Bug Fix Advisory rdate bug fix update

Advisory: RHBA-2008:0613-5
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2008-07-23
Last updated on: 2008-07-23
Affected Products: Red Hat Enterprise Linux FasTrack (v. 5 client)
Red Hat Enterprise Linux FasTrack (v. 5 server)
OVAL: N/A

Details

An updated rdate package that fixes various bugs is now available.

The rdate utility retrieves the date and time from another machine on your
network, using the time protocol (RFC 868). If you run rdate as root, it
sets your machine's local time to the time of the machine that you queried.

This updated package fixes the following bugs:

* rdate freed host address information before it used it. This may have
caused a segmentation fault, or invalid arguments being sent, resulting in
a "Could not connect to host [host] Invalid argument" error.

* rdate performed incorrect memory allocation, that may have caused UDP
connection failures. Such incorrect allocation could be seen by running the
"valgrind rdate -s [host]" command.

Users of rdate are advised to upgrade to this updated package, which
resolves this issue.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Enterprise Linux FasTrack (v. 5 client)
SRPMS:
rdate-1.4-8.el5.src.rpm     4d58f0c8f481e92c0328df51fbc15d7a
 
IA-32:
rdate-1.4-8.el5.i386.rpm     0966c92e6a3066077cc6f7e7e5eeda9d
 
x86_64:
rdate-1.4-8.el5.x86_64.rpm     78f5ce5f8ac50eae6260669cc8857c10
 
Red Hat Enterprise Linux FasTrack (v. 5 server)
SRPMS:
rdate-1.4-8.el5.src.rpm     4d58f0c8f481e92c0328df51fbc15d7a
 
IA-32:
rdate-1.4-8.el5.i386.rpm     0966c92e6a3066077cc6f7e7e5eeda9d
 
IA-64:
rdate-1.4-8.el5.ia64.rpm     38fc371d963ce6b27e8fe7db70fc1d27
 
PPC:
rdate-1.4-8.el5.ppc.rpm     1430631a198be6fc7675b5a2b0dea0e0
 
s390x:
rdate-1.4-8.el5.s390x.rpm     2b26723686b2c4c8754ac920abded6c7
 
x86_64:
rdate-1.4-8.el5.x86_64.rpm     78f5ce5f8ac50eae6260669cc8857c10
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

436517 - rdate frees address info before use.
455439 - wrong memory allocation in rdate


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/