Skip to navigation

Bug Fix Advisory tcp_wrappers bug fix update

Advisory: RHBA-2007:0566-3
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2007-11-15
Last updated on: 2007-11-15
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)

Details

Updated tcp_wrappers packages that fix several bugs are now available.

The tcp_wrappers package provides small daemon programs which can monitor
and filter incoming requests for systat, finger, FTP, telnet, rlogin, rsh,
exec, tftp, talk and other network services. It also contains the libwrap
library that adds the same filtering capabilities to programs linked
against it, like sshd etc.

This update brings the following changes:

* localhost and localhost.localdomain are treated as equivalent when
comparing the client hostname and the list of allowed and denied hostnames.

* the behavior of signal handling when the "spawn" option is used has been
changed to be transparent to the application using the library.

These fixes correct the behavior of certain applications, including vsftpd.

Users should upgrade to this updated package, which resolves these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
tcp_wrappers-7.6-37.4.src.rpm
File outdated by:  RHEA-2009:1032
    MD5: 9de156425ec4b1c5f0934de4bf379b58
 
IA-32:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
 
x86_64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.x86_64.rpm
File outdated by:  RHEA-2009:1032
    MD5: 3ee8a6d31543580743adfaa2f74bcf85
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
tcp_wrappers-7.6-37.4.src.rpm
File outdated by:  RHEA-2009:1032
    MD5: 9de156425ec4b1c5f0934de4bf379b58
 
IA-32:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
 
IA-64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.ia64.rpm
File outdated by:  RHEA-2009:1032
    MD5: a6fbb6b05a0c7f582c421eb3bc68a418
 
PPC:
tcp_wrappers-7.6-37.4.ppc.rpm
File outdated by:  RHEA-2009:1032
    MD5: a48029faeaac91d99deeedcb0c9d5454
tcp_wrappers-7.6-37.4.ppc64.rpm
File outdated by:  RHEA-2009:1032
    MD5: 126476c2cfa6d385e340231a9001915c
 
s390:
tcp_wrappers-7.6-37.4.s390.rpm
File outdated by:  RHEA-2009:1032
    MD5: fa0aa2c3525b082ebc4b7149c2d79dee
 
s390x:
tcp_wrappers-7.6-37.4.s390.rpm
File outdated by:  RHEA-2009:1032
    MD5: fa0aa2c3525b082ebc4b7149c2d79dee
tcp_wrappers-7.6-37.4.s390x.rpm
File outdated by:  RHEA-2009:1032
    MD5: 5d326ed0b004a8b63461fc05be5a2d35
 
x86_64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.x86_64.rpm
File outdated by:  RHEA-2009:1032
    MD5: 3ee8a6d31543580743adfaa2f74bcf85
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
tcp_wrappers-7.6-37.4.src.rpm
File outdated by:  RHEA-2009:1032
    MD5: 9de156425ec4b1c5f0934de4bf379b58
 
IA-32:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
 
IA-64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.ia64.rpm
File outdated by:  RHEA-2009:1032
    MD5: a6fbb6b05a0c7f582c421eb3bc68a418
 
x86_64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.x86_64.rpm
File outdated by:  RHEA-2009:1032
    MD5: 3ee8a6d31543580743adfaa2f74bcf85
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
tcp_wrappers-7.6-37.4.src.rpm
File outdated by:  RHEA-2009:1032
    MD5: 9de156425ec4b1c5f0934de4bf379b58
 
IA-32:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
 
IA-64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.ia64.rpm
File outdated by:  RHEA-2009:1032
    MD5: a6fbb6b05a0c7f582c421eb3bc68a418
 
x86_64:
tcp_wrappers-7.6-37.4.i386.rpm
File outdated by:  RHEA-2009:1032
    MD5: cbe4d9efb1212fd73bcca71fd0fc2e64
tcp_wrappers-7.6-37.4.x86_64.rpm
File outdated by:  RHEA-2009:1032
    MD5: 3ee8a6d31543580743adfaa2f74bcf85
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

196326 - IPv6: bad interaction between tcp_wrappers and DNS, vsftpd
241356 - allowed vsftp session hangs when tcp wrappers spawn is used



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/