- Issued:
- 2003-02-14
- Updated:
- 2003-02-13
RHBA-2002:278 - Bug Fix Advisory
Synopsis
Updated rusers package available
Type/Severity
Bug Fix Advisory
Topic
Updated rusers packages are available for Red Hat Linux Advanced Server
2.1. These packages fix a problem in which rstatd crashes when a rup is
being called, or when the /proc/stat output is too large.
Description
The kernel interface for /proc/stat has changed in Red Hat Linux Advanced
Server 2.1. The code in rstatd did not take this change into account and
therefore was not able to parse the output correctly, resulting in a crash
when queries where run.
The updated rusers packages fix this problem as well as a buffer overflow
and other minor parsing bugs in rstatd.
All users of Red Hat Linux Advanced Server 2.1 that use the rstatd service
are urged to upgrade to these packages, which are not vulnerable to these
issues.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.
Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 2 ia64
- Red Hat Enterprise Linux Workstation 2 ia64
Fixes
- BZ - 77660 - rstatd croaks upon receiving rup call
- BZ - 78772 - rpc.rstatd can not handle /proc/stat output
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.