Synopsis: Moderate: RDMA stack security, bug fix, and enhancement update Advisory ID: SLSA-2013:1661-2 Issue Date: 2013-11-21 CVE Numbers: CVE-2012-4516 CVE-2013-2561 -- A flaw was found in the way ibutils handled temporary files. A local attacker could use this flaw to cause arbitrary files to be overwritten as the root user via a symbolic link attack. (CVE-2013-2561) It was discovered that librdmacm used a static port to connect to the ib_acm service. A local attacker able to run a specially crafted ib_acm service on that port could use this flaw to provide incorrect address resolution information to librmdacm applications. (CVE-2012-4516) This advisory updates the following packages to the latest upstream releases, providing a number of bug fixes and enhancements over the previous versions: Several bugs have been fixed in the openmpi, mpitests, ibutils, and infinipath-psm packages. The most notable changes in these updated packages from the RDMA stack are the following: * Multiple bugs in the Message Passing Interface (MPI) test packages were resolved, allowing more of the mpitest applications to pass on the underlying MPI implementations. * The libmlx4 package now includes dracut module files to ensure that any necessary custom configuration of mlx4 port types is included in the initramfs dracut builds. * Multiple test programs in the perftest and qperf packages now work properly over RoCE interfaces, or when specifying the use of rdmacm queue pairs. * The mstflint package has been updated to the latest upstream version, which is now capable of burning firmware on newly released Mellanox Connect-IB hardware. * A compatibility problem between the openmpi and infinipath-psm packages has been resolved with new builds of these packages. -- SL6 x86_64 infinipath-psm-3.0.1-115.1015_open.2.el6.x86_64.rpm infinipath-psm-debuginfo-3.0.1-115.1015_open.2.el6.x86_64.rpm libibverbs-1.1.7-1.el6.i686.rpm libibverbs-1.1.7-1.el6.x86_64.rpm libibverbs-debuginfo-1.1.7-1.el6.i686.rpm libibverbs-debuginfo-1.1.7-1.el6.x86_64.rpm librdmacm-1.0.17-1.el6.i686.rpm librdmacm-1.0.17-1.el6.x86_64.rpm librdmacm-debuginfo-1.0.17-1.el6.i686.rpm librdmacm-debuginfo-1.0.17-1.el6.x86_64.rpm openmpi-1.5.4-2.el6.x86_64.rpm openmpi-debuginfo-1.5.4-2.el6.x86_64.rpm infinipath-psm-devel-3.0.1-115.1015_open.2.el6.x86_64.rpm libibverbs-devel-1.1.7-1.el6.i686.rpm libibverbs-devel-1.1.7-1.el6.x86_64.rpm libibverbs-devel-static-1.1.7-1.el6.x86_64.rpm libibverbs-utils-1.1.7-1.el6.x86_64.rpm libmlx4-1.0.5-4.el6.1.i686.rpm libmlx4-1.0.5-4.el6.1.x86_64.rpm libmlx4-debuginfo-1.0.5-4.el6.1.i686.rpm libmlx4-debuginfo-1.0.5-4.el6.1.x86_64.rpm libmlx4-static-1.0.5-4.el6.1.x86_64.rpm librdmacm-devel-1.0.17-1.el6.i686.rpm librdmacm-devel-1.0.17-1.el6.x86_64.rpm librdmacm-static-1.0.17-1.el6.x86_64.rpm librdmacm-utils-1.0.17-1.el6.x86_64.rpm openmpi-1.5.4-2.el6.i686.rpm openmpi-debuginfo-1.5.4-2.el6.i686.rpm openmpi-devel-1.5.4-2.el6.i686.rpm openmpi-devel-1.5.4-2.el6.x86_64.rpm ibutils-1.5.7-8.el6.x86_64.rpm ibutils-debuginfo-1.5.7-8.el6.i686.rpm ibutils-debuginfo-1.5.7-8.el6.x86_64.rpm ibutils-libs-1.5.7-8.el6.i686.rpm ibutils-libs-1.5.7-8.el6.x86_64.rpm mpitests-debuginfo-3.2-9.el6.x86_64.rpm mpitests-mvapich-3.2-9.el6.x86_64.rpm mpitests-mvapich2-3.2-9.el6.x86_64.rpm mpitests-openmpi-3.2-9.el6.x86_64.rpm mstflint-3.0-0.6.g6961daa.1.el6.x86_64.rpm mstflint-debuginfo-3.0-0.6.g6961daa.1.el6.x86_64.rpm perftest-2.0-2.el6.x86_64.rpm perftest-debuginfo-2.0-2.el6.x86_64.rpm qperf-0.4.9-1.el6.x86_64.rpm qperf-debuginfo-0.4.9-1.el6.x86_64.rpm ibutils-devel-1.5.7-8.el6.i686.rpm ibutils-devel-1.5.7-8.el6.x86_64.rpm mpitests-mvapich-psm-3.2-9.el6.x86_64.rpm mpitests-mvapich2-psm-3.2-9.el6.x86_64.rpm i386 libibverbs-1.1.7-1.el6.i686.rpm libibverbs-debuginfo-1.1.7-1.el6.i686.rpm librdmacm-1.0.17-1.el6.i686.rpm librdmacm-debuginfo-1.0.17-1.el6.i686.rpm openmpi-1.5.4-2.el6.i686.rpm openmpi-debuginfo-1.5.4-2.el6.i686.rpm libibverbs-devel-1.1.7-1.el6.i686.rpm libibverbs-devel-static-1.1.7-1.el6.i686.rpm libibverbs-utils-1.1.7-1.el6.i686.rpm libmlx4-1.0.5-4.el6.1.i686.rpm libmlx4-debuginfo-1.0.5-4.el6.1.i686.rpm libmlx4-static-1.0.5-4.el6.1.i686.rpm librdmacm-devel-1.0.17-1.el6.i686.rpm librdmacm-static-1.0.17-1.el6.i686.rpm librdmacm-utils-1.0.17-1.el6.i686.rpm openmpi-devel-1.5.4-2.el6.i686.rpm ibutils-1.5.7-8.el6.i686.rpm ibutils-debuginfo-1.5.7-8.el6.i686.rpm ibutils-libs-1.5.7-8.el6.i686.rpm mpitests-debuginfo-3.2-9.el6.i686.rpm mpitests-mvapich-3.2-9.el6.i686.rpm mpitests-mvapich2-3.2-9.el6.i686.rpm mpitests-openmpi-3.2-9.el6.i686.rpm mstflint-3.0-0.6.g6961daa.1.el6.i686.rpm mstflint-debuginfo-3.0-0.6.g6961daa.1.el6.i686.rpm perftest-2.0-2.el6.i686.rpm perftest-debuginfo-2.0-2.el6.i686.rpm qperf-0.4.9-1.el6.i686.rpm qperf-debuginfo-0.4.9-1.el6.i686.rpm ibutils-devel-1.5.7-8.el6.i686.rpm noarch rdma-3.10-3.el6.noarch.rpm - Scientific Linux Development Team