- Issued:
- 2006-03-21
- Updated:
- 2006-03-21
RHBA-2005:483 - Bug Fix Advisory
Synopsis
nss_db bug fix update
Type/Severity
Bug Fix Advisory
Topic
An updated nss_db package that fixes a bug in the interaction between nss_db
and glibc is now available.
Description
The nss_db package is a set of C library extensions which allow Berkeley
databases to be used as a primary source of information for aliases,
ethers, groups, hosts, networks, protocol, users, RPCs, services, and
shadow passwords (instead of or in addition to using flat files).
While enumerating the contents of a particular database, the version of
glibc included in Red Hat Enterprise Linux 2.1 expected an nsswitch module
to return an error code and set the "errno" variable to a specific value
(ENOENT), when it could provide no more entries. This updated package now
allows glibc to proceed based on the value "errno" had previously
contained, preventing an infinite loop for certain values.
This update modifies nss_db to always set "errno" to ENOENT unless an error
of a different nature is encountered, avoiding this problem.
All users of nss_db should upgrade to this updated package, which resolves
this issue.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 2 ia64
- Red Hat Enterprise Linux Server 2 i386
- Red Hat Enterprise Linux Workstation 2 ia64
- Red Hat Enterprise Linux Workstation 2 i386
Fixes
- BZ - 152467 - nss_db doesn't set errno to ENOENT when returning NSS_STATUS_NOTFOUND
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.