Red Hat Product Errata RHBA-2011:1842 - Bug Fix Advisory

Issued:: 2011-12-20
Updated:: 2011-12-20

RHBA-2011:1842 - Bug Fix Advisory

Overview
Updated Packages

Synopsis

certmonger bug fix update

Type/Severity

Bug Fix Advisory

Topic

An updated certmonger package that fixes one bug is now available for Red Hat
Enterprise Linux 5.

[Updated 20 December 2011]
This advisory has been updated with the correct product name (that is, Red Hat
Enterprise Linux 5) in the Details section. The package included in this revised
update has not been changed in any way from the package included in the original
advisory.

Description

The certmonger service monitors certificates, warning of their impending
expiration, and optionally attempting to re-enroll with supported CAs
(Certificate Authorities).

This update fixes the following bug:

The RHSA-2011-1533 security advisory, which fixed a security vulnerability in
the IPA (Identity, Policy and Audit) web-based service, caused incompatibility
with older versions of certmonger. As a consequence, certmonger was unable to
correctly submit enrollment requests to IPA's CA. With this update, certmonger
has been modified and it now operates correctly with newer versions of IPA.
Interoperability with older versions of IPA remains unaffected. (BZ#767573)

All users of certmonger are advised to upgrade to this updated package, which
fixes this bug.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Red Hat Enterprise Linux Server 5 x86_64
Red Hat Enterprise Linux Server 5 ia64
Red Hat Enterprise Linux Server 5 i386
Red Hat Enterprise Linux Workstation 5 x86_64
Red Hat Enterprise Linux Workstation 5 i386
Red Hat Enterprise Linux Desktop 5 x86_64
Red Hat Enterprise Linux Desktop 5 i386
Red Hat Enterprise Linux for IBM z Systems 5 s390x
Red Hat Enterprise Linux for Power, big endian 5 ppc
Red Hat Enterprise Linux Server from RHUI 5 x86_64
Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

BZ - 767573 - certmonger: Requires client-side changes for server-side fixes (due to CVE-2011-3636) [rhel-5.7.z]

CVEs

(none)

References

(none)

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
x86_64
certmonger-0.42-1.el5_7.2.x86_64.rpm	SHA-256: 047e84603b5dc1b2a036a3beb0d3338f68ec2a1560b849105db397d43dae22ce
ia64
certmonger-0.42-1.el5_7.2.ia64.rpm	SHA-256: 0cae608f3018df81375af11f8dace1f3db0f81656a63edcc77ca47432f6b4455
i386
certmonger-0.42-1.el5_7.2.i386.rpm	SHA-256: e95037ab029ac8d012d7b1d58c2c9e5843b0521192e4ac9bf5acc4dfdcb4970c

Red Hat Enterprise Linux Workstation 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
x86_64
certmonger-0.42-1.el5_7.2.x86_64.rpm	SHA-256: 047e84603b5dc1b2a036a3beb0d3338f68ec2a1560b849105db397d43dae22ce
i386
certmonger-0.42-1.el5_7.2.i386.rpm	SHA-256: e95037ab029ac8d012d7b1d58c2c9e5843b0521192e4ac9bf5acc4dfdcb4970c

Red Hat Enterprise Linux Desktop 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
x86_64
certmonger-0.42-1.el5_7.2.x86_64.rpm	SHA-256: 047e84603b5dc1b2a036a3beb0d3338f68ec2a1560b849105db397d43dae22ce
i386
certmonger-0.42-1.el5_7.2.i386.rpm	SHA-256: e95037ab029ac8d012d7b1d58c2c9e5843b0521192e4ac9bf5acc4dfdcb4970c

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
s390x
certmonger-0.42-1.el5_7.2.s390x.rpm	SHA-256: a7a5e173035c4407732452747239965fa3e0d8abd88d795b5bb71e38a4a31aa7

Red Hat Enterprise Linux for Power, big endian 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
ppc
certmonger-0.42-1.el5_7.2.ppc.rpm	SHA-256: 0ea1a2c291945c165c3722a84752b94ca75771894d32f67da722b84d18b49c83

Red Hat Enterprise Linux Server from RHUI 5

SRPM
certmonger-0.42-1.el5_7.2.src.rpm	SHA-256: d3ee99adfd272552a45515cbd73217d73bed577be3bb3797620266c55fd9ac90
x86_64
certmonger-0.42-1.el5_7.2.x86_64.rpm	SHA-256: 047e84603b5dc1b2a036a3beb0d3338f68ec2a1560b849105db397d43dae22ce
i386
certmonger-0.42-1.el5_7.2.i386.rpm	SHA-256: e95037ab029ac8d012d7b1d58c2c9e5843b0521192e4ac9bf5acc4dfdcb4970c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories