RHSA-2012:0153 - Security Advisory

Sujet

An updated sos package that fixes one security issue, several bugs, and
adds various enhancements is now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having low
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

Description

Sos is a set of tools that gather information about system hardware and
configuration.

The sosreport utility incorrectly included Certificate-based Red Hat
Network private entitlement keys in the resulting archive of debugging
information. An attacker able to access the archive could use the keys to
access Red Hat Network content available to the host. This issue did not
affect users of Red Hat Network Classic. (CVE-2011-4083)

This updated sos package also includes numerous bug fixes and enhancements.
Space precludes documenting all of these changes in this advisory. Users
are directed to the Red Hat Enterprise Linux 5.8 Technical Notes, linked
to in the References, for information on the most significant of these
changes.

All sos users are advised to upgrade to this updated package, which
resolves these issues and adds these enhancements.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Produits concernés

• Red Hat Enterprise Linux Server 5 x86_64
• Red Hat Enterprise Linux Server 5 ia64
• Red Hat Enterprise Linux Server 5 i386
• Red Hat Enterprise Linux Workstation 5 x86_64
• Red Hat Enterprise Linux Workstation 5 i386
• Red Hat Enterprise Linux Desktop 5 x86_64
• Red Hat Enterprise Linux Desktop 5 i386
• Red Hat Enterprise Linux for IBM z Systems 5 s390x
• Red Hat Enterprise Linux for Power, big endian 5 ppc
• Red Hat Enterprise Linux Server from RHUI 5 x86_64
• Red Hat Enterprise Linux Server from RHUI 5 i386

Correctifs

• BZ - 627416 - sos rfe - request to update sos plugin cs.py for Red Hat Certificate System
• BZ - 641020 - [RFE] improve sos plugin to capture MRG GRID related information
• BZ - 655046 - sosreport French translation of y/n prompt is wrong and confusing
• BZ - 673246 - [RFE] include output of ibv_devinfo command (libibverbs-utils package) in sosreport
• BZ - 677123 - RFE: iSCSI Target plugin for sosreport.
• BZ - 708346 - sosreport hangs the system when multiple SIGTERMs received
• BZ - 716987 - Relative symlink in created report for truncated log files is wrong
• BZ - 717167 - make non-standard log file collection more robust
• BZ - 717480 - Fix problems hidden by __raisePlugins__ = 0, create logging for plugin errors
• BZ - 717962 - When copying directory into report using addCopySpec, links inside are not handled correctly
• BZ - 726421 - [RFE] sosreport should collect the result of ethtool -g, ethtool -c, and ethtool -a by default
• BZ - 749383 - CVE-2011-4083 sos: sosreport is gathering certificate-based RHN entitlement private keys
• BZ - 750573 - sosreport cluster modules fail with badly formed cluster.conf

CVE

• CVE-2011-4083

Références

• https://access.redhat.com/security/updates/classification/#low
• https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.8_Technical_Notes/sos.html#RHSA-2012-0153