Security Advisory Moderate: MRG Grid security, bug fix, and enhancement update

Advisory: RHSA-2012:0099-1
Type: Security Advisory
Severity: Moderate
Issued on: 2012-02-06
Last updated on: 2012-02-06
Affected Products: Red Hat Enterprise MRG v2 for Red Hat Enterprise Linux (version 6)
CVEs (cve.mitre.org): CVE-2011-4930

Details

Updated Grid component packages that fix multiple security issues, multiple
bugs, and add various enhancements are now available for Red Hat Enterprise
MRG 2 for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

Red Hat Enterprise MRG (Messaging, Realtime, and Grid) is a next-generation
IT infrastructure for enterprise computing. MRG offers increased
performance, reliability, interoperability, and faster computing for
enterprise customers.

MRG Grid provides high-throughput computing and enables enterprises to
achieve higher peak computing capacity as well as improved infrastructure
utilization by leveraging their existing technology to build high
performance grids. MRG Grid provides a job-queueing mechanism, scheduling
policy, and a priority scheme, as well as resource monitoring and resource
management. Users submit their jobs to MRG Grid, where they are placed into
a queue. MRG Grid then chooses when and where to run the jobs based upon a
policy, carefully monitors their progress, and ultimately informs the user
upon completion.

Multiple format string flaws were found in Condor. An authenticated Condor
service user could use these flaws to prevent other jobs from being
scheduled and executed or crash the condor_schedd daemon. (CVE-2011-4930)

These updated packages for Red Hat Enterprise Linux 6 provide enhancements
and bug fixes for the Grid component of MRG. Some select enhancements and
fixes include:

* Addition of -sort option to condor_status

* Customized output from condor_q -run for EC2 jobs

* Enhanced the summary line provided by condor_q

* Improved Collector performance around blocking network calls

* Fixed a memory leak associated with python-psycopg2 hit by cumin-data

Space precludes documenting all of these changes in this advisory. Refer to
the Red Hat Enterprise MRG 2 Technical Notes document for information on
these changes:

https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_MRG/2/html/Technical_Notes/index.html

All users of the Grid capabilities of Red Hat Enterprise MRG 2 are advised
to upgrade to these updated packages, which resolve the issues and add the
enhancements noted in the Red Hat Enterprise MRG 2 Technical Notes.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Enterprise MRG v2 for Red Hat Enterprise Linux (version 6)

SRPMS:
condor-7.6.5-0.12.el6.src.rpm
File outdated by:  RHSA-2015:0035
    MD5: cc134c74c70f8a7831139437d1f1d82f
SHA-256: 6fc117c30b6ff2bb16c91bac1720fe950c1b0c7e0bd402c7dff7cd3c78701d43
condor-ec2-enhanced-1.3.0-1.el6.src.rpm
File outdated by:  RHSA-2013:0565
    MD5: 63f861bc843b0645721a5e120011b22a
SHA-256: 119865f3dad20d2f5b93eb35fe56c0ad8bebac04c6b332db01ad9a79f3abf0a0
condor-ec2-enhanced-hooks-1.3.0-1.el6.src.rpm
File outdated by:  RHSA-2013:0565
    MD5: bc8093444f5df476475b2b893d0eb799
SHA-256: ad533a31b58e01e9a35aaad8a2772eab974ef9a12bfd6905fae1c16de83b3d29
condor-wallaby-base-db-1.19-1.el6.src.rpm
File outdated by:  RHSA-2013:0565
    MD5: db641e70739ec158f9c1bf8546be37f5
SHA-256: faf926ccb83a647082bfc950fce04b60887a77aa30243f4d0253770cfbea9709
cumin-0.1.5192-1.el6.src.rpm
File outdated by:  RHBA-2014:1951
    MD5: b30ec4428ffc32a83a125ac97b49b06e
SHA-256: 0f2261437f074b2f2c9116abad20d2d7d12ed3f7320d08627ab63ba79a020794
ruby-spqr-0.3.5-1.el6.src.rpm
File outdated by:  RHSA-2013:0565
    MD5: b398d1a6c57d6ecfd7711a7657797238
SHA-256: 94359c81dbe3fdf9a06503224453369621635dbb65869c4ab42b2a8da94aa9b9
wallaby-0.12.5-1.el6.src.rpm
File outdated by:  RHSA-2013:0565
    MD5: e187154251594da59403a314cf3ce526
SHA-256: 86ec5c0783fde2bf9d258695dae2b867cc7cc246d51377f4bd0763b1bda5a691
 
