- Issued:
- 2009-12-09
- Updated:
- 2010-03-30
RHBA-2009:1652 - Bug Fix Advisory
Synopsis
acl bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated acl packages that fix a bug are now available.
Description
Access Control Lists (ACLs) are used to define finer-grained discretionary
access rights for files and directories. The acl packages contain the
getfacl and setfacl utilities needed for manipulating access control lists.
This update fixes the following bug:
- the "setfacl" command, which sets the access control lists for files,
always returned an exit status of 0, even when the command failed and
printed out error messages. With this update, setfacl exits with the
correct exit status upon failure. (BZ#368451)
- running "setfacl -- --test" caused setfacl to segmentation fault. This
has been fixed in this update. (BZ#430458)
- running the "setfacl" command with the '-P' flag, which is the short form
of the '--physical' option, which is supposed to cause "setfacl" to skip
over any symbolic links it encounters, did not work as expected: symbolic
links were still followed. This update fixes this so that the '-P' flag
works as expected and symbolic links are silently skipped over. (BZ#436070)
- the "setfacl" command failed to resolve relative symbolic links when it
encountered them unless they were specified with a trailing forward-slash
character (in the case of relative symbolic links to directories), or the
script or shell prompt's working directory was the directory which
contained the relative symbolic link(s). With this update, relative
symbolic links are handled correctly by setfacl regardless of where they
are encountered or what their target is. (BZ#500095)
- the "getfacl" and "setfacl" commands did not properly handle non-ASCII
characters with the result that calling either command on a system with the
correct locale settings still produced incorrect output, such as octal
character representations. With this update, getfacl and setfacl are now
able to produce correct output when using non-ASCII character sets.
(BZ#507747)
All users of Access Control Lists should upgrade to these updated packages,
which resolve this issue.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 368451 - setfacl returns 0 even though it fails
- BZ - 430458 - execute command "setfacl -- --test" will occur Segmentation Fault
- BZ - 436070 - execute command "setfacl" with option "-P" can not skip symbolic link
- BZ - 500095 - setfacl fails to correctly resolve relative symlinks to directories
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
x86_64 | |
acl-2.2.39-6.el5.x86_64.rpm | SHA-256: 7da6fe4c030139feeb0f94f3534c2b36d924e5e980ef3d94b4177fc7904bb0bf |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-2.2.39-6.el5.x86_64.rpm | SHA-256: 85e2574011a6fca5ab96c7ef095dc5584c2529c481e70293f7d7cd22b4783b49 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
libacl-devel-2.2.39-6.el5.x86_64.rpm | SHA-256: b8743477d276a1d13d709a41ad7de13edb273efcbef0447eb4cdde3fab980b61 |
ia64 | |
acl-2.2.39-6.el5.ia64.rpm | SHA-256: 2b7467752b1d09f2595a76c08da882f61b65c30873c0bfac94c7ddb7923e1a07 |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-2.2.39-6.el5.ia64.rpm | SHA-256: f99dfc844808ae6b6274141d90a6e8b5110c9a132801da508a3bdf974ac8fc84 |
libacl-devel-2.2.39-6.el5.ia64.rpm | SHA-256: 842f7894e277ccba6a8cbfaeab8f7a552f20575fb1048b153b026c34e6e5ad8c |
i386 | |
acl-2.2.39-6.el5.i386.rpm | SHA-256: d5466776003a5c3c23865b254b4079c85b028add711d7760021134096e6efe74 |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
