Skip to navigation

Bug Fix Advisory libuser bug fix update

Advisory: RHBA-2012:1144-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2013-01-07
Last updated on: 2013-01-07
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)

Details

Updated libuser packages that fix multiple bugs are now available for Red Hat
Enterprise Linux 5.

The libuser packages provide a library to implement a standardized interface for
manipulating and administering user and group accounts. The library uses
pluggable back ends to interface to its data sources. Sample applications
modeled after those included with the shadow password suite are included.

This update fixes the following bugs:

* Prior to this update, libuser could not signal the name service caching daemon
(nscd) to refresh the cache. As a consequence, delays in the name service could
occur when the user account information was changed. With this update, the
libuser signals nscd to rebuild its cache. Now, changes that affect the name
service take effect more quickly.(BZ#506628)

* Prior to this update, libuser used the value of the "gecos" attribute for the
"cn" attribute by default when creating a user account with the Lightweight
Directory Access Protocol (LDAP). As a consequence, an invalid value for "cn"
was used and the user account was not created if the "gecos" attribute was
empty. With this update, the user name of the account is stored in the "cn"
attribute if the "gecos" attribute is empty, thus allowing successful creation
of the user account. (BZ#670279)

* Prior to this update, libuser could attempt to access unallocated virtual
memory when searching for account information in files of certain sizes. As a
consequence, libuser could terminate unexpectedly with a segmentation fault when
looking for user or group account information. This update modifies modifies the
libuser library to only access memory related to the file being processed.
(BZ#758117)

All users of libuser are advised to upgrade to these updated packages, which fix
these bugs.


Solution

Before applying this update, make sure all previously-released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
libuser-0.54.7-3.el5.src.rpm     MD5: 86f9268578d23fba8afc975c32669969
SHA-256: bf9cfa265edb2c1ea0c32b510e282e776528dc8e19ac54c89b8698fb2e6381ba
 
IA-32:
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
libuser-devel-0.54.7-3.el5.i386.rpm     MD5: 78fa34d2ce2a61f4bdf07a588961a9af
SHA-256: 0ece4ff04fe6b1540e5ca8930965bd734543770eb81a5381577158653535f517
 
x86_64:
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
libuser-debuginfo-0.54.7-3.el5.x86_64.rpm     MD5: b2f6bf3657478c07042f9d9c5f48695e
SHA-256: aa3790d34e46470a6afdeb25736eec89c19df65308da0cac490a61b77929ab6d
libuser-devel-0.54.7-3.el5.i386.rpm     MD5: 78fa34d2ce2a61f4bdf07a588961a9af
SHA-256: 0ece4ff04fe6b1540e5ca8930965bd734543770eb81a5381577158653535f517
libuser-devel-0.54.7-3.el5.x86_64.rpm     MD5: c9def4dc0d37ae107da41de088794d96
SHA-256: 9126c545da53613ce4122a38f73e079dee37ff764140809c6960cc2912683206
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
libuser-0.54.7-3.el5.src.rpm     MD5: 86f9268578d23fba8afc975c32669969
SHA-256: bf9cfa265edb2c1ea0c32b510e282e776528dc8e19ac54c89b8698fb2e6381ba
 
IA-32:
libuser-0.54.7-3.el5.i386.rpm     MD5: 91d980737befb0468860ca1accfeeee0
SHA-256: 4e444c94387ba58d6f3e5cc62fb0fa1de084a5743793fe5e7fb751b6507b1d68
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
libuser-devel-0.54.7-3.el5.i386.rpm     MD5: 78fa34d2ce2a61f4bdf07a588961a9af
SHA-256: 0ece4ff04fe6b1540e5ca8930965bd734543770eb81a5381577158653535f517
 
IA-64:
libuser-0.54.7-3.el5.ia64.rpm     MD5: cbb121733c7ea934c208581ab02ca41b
SHA-256: a4fce13a63d2b5b94ffcbf83ae35234727cfdbb4560a222d4380a8950d87b403
libuser-debuginfo-0.54.7-3.el5.ia64.rpm     MD5: be0480043d77050e44b3d4161a66831e
SHA-256: 7c583bed844ee3aec882bc62f5e49c242cca7b585c54877a546658c5cfeac7d7
libuser-devel-0.54.7-3.el5.ia64.rpm     MD5: e3c9fa3c0c329918ebdec28f0bc15419
SHA-256: 6b03cd1c298d9a9d1df417f0e7e57765f774d6e6598732eb69ad3576ca6c4d4e
 
