Skip to navigation

Security Advisory New up2date available with updated SSL certificate authority file

Advisory: RHSA-2003:268-10
Type: Security Advisory
Severity: N/A
Issued on: 2003-08-29
Last updated on: 2003-08-29
Affected Products: Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor

Details

New versions of the up2date and rhn_register clients are available and
are required for continued access to Red Hat Network.

The rhn_register and up2date packages contain the software necessary to
take advantage of Red Hat Network functionality.

This erratum includes an updated RHNS-CA-CERT file, which contains a new CA
certificate. This new certificate is needed so that up2date can continue
to communicate with Red Hat Network after 28 August 2003. Without this
updated certificate, users will see SSL Connection Errors reported by
up2date or rhn_register.

All users must upgrade to these erratum packages in order to continue to
use Red Hat Network. This includes both interactive use of up2date, as
well as actions scheduled by the RHN website.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains
the desired RPMs.

Because the previous Certificate Authority has expired, up2date will
present 'SSL Certificate Errors' if you attempt to use it to apply this
errata. Therefore, this update cannot be applied directly with up2date and
instead must be applied as indicated above.

In addition to the Red Hat FTP site, the latest versions of up2date and
rhn_register are also available at

https://rhn.redhat.com/help/latest-up2date.pxt

For users who would prefer to install the new certificate directly, it is
available at:

https://rhn.redhat.com/help/ssl_cert.pxt

Updated packages

Red Hat Enterprise Linux AS (v. 2.1)

IA-32:
up2date-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: ad6f3057d4f7c40eee5b35517e488079
up2date-gnome-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: b06874a45f142cc077e99b2565662826
 
IA-64:
up2date-2.8.46.3-1.2.1AS.ia64.rpm
File outdated by:  RHBA-2004:368
    MD5: 65785ae58b5d1cebbcb1c764a6cf08e8
up2date-gnome-2.8.46.3-1.2.1AS.ia64.rpm
File outdated by:  RHBA-2004:368
    MD5: 31050a6f530eb024885fe521d2e5ef91
 
Red Hat Enterprise Linux ES (v. 2.1)

IA-32:
up2date-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: ad6f3057d4f7c40eee5b35517e488079
up2date-gnome-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: b06874a45f142cc077e99b2565662826
 
Red Hat Enterprise Linux WS (v. 2.1)

IA-32:
up2date-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: ad6f3057d4f7c40eee5b35517e488079
up2date-gnome-2.8.46.3-1.2.1AS.i386.rpm
File outdated by:  RHBA-2004:368
    MD5: b06874a45f142cc077e99b2565662826
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor

IA-64:
up2date-2.8.46.3-1.2.1AS.ia64.rpm
File outdated by:  RHBA-2004:368
    MD5: 65785ae58b5d1cebbcb1c764a6cf08e8
up2date-gnome-2.8.46.3-1.2.1AS.ia64.rpm
File outdated by:  RHBA-2004:368
    MD5: 31050a6f530eb024885fe521d2e5ef91
 

Keywords

Hat, Network, Red, rhn_register, up2date


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/