- Issued:
- 2017-07-19
- Updated:
- 2017-07-19
RHSA-2017:1787 - Security Advisory
Synopsis
Moderate: collectd security update
Type/Severity
Security Advisory: Moderate
Topic
An update for collectd is now available for Red Hat OpenStack Platform 11.0 Operational Tools for RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
collectd is a small C-language daemon, which reads various system metrics periodically and updates RRD files (creating them if necessary). Because the daemon does not start up each time it updates files, it has a low system footprint.
The following packages have been upgraded to a later upstream version: collectd (5.7.2). (BZ#1460080)
Security Fix(es):
- collectd contains an infinite loop due to how the parse_packet() and parse_part_sign_sha256() functions interact. If an instance of collectd is configured with "SecurityLevel None" and empty "AuthFile" options, an attacker can send crafted UDP packets that trigger the infinite loop, causing a denial of service. (CVE-2017-7401)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
Affected Products
- Red Hat OpenStack 11 x86_64
Fixes
- BZ - 1439674 - CVE-2017-7401 collectd: Infinite loop due to incorrect interaction of parse_packet() and parse_part_sign_sha256() functions
CVEs
References
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat OpenStack 11
| SRPM | |
|---|---|
| collectd-5.7.2-1.1.el7ost.src.rpm | SHA-256: df1d482157515d32404d47666bf3b58e5a2e65ded324a51a7785a697d3c3c1db |
| x86_64 | |
| collectd-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: c475d9f5806c366ff0604f7d9cc350ceea276403329c3204de481626b495f48a |
| collectd-apache-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: a75b0581b80627c915c0330fd4756d82ecbf9d6c59c853886527ba70bb29afca |
| collectd-ascent-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: e152112f76239a10183631ebc8587eb62ade39de6f38ba2767c0d81c42e4eab9 |
| collectd-bind-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 1bdbca10e9817ed25dc219d311556d6644278ed2985fc04cb639e272f6507c75 |
| collectd-ceph-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 7f227ea023477b382344049069afbd0416c9364b4575adce419d3b192372e147 |
| collectd-curl-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 2c4e546618d9cd75d5560fe2ed9db645fc4bc32aa9d041cdf02038101a14f455 |
| collectd-curl_json-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 282622eb283bc25bd55e956b8cc94c268c6e621c36eb50e5f94318cbb6846099 |
| collectd-curl_xml-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: c432ee2772b85e0cdde7d8b9e5491dbc57684f4404a0874dc95a4e41d1403f7f |
| collectd-dbi-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: e876b450cb65a79c329e7bbe4700ba9f65665b1910628912b9321f2d6ce51286 |
| collectd-debuginfo-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 6080961969979c7f2f4fa0755dda3d6745139b5f7e3a02d9108e625352626ada |
| collectd-disk-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 954cf2992a497d857d802b073600da380262a0a465740d921a31b42da92f69e6 |
| collectd-dns-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 0fe0725a8ee4f72ac174ed833a4988898e41ca1d0a5c6984f0968b91e6b7cb57 |
| collectd-drbd-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: f1fc2372b07676e90f8ac230f186786ef5eb61de60ae52b84837e94f3a7dd16d |
| collectd-email-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 908d24286cbab76f74b2b7c415bc2d713702798698b8d2c5a054d69da9120654 |
| collectd-generic-jmx-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: e4e59350af25eb64f42f3c57d4fd0bfea9ef5776d5a9f5d7b64ef33a63c5bc54 |
| collectd-ipmi-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: bcb324af6a7e0a596ea0fcee6ff22b8e5b218c33f012ea691125c3859ca4a2d2 |
| collectd-iptables-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 780bed3a1c539419c2f5518fff14e591da4dd4c0b85cddc8a03e7c96911bd344 |
| collectd-ipvs-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: ba635ff55bee3a9910b07e65b82a477b9ecde16f74ca0cbb9bac0d8fff71d8a7 |
| collectd-java-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: ab727a8213d05c963db72820bc29bebd3a9503bd0a19d7aee5f825c631abec8d |
| collectd-log_logstash-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 1890293ecc72fb03212b4d6611fc4aebbd3f92146908e2e3e63c747256ecc258 |
| collectd-lvm-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 747d42f81795d6e4b18a241d5c40d319c6808595289ef107c14d53e5d6735535 |
| collectd-mysql-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 23ffe2730007168441a70b25b759d9e949bc837906f1e208fe51e54c58ecafd0 |
| collectd-netlink-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: a6839e075f2de95f46d4dd359764032327e96501420c0b1ce7b390f8a5ecaff4 |
| collectd-nginx-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 21adbdcd1536cf03d7f7b432005dbc0c420874a32883a23c9a8a475c162e19c1 |
| collectd-notify_desktop-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 81cde799b132d07fcd5d77eb3c773a82c3f45e37a1ab49fbca5637df58d9b07a |
| collectd-notify_email-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 31b671c8e154edd51e4e1d381f16cc7ee1148284994dd0bef704cc9e76df1bd8 |
| collectd-openldap-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: e80e12f958ed5947cf029ba288957a975b31577796854cda4c3058247cd44d41 |
| collectd-ping-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 3c56f16de41d1a48b0a5da480f6bd7b8c467ed912536c403349e81e2ec99427d |
| collectd-postgresql-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: b9292f327d524fbfa3cbf5e6e234a56250c7a7fb9d4a14ae0153d8f11f0f60a8 |
| collectd-rrdcached-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 8b66bb4c9e9d378394347b961ad365f83cde0b501907952d73da217ba2356d5a |
| collectd-rrdtool-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 95797a192c3c7f26184cd13aeaedf7c58649698ad62ece9db8fe0394e5ef5d94 |
| collectd-sensors-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: e6f61cf2180733d6adad301e39d0f8fffc1dd4d229e643e65a1914afde2ccfa1 |
| collectd-smart-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 527280b1171678e5adb2abe08a424c0f932411af53de46cd4298a6961780846d |
| collectd-snmp-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 605b7a660a9f312d2819cba72de2b6c2c5ea1e944a33c13d97f405420143c8fc |
| collectd-turbostat-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 32b013112b43e7937c76813aef30917fbc4267d59e5f25475a7627761cf76b24 |
| collectd-utils-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: f98b9622f5de9e81778364eca6c272cabfcdd81df6c7359a4f2f4f2a88964561 |
| collectd-virt-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 38adeacb6f7e8502cf6c18f9b0556ac91efb9a1260447c6609d930ce778eef6a |
| collectd-web-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 8575cad20b8760a827f9f60b0ff36676a9982e6576897e3f2f132181a7748579 |
| collectd-write_http-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 7188aabc529632584ffe6ef917e3ce2d9bbe76c79587288ff3ce1bf0e6ad8ea0 |
| collectd-write_sensu-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: b558dd2432e2290ae0122ce73acf8a58738f7ee92cfaacf4405d848bf908b63f |
| collectd-write_tsdb-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 76747adbad745a6e8b9df7f376fd1d224d861e5aa574a5c6eac4b8fbdf5ccd29 |
| collectd-zookeeper-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: d8b3026ee2f45e8ddc269d8ba7c31aa13339e612b8d309ca12c9b4e4d5a729ce |
| libcollectdclient-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: 794c109ddbea142c73e3d824aee5edf1f8e8bfe0f47b6265f5a74bc176959fc4 |
| perl-Collectd-5.7.2-1.1.el7ost.x86_64.rpm | SHA-256: de9164f668f6069c18a5e558dcf224e3a5d8c97f1fe54a521535924ac66806e1 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.