Red Hat Product Errata RHSA-2015:0708 - Security Advisory

Issued:: 2015-03-19
Updated:: 2015-03-19

RHSA-2015:0708 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: qpid security and bug fix update

Type/Severity

Security Advisory: Moderate

Topic

Updated qpid packages that fix multiple security issues and one bug are now
available for Red Hat Enterprise MRG 3 for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having Moderate security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.

Description

Red Hat Enterprise MRG is a next-generation IT infrastructure incorporating
Messaging, Real Time, and Grid functionality. It offers increased
performance, reliability, interoperability, and faster computing for
enterprise customers.

MRG Messaging is a high-speed reliable messaging distribution for Linux
based on AMQP (Advanced Message Queuing Protocol), an open protocol
standard for enterprise messaging that is designed to make mission critical
messaging widely available as a standard service, and to make enterprise
messaging interoperable across platforms, programming languages, and
vendors.

MRG Messaging includes AMQP messaging broker; AMQP client libraries for
C++, Java JMS, and Python; as well as persistence libraries and
management tools.

It was discovered that the Qpid daemon (qpidd) did not restrict access to
anonymous users when the ANONYMOUS mechanism was disallowed.
(CVE-2015-0223)

A flaw was found in the way the Qpid daemon (qpidd) processed certain
protocol sequences. An unauthenticated attacker able to send a specially
crafted protocol sequence set that could use this flaw to crash qpidd.
(CVE-2015-0203, CVE-2015-0224)

Red Hat would like to thank the Apache Software Foundation for reporting
the CVE-2015-0203 issue. Upstream acknowledges G. Geshev from MWR Labs as
the original reporter.

This update also fixes the following bugs:

Previously, the neutron messaging client rewrote (by method of
"monkey-patching") the python selector module to support eventlet
threading. The rewritten client did not update select.poll() during this
process, which is used by qpid-python to manage I/O. This resulted in
poll() deadlocks and neutron server hangs. The fix introduces updates to
the python-qpid library that avoid calling poll() if eventlet threading is
detected. Instead, the eventlet-aware select() is called, which prevents
deadlocks from occurring and corrects the originally reported issue.
(BZ#1175872)
It was discovered that the QPID Broker aborted with an uncaught
UnknownExchangeTypeException when the client attempted to request an
unsupported exchange type. The code for the Exchange Registry and Node
Policy has been improved to prevent this issue from happening again.
(BZ#1186694)

Users of the Messaging capabilities of Red Hat Enterprise MRG 3, which is
layered on Red Hat Enterprise Linux 7, are advised to upgrade to these
updated packages, which correct these issues.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise MRG Messaging 3 for RHEL 7 3 x86_64

Fixes

BZ - 1181721 - CVE-2015-0203 qpid-cpp: 3 qpidd DoS issues in AMQP 0-10 protocol handling
BZ - 1186302 - CVE-2015-0224 qpid-cpp: AMQP 0-10 protocol sequence-set maximal range DoS (incomplete CVE-2015-0203 fix)
BZ - 1186308 - CVE-2015-0223 qpid-cpp: anonymous access to qpidd cannot be prevented

CVEs

References

http://www.redhat.com/security/updates/classification/#normal

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise MRG Messaging 3 for RHEL 7 3

