- Issued:
- 2013-01-07
- Updated:
- 2013-01-07
RHBA-2012:1217 - Bug Fix Advisory
Synopsis
logwatch bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated logwatch package that fixes various bugs is now available.
Description
Logwatch is a customizable, pluggable log-monitoring system. It will go through
your logs for a given period of time and make a report in the areas that you
wish with the detail that you wish. Easy to use - works right out of the package
on many systems.
This updated logwatch package includes fixes for the following bugs:
- Due to an incorrect regular expression, positive changes in temperatures
reported by the smartd daemon were shown as unmatched entries in the logwatch
output. This update fixes the faulty regular expression and temperature log
information is now displayed correctly. (BZ#578806)
- Prior to this update, logwatch did not correctly parse the RSYSLOG_FileFormat
time stamps and displayed them as unmatched entries. With this update, parsing
of the rsyslog time stamps has been fixed and works as expected. (BZ#583607)
- Yum's "applydate" time ranges were not correctly parsed by logwatch and were
displayed as unmatched entries. This has been fixed and "applydate" time ranges
are no longer displayed as unmatched entries. (BZ#583721)
- Xen virtual console logins were not correctly parsed by logwatch and were
displayed as unmatched entries. This update fixes this bug. (BZ#595068)
- Logins initiated with the "su -" or "su -l" command were not correctly parsed
by logwatch and were displayed as unmatched entries. This update fixes this bug.
(BZ#668067)
- SSH Kerberos (GSS) logins were not correctly parsed by logwatch and were
displayed as unmatched entries. This update fixes this bug. (BZ#684577)
All users of logwatch are advised to upgrade to this updated package, which
fixes these bugs.
Solution
Before applying this update, make sure that all previously-released errata
relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 578806 - does not properly parse temperature changes reported by smartd
- BZ - 583607 - logwatch must understand RSYSLOG_FileFormat timestamps
- BZ - 583721 - yum's applydate does not properly catch time ranges
- BZ - 595068 - Logins through xen virt console are under unmatched entries
- BZ - 668067 - logwatch shows unknown entries for su -
- BZ - 684577 - Logwatch does not recognise ssh Kerberos (GSS) logins.
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| x86_64 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
| ia64 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
| i386 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
Red Hat Enterprise Linux Workstation 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| x86_64 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
| i386 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
Red Hat Enterprise Linux Desktop 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| x86_64 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
| i386 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
Red Hat Enterprise Linux for IBM z Systems 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| s390x | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
Red Hat Enterprise Linux for Power, big endian 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| ppc | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
Red Hat Enterprise Linux Server from RHUI 5
| SRPM | |
|---|---|
| logwatch-7.3-10.el5.src.rpm | SHA-256: 4977ec8a0b502e77b227400c248a2dbcdb6afe16b54cf7152665650961a486e8 |
| x86_64 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
| i386 | |
| logwatch-7.3-10.el5.noarch.rpm | SHA-256: 658e2be6d6a972348137e1eeda1fe7c62625067ad40443d21f0a3a011fbe69d9 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
