Bug Fix Advisory telnet bug fix updates

Advisory: RHBA-2007:0798-3
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2007-11-15
Last updated on: 2007-11-15
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
OVAL: N/A

Details

Updated telnet packages that fix various bugs is now available.

Telnet is a popular protocol for logging into remote systems over the
Internet. The telnet package provides a command line telnet client.

This updated version of telnet addresses the following issues:

* a rare infinite loop in the client has been fixed.

* if the telnet configuration file -- /etc/xinetd.d/telnet -- was modified,
running the "rpm -V" command on the package returned spurious "file Size"
and "mTime" differs errors, since the configuration file is
user-modifiable by design. The updated package's spec file now marks the
/etc/xinetd.d/telnet to not be verified when "rpm -V" is run.

All telnet users should upgrade to these updated packages, which resolves
these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 4)
SRPMS:
telnet-0.17-31.EL4.5.src.rpm     7a09a40fee3f0d3842578cf218e1a4d8
 
IA-32:
telnet-0.17-31.EL4.5.i386.rpm     e7276b4b3bb3ffe1d34941bb53aee977
telnet-server-0.17-31.EL4.5.i386.rpm     a9bbc2b2fca7d3a755e05fe4410da406
 
x86_64:
telnet-0.17-31.EL4.5.x86_64.rpm     5ec5039740030c6543b3140123b0ceea
telnet-server-0.17-31.EL4.5.x86_64.rpm     71f5269aa1c2da2d7dcbc5a708cd2700
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
telnet-0.17-31.EL4.5.src.rpm     7a09a40fee3f0d3842578cf218e1a4d8
 
IA-32:
telnet-0.17-31.EL4.5.i386.rpm     e7276b4b3bb3ffe1d34941bb53aee977
telnet-server-0.17-31.EL4.5.i386.rpm     a9bbc2b2fca7d3a755e05fe4410da406
 
IA-64:
telnet-0.17-31.EL4.5.ia64.rpm     9464c08a950184ffe33825996cd8df84
telnet-server-0.17-31.EL4.5.ia64.rpm     c72d3d564c4619398dd420bec74641ab
 
PPC:
telnet-0.17-31.EL4.5.ppc.rpm     96408359504ac7ca822eeb82408c1dfe
telnet-server-0.17-31.EL4.5.ppc.rpm     096411ba9236b053752a405251f55499
 
s390:
telnet-0.17-31.EL4.5.s390.rpm     6388abafa72d7403721ee08c8995343f
telnet-server-0.17-31.EL4.5.s390.rpm     8b7aeea98d3bb4d439b663335ef0bac6
 
s390x:
telnet-0.17-31.EL4.5.s390x.rpm     6c8b14ef7487e1612880958f690e1206
telnet-server-0.17-31.EL4.5.s390x.rpm     9d66ae96bcadcbc2841e60036e4df89b
 
x86_64:
telnet-0.17-31.EL4.5.x86_64.rpm     5ec5039740030c6543b3140123b0ceea
telnet-server-0.17-31.EL4.5.x86_64.rpm     71f5269aa1c2da2d7dcbc5a708cd2700
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
telnet-0.17-31.EL4.5.src.rpm     7a09a40fee3f0d3842578cf218e1a4d8
 
IA-32:
telnet-0.17-31.EL4.5.i386.rpm     e7276b4b3bb3ffe1d34941bb53aee977
telnet-server-0.17-31.EL4.5.i386.rpm     a9bbc2b2fca7d3a755e05fe4410da406
 
IA-64:
telnet-0.17-31.EL4.5.ia64.rpm     9464c08a950184ffe33825996cd8df84
telnet-server-0.17-31.EL4.5.ia64.rpm     c72d3d564c4619398dd420bec74641ab
 
x86_64:
telnet-0.17-31.EL4.5.x86_64.rpm     5ec5039740030c6543b3140123b0ceea
telnet-server-0.17-31.EL4.5.x86_64.rpm     71f5269aa1c2da2d7dcbc5a708cd2700
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
telnet-0.17-31.EL4.5.src.rpm     7a09a40fee3f0d3842578cf218e1a4d8
 
IA-32:
telnet-0.17-31.EL4.5.i386.rpm     e7276b4b3bb3ffe1d34941bb53aee977
telnet-server-0.17-31.EL4.5.i386.rpm     a9bbc2b2fca7d3a755e05fe4410da406
 
IA-64:
telnet-0.17-31.EL4.5.ia64.rpm     9464c08a950184ffe33825996cd8df84
telnet-server-0.17-31.EL4.5.ia64.rpm     c72d3d564c4619398dd420bec74641ab
 
x86_64:
telnet-0.17-31.EL4.5.x86_64.rpm     5ec5039740030c6543b3140123b0ceea
telnet-server-0.17-31.EL4.5.x86_64.rpm     71f5269aa1c2da2d7dcbc5a708cd2700
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

250740 - etc/xinetd.d/telnet should be marked as noverify in the specfile


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/