SRPM
libdb-5.3.21-17.el7_0.1.src.rpm	SHA-256: 12605ebba2a8d3fb2817ba037b2a8a75199cc03d9eada04c660b3a18fde00e05
python-qpid-0.22-19.el7.src.rpm	SHA-256: b9b506e216795a353f55865015e017d1ffbd16e54ee38f92ca32f261a6045e66
qpid-cpp-0.22-51.el7.src.rpm	SHA-256: 460b37bb421681e23814f223736498f5407c7cecab3413a143faac3de017582d
qpid-qmf-0.22-41.el7.src.rpm	SHA-256: a987ce0ab39d88a623ad637a17092a0f092d347a4d9f82b165b180b35590bd3f
x86_64
libdb-cxx-5.3.21-17.el7_0.1.x86_64.rpm	SHA-256: 36d7e2c4850173219ce2906d398534136a4c4f3f32c3a30c5fe95c7206916055
libdb-cxx-devel-5.3.21-17.el7_0.1.x86_64.rpm	SHA-256: 8ce7f0c9668ac4cd040179e78f914d6f2964d294c262272dceb88640f9f1a0ba
libdb-debuginfo-5.3.21-17.el7_0.1.x86_64.rpm	SHA-256: b3ab3be11e0392d48ce37ee191faff2d6eab82bbb163d9511437943952040393
python-qpid-0.22-19.el7.noarch.rpm	SHA-256: 42ff8f30f319450767ade247759d8f050a37d1631bc212a069e5f6d46ccfd617
python-qpid-qmf-0.22-41.el7.x86_64.rpm	SHA-256: b67b9836c4faf2b73884d1f60abc16cb0286c00678c85549c114e015500e61db
qpid-cpp-client-0.22-51.el7.i686.rpm	SHA-256: ec23c16494d51e5c838bfae8eaa262947ef8579e1f44e6fd6e2ff92d04f4c873
qpid-cpp-client-0.22-51.el7.x86_64.rpm	SHA-256: 3aff69befbe4b83edc311fd685bf27a9f1d63d42bd898aed3af393ced09578bd
qpid-cpp-client-devel-0.22-51.el7.x86_64.rpm	SHA-256: 5a686290e6244b9c20c8dc7ae75d3990a9d57c46cdb527023f4bc44bc191b207
qpid-cpp-client-devel-docs-0.22-51.el7.noarch.rpm	SHA-256: 47cbcf8d1bd9cbeadc1a7e3b6ed46034c1ecb9b4e72bd88bfa87f3f435b0b46a
qpid-cpp-client-rdma-0.22-51.el7.x86_64.rpm	SHA-256: 8e452d2cf02338b1bf779405c259098ef73d32068da88d48b3e38e3e4447a008
qpid-cpp-debuginfo-0.22-51.el7.i686.rpm	SHA-256: 054c753121677acb5c407b0eb58ef394df260bee56ae022ee354c88a7f115a17
qpid-cpp-debuginfo-0.22-51.el7.x86_64.rpm	SHA-256: 1ba650d77be22839f355dcfa18f3608b0eb0849af16299c9b67f861214978044
qpid-cpp-server-0.22-51.el7.i686.rpm	SHA-256: 9f58e4912d2b796e4d51933c1133a8052a07eb325115bdd7c6adf422f7311b48
qpid-cpp-server-0.22-51.el7.x86_64.rpm	SHA-256: 42ebf9db2ec98480718832905d56cbd0cbed66cc16781d9456c91b36d0c41a52
qpid-cpp-server-devel-0.22-51.el7.x86_64.rpm	SHA-256: 2eaed4b3f4cac5a4e43e6a36b721bdd632d079dd1f8560d62b9e922532caa806
qpid-cpp-server-ha-0.22-51.el7.x86_64.rpm	SHA-256: a9806cb7805963091709d2d09a643d942de91f5fd05225bb077038f0295c7281
qpid-cpp-server-linearstore-0.22-51.el7.x86_64.rpm	SHA-256: e39c5f00d2e8a709798b8c23dd52a36f17cef7d2544711220ef903a92fdd5fb5
qpid-cpp-server-rdma-0.22-51.el7.x86_64.rpm	SHA-256: e5e70ac7caa21c03f0be0e86c19032cb9a2a688c16e689133c9c8e1f3aa738ac
qpid-qmf-0.22-41.el7.i686.rpm	SHA-256: b928f3a16f7babe1390562d2e2c47076d99faec6693ee8eae1ac54b762e654ca
qpid-qmf-0.22-41.el7.x86_64.rpm	SHA-256: 306a45bd472ce6225845fd12cef8fbd52b991ef5438f43de1b51a08dc263f8c0
qpid-qmf-debuginfo-0.22-41.el7.i686.rpm	SHA-256: fcb4637f7dbe825434ac5a1183a6494f5ae72252851e4893f959b1b08009b7bf
qpid-qmf-debuginfo-0.22-41.el7.x86_64.rpm	SHA-256: a7ceaca5e68909a1a3cf6094ea557fcf0cc1cd2a7c1ae724b1b62d3015847ded
qpid-qmf-devel-0.22-41.el7.x86_64.rpm	SHA-256: 8fedf6218d58258fd21103e1017d9f20a327794dc4bce0b0671d55d16129e15f
ruby-qpid-qmf-0.22-41.el7.x86_64.rpm	SHA-256: 6229e40f5d877992491f9261a976100dcf5e8931961c73d5463eba2e0db6ab86

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories