- Issued:
- 2003-08-29
- Updated:
- 2003-08-29
RHSA-2003:268 - Security Advisory
Synopsis
New up2date available with updated SSL certificate authority file
Type/Severity
Security Advisory: None
Topic
New versions of the up2date and rhn_register clients are available and
are required for continued access to Red Hat Network.
Description
The rhn_register and up2date packages contain the software necessary to
take advantage of Red Hat Network functionality.
This erratum includes an updated RHNS-CA-CERT file, which contains a new CA
certificate. This new certificate is needed so that up2date can continue
to communicate with Red Hat Network after 28 August 2003. Without this
updated certificate, users will see SSL Connection Errors reported by
up2date or rhn_register.
All users must upgrade to these erratum packages in order to continue to
use Red Hat Network. This includes both interactive use of up2date, as
well as actions scheduled by the RHN website.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains
the desired RPMs.
Because the previous Certificate Authority has expired, up2date will
present 'SSL Certificate Errors' if you attempt to use it to apply this
errata. Therefore, this update cannot be applied directly with up2date and
instead must be applied as indicated above.
In addition to the Red Hat FTP site, the latest versions of up2date and
rhn_register are also available at
https://rhn.redhat.com/help/latest-up2date.pxt
For users who would prefer to install the new certificate directly, it is
available at:
Affected Products
- Red Hat Enterprise Linux Server 2 ia64
- Red Hat Enterprise Linux Server 2 i386
- Red Hat Enterprise Linux Workstation 2 ia64
- Red Hat Enterprise Linux Workstation 2 i386
Fixes
(none)CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.