Red Hat Enterprise Linux Workstation 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
x86_64 | |
acl-2.2.39-6.el5.x86_64.rpm | SHA-256: 7da6fe4c030139feeb0f94f3534c2b36d924e5e980ef3d94b4177fc7904bb0bf |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-2.2.39-6.el5.x86_64.rpm | SHA-256: 85e2574011a6fca5ab96c7ef095dc5584c2529c481e70293f7d7cd22b4783b49 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
libacl-devel-2.2.39-6.el5.x86_64.rpm | SHA-256: b8743477d276a1d13d709a41ad7de13edb273efcbef0447eb4cdde3fab980b61 |
i386 | |
acl-2.2.39-6.el5.i386.rpm | SHA-256: d5466776003a5c3c23865b254b4079c85b028add711d7760021134096e6efe74 |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
Red Hat Enterprise Linux Desktop 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
x86_64 | |
acl-2.2.39-6.el5.x86_64.rpm | SHA-256: 7da6fe4c030139feeb0f94f3534c2b36d924e5e980ef3d94b4177fc7904bb0bf |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-2.2.39-6.el5.x86_64.rpm | SHA-256: 85e2574011a6fca5ab96c7ef095dc5584c2529c481e70293f7d7cd22b4783b49 |
i386 | |
acl-2.2.39-6.el5.i386.rpm | SHA-256: d5466776003a5c3c23865b254b4079c85b028add711d7760021134096e6efe74 |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
Red Hat Enterprise Linux for IBM z Systems 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
s390x | |
acl-2.2.39-6.el5.s390x.rpm | SHA-256: 8fe9d58d0e9d4cc1bc1a5499d46dbe7a1cad99ab3d005b86e8a48f70e4a26a8c |
libacl-2.2.39-6.el5.s390.rpm | SHA-256: b6fff40b1708bf00a95a1ac2660e29d75b2398e4b4694cd9a28ed5b76d73f467 |
libacl-2.2.39-6.el5.s390x.rpm | SHA-256: 6b0c93ab0ad78e62feaf49a86eac79065315e1ae98f1365ffb0b79ec896fe43c |
libacl-devel-2.2.39-6.el5.s390.rpm | SHA-256: 8d979be0e05b6d546753d65b611d840b7ad1313173d67b2867b2044b6789d2ee |
libacl-devel-2.2.39-6.el5.s390x.rpm | SHA-256: c3f2f96761fb139c8f4f0b3fbbcf13263cc56a57464792665c0e57d793885e52 |
Red Hat Enterprise Linux for Power, big endian 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
ppc | |
acl-2.2.39-6.el5.ppc.rpm | SHA-256: 50c355b417185e062991e5e32bc1b985225266ec07d8c4838ab82d34a0edc5d7 |
libacl-2.2.39-6.el5.ppc.rpm | SHA-256: 32c205f18609d836218ea1d1f6bd1094c230ff2557afed5b4452d60ff7caef5a |
libacl-2.2.39-6.el5.ppc64.rpm | SHA-256: 65d21eb0724fa4a9f7e7c94a64bb1599fea5d5a599c8e9690bc50d8f425cf1b8 |
libacl-devel-2.2.39-6.el5.ppc.rpm | SHA-256: e3db6dc5b366479e699c9dbefb8b3123d51ed723ca15ecf4bb8e1f8dc1ae779e |
libacl-devel-2.2.39-6.el5.ppc64.rpm | SHA-256: 3bf718f89188d75ec1a801932995e3b93f5ec7ab912033637ef92e91a620f242 |
Red Hat Enterprise Linux Server from RHUI 5
SRPM | |
---|---|
acl-2.2.39-6.el5.src.rpm | SHA-256: 62dea91bd5e3a6396b7e5e57cf397a5dd9eaf6781023f35861cb0abf8ac29485 |
x86_64 | |
acl-2.2.39-6.el5.x86_64.rpm | SHA-256: 7da6fe4c030139feeb0f94f3534c2b36d924e5e980ef3d94b4177fc7904bb0bf |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-2.2.39-6.el5.x86_64.rpm | SHA-256: 85e2574011a6fca5ab96c7ef095dc5584c2529c481e70293f7d7cd22b4783b49 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
libacl-devel-2.2.39-6.el5.x86_64.rpm | SHA-256: b8743477d276a1d13d709a41ad7de13edb273efcbef0447eb4cdde3fab980b61 |
i386 | |
acl-2.2.39-6.el5.i386.rpm | SHA-256: d5466776003a5c3c23865b254b4079c85b028add711d7760021134096e6efe74 |
libacl-2.2.39-6.el5.i386.rpm | SHA-256: 2e44a54109282e365c07bcd3da49e59df10689aa20491026c26af0d511d237e5 |
libacl-devel-2.2.39-6.el5.i386.rpm | SHA-256: 8b6d78d4bb78c6be420952f5ca685a10e0d4ec89e68c648054edc429972d90fa |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.