IA-32:
condor-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: 91f4c587ccaff12be01b7fe8718230dd
SHA-256: 93f2e7b439595afd133f13853bd14d61684c34946e4d090f271cab0f63bf0f2b
condor-aviary-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: 811d2c2250833580b093996108049dff
SHA-256: 8a3c2da7fa5179a7e4dcec0030e3bcb2f95e00be8c1bd8fa8c9b20f38a0fa431
condor-classads-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: d74a83edddacee377e425f9b033c155c
SHA-256: 20b0474874e96c3d090fed102aea6b8ddf7aa76754389bce30c3ee28511bfa61
condor-debuginfo-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: 6e7541f92f2f6eb161dc751a75af6924
SHA-256: fa13fccdde1c9fb09e28ee03bd8036b010686ae3e8829da93b3138353c8621e0
condor-ec2-enhanced-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: ac2b4169a1f3f13e6040e82e031b67ca
SHA-256: ec0f0c7e8826aa3af9ff7cfde6a05090e19493bf0b7278167376eb167d6e0007
condor-ec2-enhanced-hooks-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: da07d497f2028d93196b61f8cbac7b68
SHA-256: 01e0d24409d1491357bd9ab55165431e71d7467b8f2b3915475943e795f77559
condor-kbdd-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: 9e3c4572b00771eea8966505a588405c
SHA-256: f9c77594c268db909cb631cfc1c83f5cbd1a5a820e3da9d72b4a69054fadd53d
condor-plumage-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: cf9bd76f1f6d32ab12cae9a509d3d0a1
SHA-256: 341974ac897226adb4b9d35c5629009eb2256c7cc6a54f884f6afd979c08910d
condor-qmf-7.6.5-0.12.el6.i686.rpm
File outdated by:  RHSA-2015:0035
    MD5: a29adb568d3a0324ce100b3ed4af319d
SHA-256: 82a492d5c4ac1b7257aefb6dd42284b07409c0a386a62be46cab74c4c4792b3e
condor-wallaby-base-db-1.19-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: fb5e16e5ce09385ff888059476cf72fa
SHA-256: e7b6239989d0835ad16fce2af13fef37a59fa0705a1417aa4a8e4f110e02bf04
cumin-0.1.5192-1.el6.noarch.rpm
File outdated by:  RHBA-2014:1951
    MD5: 6eed1ddb38bc4db9577c39016f54759a
SHA-256: b5e052663bb40f4b9e053b94bc40ff91a2d686ff0f690db46ba91300dd8ade4b
python-condorec2e-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: f7a2fb5a543a6a63186180ac1c89ffca
SHA-256: 13f4ee102628f0699900611ad43b71a0b2356c03885575b9bc3e7c37a6128b40
python-wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 337b5549d4209854830a65b7cee54804
SHA-256: 6d10bddd0f933b56d5e7c98c2d5dbcd57aad9e2be5bec71ef4ab0cc4ba3ffb85
ruby-spqr-0.3.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: a1e860fabe756e0ea6b9531419e8a928
SHA-256: 013cbb1e7da0c1d5987633cb0cb8ad88bbafbdf5a0cccbe16a23ab5ac67303c6
ruby-wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: e206e7b019829c20be7ead6887995a3d
SHA-256: 324974226b0783ef93fca1b272157651f0f8ea093009e62d0604683be9633a24
spqr-gen-0.3.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 6070da5eb355297d3f102d2b7a2aedde
SHA-256: eae499a7d7f269f0d89ff8ae236e5616d6098e68c51a4dab7ee14ec52a87d04e
wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 5698097cf2a20f373ccad63870acc5db
SHA-256: cca44d6a7c238d2e28b90d0cd975d187c57c5ce48c7b9cdcfaff27c409555530
wallaby-utils-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 7b3bfb3dfffed8f1dc094bb5ce774ee1
SHA-256: d0c57d2cc678d12aa2c5b267f35fcc716d20250f9a1fd0aa27ee6c7d1d48fd0d
 