PPC:
libuser-0.54.7-3.el5.ppc.rpm     MD5: cb6b88e34bde5d94ad7d2243d8acaff3
SHA-256: c5400fef33ffeeceba77796c7958e4f27fbc7a570a92df7e183300541f9d0613
libuser-0.54.7-3.el5.ppc64.rpm     MD5: 4bcddfba38f29cc244a2b8d20b2f5410
SHA-256: 32ea37c0321fe38c47a31a616f144524b2d740e08e5cf625d18c9a3614d8957d
libuser-debuginfo-0.54.7-3.el5.ppc.rpm     MD5: 6b19f02ae17af975c9f7753df211e445
SHA-256: 0ee91d5e99cbd18c4fc2d45b00ff47ba9c250a8d5d3a1f616cf7ebfa452c1bd4
libuser-debuginfo-0.54.7-3.el5.ppc64.rpm     MD5: 54945d6b48a781f9b6c51e13b9919ce7
SHA-256: 61963baacbf95839c292de11258999fcfd468ddeba7e9e58fe0caf23c4c6010e
libuser-devel-0.54.7-3.el5.ppc.rpm     MD5: 23d6771e7922bd33d31c6d4f64e67c3c
SHA-256: 603a3f102fb9c4357eadd2745fe5931706f96d3f578316e2158318f02175f4ad
libuser-devel-0.54.7-3.el5.ppc64.rpm     MD5: b3d64f3e4f900f7e07a68342d9ece395
SHA-256: a872807571e7ea6a1ba0e1710c37a23e715f08668b3f7ce04753e7abccbdad84
 
s390x:
libuser-0.54.7-3.el5.s390.rpm     MD5: b1660fe9f29aba8b3661e28e6d4dcd5b
SHA-256: af1645db92a75c29ab7b8024dfb89f2d2a1d36b321a5acf1244c8de340eaebc3
libuser-0.54.7-3.el5.s390x.rpm     MD5: 72d6b933005f91b6fe3dc3551a62fd13
SHA-256: cc0c8f7dc8d114e6a300da00280d69741cd76131e29de0d70784438416097115
libuser-debuginfo-0.54.7-3.el5.s390.rpm     MD5: e1af6bdf95da2bf307d56f9591a4a120
SHA-256: 4d5c1e21ff19e77cac55f227e3d54df3266aaac171b46d678b67f91a7538a5a9
libuser-debuginfo-0.54.7-3.el5.s390x.rpm     MD5: 5a8322fa771acabb25c5bc8e4e2df73c
SHA-256: 91dd8f771169b873b84c89b34293754f94cb213588268510bbeaf20310c2dccd
libuser-devel-0.54.7-3.el5.s390.rpm     MD5: bd75f72a34c4024d4f88645af90e1787
SHA-256: 1a1fad45dc90ed2e3a44c9329e31634ae35d288dd10ec130846bb59921b48923
libuser-devel-0.54.7-3.el5.s390x.rpm     MD5: 0a148294178732a23cdbe4af739a91a2
SHA-256: d0d2e3851419b7b8a81f749be1c783b837a2be79ca411a328d01cd04d3b6084b
 
x86_64:
libuser-0.54.7-3.el5.i386.rpm     MD5: 91d980737befb0468860ca1accfeeee0
SHA-256: 4e444c94387ba58d6f3e5cc62fb0fa1de084a5743793fe5e7fb751b6507b1d68
libuser-0.54.7-3.el5.x86_64.rpm     MD5: 089aa2e2c5e9c6223376ddd30c23f94a
SHA-256: 139e70a65162a8fe6bbcf66d383542fd562cad3729f7c1d263d982afa30b7107
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
libuser-debuginfo-0.54.7-3.el5.x86_64.rpm     MD5: b2f6bf3657478c07042f9d9c5f48695e
SHA-256: aa3790d34e46470a6afdeb25736eec89c19df65308da0cac490a61b77929ab6d
libuser-devel-0.54.7-3.el5.i386.rpm     MD5: 78fa34d2ce2a61f4bdf07a588961a9af
SHA-256: 0ece4ff04fe6b1540e5ca8930965bd734543770eb81a5381577158653535f517
libuser-devel-0.54.7-3.el5.x86_64.rpm     MD5: c9def4dc0d37ae107da41de088794d96
SHA-256: 9126c545da53613ce4122a38f73e079dee37ff764140809c6960cc2912683206
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
libuser-0.54.7-3.el5.src.rpm     MD5: 86f9268578d23fba8afc975c32669969
SHA-256: bf9cfa265edb2c1ea0c32b510e282e776528dc8e19ac54c89b8698fb2e6381ba
 
IA-32:
libuser-0.54.7-3.el5.i386.rpm     MD5: 91d980737befb0468860ca1accfeeee0
SHA-256: 4e444c94387ba58d6f3e5cc62fb0fa1de084a5743793fe5e7fb751b6507b1d68
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
 
x86_64:
libuser-0.54.7-3.el5.i386.rpm     MD5: 91d980737befb0468860ca1accfeeee0
SHA-256: 4e444c94387ba58d6f3e5cc62fb0fa1de084a5743793fe5e7fb751b6507b1d68
libuser-0.54.7-3.el5.x86_64.rpm     MD5: 089aa2e2c5e9c6223376ddd30c23f94a
SHA-256: 139e70a65162a8fe6bbcf66d383542fd562cad3729f7c1d263d982afa30b7107
libuser-debuginfo-0.54.7-3.el5.i386.rpm     MD5: d0f35107c9b54b16a1d9e22a93dda761
SHA-256: f75ccf0b93e233a1b1ef808d59a69df8d6e7b4621d7e91493c27489a81f07545
libuser-debuginfo-0.54.7-3.el5.x86_64.rpm     MD5: b2f6bf3657478c07042f9d9c5f48695e
SHA-256: aa3790d34e46470a6afdeb25736eec89c19df65308da0cac490a61b77929ab6d
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

670279 - Traceback when adding user via ldap



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/