Synopsis:          Moderate: augeas security update
Advisory ID:       SLSA-2014:0044-1
Issue Date:        2014-01-20
CVE Numbers:       CVE-2013-6412
--

A flaw was found in the way Augeas handled certain umask settings when
creating new configuration files. This flaw could result in configuration
files being created as world writable, allowing unprivileged local users
to modify their content. (CVE-2013-6412)

All running applications using augeas must be restarted for the update to
take effect.
--

SL6
  x86_64
    augeas-debuginfo-1.0.0-5.el6_5.1.i686.rpm
    augeas-debuginfo-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-libs-1.0.0-5.el6_5.1.i686.rpm
    augeas-libs-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-1.0.0-5.el6_5.1.x86_64.rpm
    augeas-devel-1.0.0-5.el6_5.1.i686.rpm
    augeas-devel-1.0.0-5.el6_5.1.x86_64.rpm
  i386
    augeas-debuginfo-1.0.0-5.el6_5.1.i686.rpm
    augeas-libs-1.0.0-5.el6_5.1.i686.rpm
    augeas-1.0.0-5.el6_5.1.i686.rpm
    augeas-devel-1.0.0-5.el6_5.1.i686.rpm

- Scientific Linux Development Team