x86_64:
condor-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 48f5348ee267f57e7295e7b77deec96a
SHA-256: 2b3de4008c12f2f1a6d43ac3bd01b5dac5d1b9b30468f77aba805c60f0487d58
condor-aviary-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: a0e0eac4ae7f7cf12581c1d5b120587a
SHA-256: 7e024baf12f6d7793ac14dd3284865e665318000f2e9479eb742c9504bf331e0
condor-classads-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 90f355d49ce52d64852ff1b1305b76ca
SHA-256: 3baf8f382e6b4c5ac6d133d2055ff528ec35de1f5c54eb5cbff4c487396460ee
condor-debuginfo-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: f0488e62578c4a70e02e8674dd3cdc3e
SHA-256: 4cf829fe3e5f994a404ffb1468aa5f78639600e2e10099c5d31005adbf3f18cf
condor-ec2-enhanced-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: ac2b4169a1f3f13e6040e82e031b67ca
SHA-256: ec0f0c7e8826aa3af9ff7cfde6a05090e19493bf0b7278167376eb167d6e0007
condor-ec2-enhanced-hooks-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: da07d497f2028d93196b61f8cbac7b68
SHA-256: 01e0d24409d1491357bd9ab55165431e71d7467b8f2b3915475943e795f77559
condor-kbdd-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 83e86be83104cb0bd85c740f23ddbd26
SHA-256: 3f37473f4c36929e4a9a2bd8543453e5aef22c4b499d4aca663bd44e30d41c59
condor-plumage-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 36afa0bd9b23feb767d87eafd9a32abc
SHA-256: 29f5ab9bdf199a2562de9a94f42ba5a35df5ac8a33360e5276eedef9ca21994c
condor-qmf-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 865043b97f7f6e91710d3aae707d08bc
SHA-256: ad9c9bbf0085279fca983d398bf200057a1332bf18447968bef5b2bb3d8e52c7
condor-vm-gahp-7.6.5-0.12.el6.x86_64.rpm
File outdated by:  RHSA-2015:0035
    MD5: 2d66fc7fbe6cc032bacfef93405ab22d
SHA-256: 81b3d6daca08d22966f385ca60ff5df7c042860049e25ec6250eb6a0377b206a
condor-wallaby-base-db-1.19-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: fb5e16e5ce09385ff888059476cf72fa
SHA-256: e7b6239989d0835ad16fce2af13fef37a59fa0705a1417aa4a8e4f110e02bf04
cumin-0.1.5192-1.el6.noarch.rpm
File outdated by:  RHBA-2014:1951
    MD5: 6eed1ddb38bc4db9577c39016f54759a
SHA-256: b5e052663bb40f4b9e053b94bc40ff91a2d686ff0f690db46ba91300dd8ade4b
python-condorec2e-1.3.0-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: f7a2fb5a543a6a63186180ac1c89ffca
SHA-256: 13f4ee102628f0699900611ad43b71a0b2356c03885575b9bc3e7c37a6128b40
python-wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 337b5549d4209854830a65b7cee54804
SHA-256: 6d10bddd0f933b56d5e7c98c2d5dbcd57aad9e2be5bec71ef4ab0cc4ba3ffb85
ruby-spqr-0.3.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: a1e860fabe756e0ea6b9531419e8a928
SHA-256: 013cbb1e7da0c1d5987633cb0cb8ad88bbafbdf5a0cccbe16a23ab5ac67303c6
ruby-wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: e206e7b019829c20be7ead6887995a3d
SHA-256: 324974226b0783ef93fca1b272157651f0f8ea093009e62d0604683be9633a24
spqr-gen-0.3.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 6070da5eb355297d3f102d2b7a2aedde
SHA-256: eae499a7d7f269f0d89ff8ae236e5616d6098e68c51a4dab7ee14ec52a87d04e
wallaby-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 5698097cf2a20f373ccad63870acc5db
SHA-256: cca44d6a7c238d2e28b90d0cd975d187c57c5ce48c7b9cdcfaff27c409555530
wallaby-utils-0.12.5-1.el6.noarch.rpm
File outdated by:  RHSA-2013:0565
    MD5: 7b3bfb3dfffed8f1dc094bb5ce774ee1
SHA-256: d0c57d2cc678d12aa2c5b267f35fcc716d20250f9a1fd0aa27ee6c7d1d48fd0d
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

759548 - CVE-2011-4930 Condor: Multiple format string flaws


References


Keywords

2.1.1, Bug, Enhancements,, Fix,, Grid,, Management,, MRG,, Security,


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/