RHBA-2007:0316 - Bug Fix Advisory

Topic

An updated nfs-utils package that fixes various issues is now available.

Description

The nfs-utils package provides a daemon for the kernel NFS server and
related tools, providing a much higher level of performance than the
traditional Linux NFS server used by most users.

This update contains the following bug fixes:

• Fixed an nfsv4 server issue that prevented proper client authentication

against a windows kdc kerberos server

• Allowed variable for HA callout program in /etc/init.d/nfslock
• Stopped binaries and libs from being stripped when they were installed in

the build root, making the debuginfo rpm much more useful. (bz 209121)

• Corrected a typo in nfs initscript
• Fixed the -o flag in rpc.statd
• Fixed the memory leak in dirscancb
• Fixed use after free segfault made reproducible by memory leak patch
• Reorganized and condensed local, upstream and CITI patches
• Added default mapping to rpc.gsssvcd
• Made rmtab use ip addrs, and added -r flag to mountd
• Eliminated timeout on shutdowns
• Added NFSv4 support to nfsstat
• Fixed some memory leaks in rpc.svcgssd
• Fixed problems on 64-bit archs when referencing the OID
• Idmapd now flushes the nfs4.idtoname cache when server starts
• Fixed idmapd debugging so it works in daemon mode
• Improved gssd and svcgssd debugging
• Added supplementary group support to svcgssd
• Fixed idmapd's -f flags so messages get logged to stderr
• Fixed the handling of minor numbers greater than 255
• Fixed rpc.statd not to run as root

Users are advised to upgrade to this updated package, which applies these
fixes.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Affected Products

• Red Hat Enterprise Linux Server 4 x86_64
• Red Hat Enterprise Linux Server 4 ia64
• Red Hat Enterprise Linux Server 4 i386
• Red Hat Enterprise Linux Workstation 4 x86_64
• Red Hat Enterprise Linux Workstation 4 ia64
• Red Hat Enterprise Linux Workstation 4 i386
• Red Hat Enterprise Linux Desktop 4 x86_64
• Red Hat Enterprise Linux Desktop 4 i386
• Red Hat Enterprise Linux for IBM z Systems 4 s390x
• Red Hat Enterprise Linux for IBM z Systems 4 s390
• Red Hat Enterprise Linux for Power, big endian 4 ppc

Fixes

• BZ - 157028 - Memory leak in rpc.idmapd
• BZ - 176085 - nfvs4 server cannot authenticate a client against windows kdc kerberos server
• BZ - 201897 - Allow variable for HA callout program in /etc/init.d/nfslock
• BZ - 203239 - krb5 support is broken under x86_64 (regression)
• BZ - 209121 - debuginfo rpm does not contain any files
• BZ - 210283 - [RHEL4] When the port number for the outgoing is specified by the rpc.statd -o command, the specified port number is not generated.
• BZ - 212220 - rpc.idmapd -f flag does not make log messages go to stderr
• BZ - 218231 - NFSd shutdown is very slow due to script bug
• BZ - 221515 - Idmapd should flush the server id<->name caches when its started.
• BZ - 221518 - svcgssd needs supplementary groups support.
• BZ - 221520 - Idmapd error's processing is broken.
• BZ - 221527 - nfsstat needs v4 support
• BZ - 221529 - rpc.gssd does not handle 64-bit OID conversions correctly
• BZ - 221531 - Memory Leaks in svcgssd
• BZ - 221533 - Incorporate some recent improvements to the rpc.gssd debugging.
• BZ - 228868 - [EMC/Symantec RHEL 4.5 FEAT] nfs-utils requires updating (can't handle minor number greater than 255)

CVEs

(none)

References

(none)