- Issued:
- 2011-01-06
- Updated:
- 2011-01-06
RHBA-2011:0008 - Bug Fix Advisory
Synopsis
openais bug fix update
Type/Severity
Bug Fix Advisory
Topic
An updated openais package that fixes a bug is now available for Red Hat
Enterprise Linux 5.
Description
The Application Interface Specification (AIS) is an API and a set of policies
for developing applications that maintain services during faults. The OpenAIS
Standards Based Cluster Framework is an OSI-certified implementation of the
Service Availability Forum AIS. The openais package contains the openais
executable, OpenAIS service handlers, default configuration files, and an init
script.
This updated openais package provides a fix for the following bug:
- When a checkpoint name was not terminated with the NULL character, the aisexec
process may have terminated unexpectedly with a segmentation fault, causing a
cluster outage. With this update, the underlying source code has been modified
to resolve this issue, and such strings no longer cause aisexec to crash.
(BZ#638608)
All users of openais are advised to upgrade to this updated package, which
resolves this issue.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.4 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.4 ia64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.4 i386
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.4 s390x
- Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.4 ppc
Fixes
- BZ - 638608 - openais should handle non null terminated chkpoint strings
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.