e4fsprogs
49
Dstat is a versatile replacement for the vmstat, iostat, and netstat tools. Dstat can be used for
performance tuning tests, benchmarks, and troubleshooting.
Robert Buchholz of the Gentoo Security Team reported a flaw in the Python module search path
used in dstat. If a local attacker could trick a local user into running dstat from a directory containing
a Python script that is named like an importable module, they could execute arbitrary code with the
privileges of the user running dstat. (
CVE-2009-3894
321
)
All dstat users should upgrade to this updated package, which contains a backported patch to correct
this issue.
1.44. e4fsprogs
1.44.1. RHBA-2010:0239: bug fix and enhancement update
Enhanced e4fsprogs packages that fix a bug are now available.
The e4fsprogs packages contain a number of utilities for creating, checking, modifying, and correcting
inconsistencies in fourth extended (ext4 and ext4dev) file systems. e4fsprogs contains e4fsck (used
to repair file system inconsistencies after an unclean shutdown), mke4fs (used to initialize a partition
to contain an empty ext4 file system), tune4fs (used to modify file system parameters), and most other
core ext4fs file system utilities.
The e4fsprogs packages have been upgraded to upstream version 1.41.9 for Red Hat Enterprise
Linux 5.5. These updated packages contain several bug fixes over the previous version.
Important: These packages are now designed and intended to be installed alongside the original
e2fsprogs package in Red Hat Enterprise Linux. As such, certain binaries in the e4fsprogs packages
have been given new names. For example, the utility that checks ext4 file systems for consistency has
been renamed to "e4fsck", thus allowing the original "e2fsck" program from the e2fsprogs package to
coexist on the same system.
These updated e4fsprogs packages also include a fix for the following bug:
* pygrub did not understand fourth extended (ext4) /boot partitions, and so was unable to
paravirtualize guest domains. e4fsprogs-devel and ev4sprogs-libs packages are provided with this
update for pygrub and other applications that require the new ext4 capable e2fsprogs libraries.
(
BZ#528055
322
)
All users of e4fsprogs are advised to upgrade to these updated packages, which resolve this issue.
1.45. elilo
1.45.1. RHEA-2010:0302: enhancement update
An updated elilo package that adds validation checks and error messages to the boot manager is now
available.
321
https://www.redhat.com/security/data/cve/CVE-2009-3894.html
322
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=528055
Содержание ENTERPRISE LINUX 5.5 - S 2010
Страница 10: ...x ...
Страница 308: ...298 ...
Страница 310: ...300 ...
Страница 468: ...458 ...
Страница 470: ...460 ...