDE was unable to open its log file in the LSPP evaluated configuration. * if AIDE found SELinux context differences, the changed files report it generated only included the first 32 characters of the context. SL 5.x SRPMS: aide-0.13.1-2.0.4.el5.src.rpm i386: aide-0.13.1-2.0.4.el5.i386.rpm x86_64: aide-0.13.1-2.0.4.el5.x86_64.rpm -Connie Sieh -Troy Dawson