- Issued:
- 2012-06-20
- Updated:
- 2012-06-20
RHEA-2012:0974 - Product Enhancement Advisory
Synopsis
rpcbind enhancement update
Type/Severity
Product Enhancement Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
Enhanced rpcbind packages that add one enhancement are now available for
Red Hat Enterprise Linux 6.
Description
The rpcbind utility maps RPC (Remote Procedure Call) services to the ports
on which the services listen and allows the host to make RPC calls to the
RPC server.
This update adds the following enhancement:
- The rpcbind tool did not drop supplementary groups and the groups
remained available after rpcbind downgraded from root-group privileges.
As a security hardening measure, rpcbind now drops root privileges
correctly, running as a non-root user after it has bound to its privileged
network port. (BZ#726954)
Users of rpcbind are advised to upgrade to these enhanced packages, which
add this enhancement.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x
Fixes
- BZ - 726954 - rpcbind should drop supplemental groups
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| s390x | |
| rpcbind-0.2.0-9.el6.s390x.rpm | SHA-256: 340532019784ea72d51c699ea52bf6dde0f9eb88c003a15fb5a9324a35a46af4 |
| rpcbind-debuginfo-0.2.0-9.el6.s390x.rpm | SHA-256: c11c5a63ae752d5af999505998dfda53711f7fbdcbb824e1f92ddb1e6c408721 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| ppc64 | |
| rpcbind-0.2.0-9.el6.ppc64.rpm | SHA-256: c43bd610197cbfdd168cbc66ae8d739b61801975af8db9c5948f62b10deacb9e |
| rpcbind-debuginfo-0.2.0-9.el6.ppc64.rpm | SHA-256: d43f6e8bfcc3832b1401c23576b3a88d3de79cb94f08b169b6eb865bb2c68dac |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| s390x | |
| rpcbind-0.2.0-9.el6.s390x.rpm | SHA-256: 340532019784ea72d51c699ea52bf6dde0f9eb88c003a15fb5a9324a35a46af4 |
| rpcbind-debuginfo-0.2.0-9.el6.s390x.rpm | SHA-256: c11c5a63ae752d5af999505998dfda53711f7fbdcbb824e1f92ddb1e6c408721 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| x86_64 | |
| rpcbind-0.2.0-9.el6.x86_64.rpm | SHA-256: d62d01bb615181b799843c9f13e3399be6a50bee3d0c316711713fc03cb04568 |
| rpcbind-debuginfo-0.2.0-9.el6.x86_64.rpm | SHA-256: 00b907f364a4d55b9cf10cfbd18de6b51d48e0ad3cfc66e2daf3ee4a1c9af8fd |
| i386 | |
| rpcbind-0.2.0-9.el6.i686.rpm | SHA-256: 2a470012e743f57511bf2ca28a644119221f03daf0cfdbc6c573ad9b94d4bd5e |
| rpcbind-debuginfo-0.2.0-9.el6.i686.rpm | SHA-256: e16d50ab2aaa72744de4c5068c448796fddbe54bc8580dc717f67b191a81981a |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6
| SRPM | |
|---|---|
| rpcbind-0.2.0-9.el6.src.rpm | SHA-256: a22504524b18a2ccc699a63bd21a5253ef812bcd6e4b31470dc2fc06ee369358 |
| s390x | |
| rpcbind-0.2.0-9.el6.s390x.rpm | SHA-256: 340532019784ea72d51c699ea52bf6dde0f9eb88c003a15fb5a9324a35a46af4 |
| rpcbind-debuginfo-0.2.0-9.el6.s390x.rpm | SHA-256: c11c5a63ae752d5af999505998dfda53711f7fbdcbb824e1f92ddb1e6c408721 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
