- Issued:
- 2019-02-26
- Updated:
- 2019-02-26
RHBA-2019:0414 - Bug Fix Advisory
Synopsis
sos security advisory
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated sos package that fixes two bugs is now available for Red Hat Enterprise Linux 6.
Description
The sos package contains a set of utilities that gather information from system hardware, logs, and configuration files. The information can then be used for diagnostic purposes and debugging.
This update fixes the following bugs:
- When executing the "pkcs11_inspect debug" command, the sosreport tool previously timed out without asking for PIN. The sosreport tool has been updated not to collect the "pkcs11_inspect debug" output. As a result, sosreport no longer times out without asking for PIN at "pkcs11_inspect debug". (BZ#1567063)
- When running the sosreport tool on Red Hat Satellite 5, the satellite plug-in previously collected all private keys and CA certificates. Consequently, user's sensitive data could leak. With this update, the satellite plug-in has been fixed to perform only recursive listing of the /root/ssl-build directory. As a result, the satellite plug-in no longer exposes the sensitive data to potential security breach. (BZ#1667018)
Users of sos are advised to upgrade to this updated package, which fixes these bugs.
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x
Fixes
(none)CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| i386 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| i386 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| i386 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| i386 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| s390x | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| ppc64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| s390x | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| x86_64 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
| i386 | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6
| SRPM | |
|---|---|
| sos-3.2-63.el6_10.3.src.rpm | SHA-256: f22e72db41f07ae8afae105ab0c82b9b09e9752f03d136bd9043e4cc24b19d81 |
| s390x | |
| sos-3.2-63.el6_10.3.noarch.rpm | SHA-256: fb2200a32d849a87e6edac98187dce49c42eb06492f15331cea246c7fab276ea |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
