Security Advisory Critical: glibc security update

Advisory: RHSA-2015:0090-1
Type: Security Advisory
Severity: Critical
Issued on: 2015-01-27
Last updated on: 2015-01-27
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2015-0235

Details

Updated glibc packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

Red Hat Product Security has rated this update as having Critical security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

The glibc packages provide the standard C libraries (libc), POSIX thread
libraries (libpthread), standard math libraries (libm), and the Name
Server Caching Daemon (nscd) used by multiple programs on the system.
Without these libraries, the Linux system cannot function correctly.

A heap-based buffer overflow was found in glibc's
__nss_hostname_digits_dots() function, which is used by the gethostbyname()
and gethostbyname2() glibc function calls. A remote attacker able to make
an application call either of these functions could use this flaw to
execute arbitrary code with the permissions of the user running the
application. (CVE-2015-0235)

Red Hat would like to thank Qualys for reporting this issue.

All glibc users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
glibc-2.5-123.el5_11.1.src.rpm
File outdated by:  RHSA-2015:1627
    MD5: 7371da482106e572f278ca0f2f133b27
SHA-256: 312e2681b0a6721b2099f19078d76deb5583543a17a568c1c234a58280f5e484
 
IA-32:
glibc-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 3da16fec4db1c5ecfc122bcbd164bde8
SHA-256: 840bf700867339c79f431a9ffd1b838b916e3ca9134ec7ac2779134f476b9762
glibc-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: d76cd3e0c73b9c6043bb81334364d94b
SHA-256: 76a68f01dc916b2fb997842292e6ab143373ef39e81b6121852f95a01090c059
glibc-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: d0dbce48ef44e610c574f7a0cec2fad5
SHA-256: 8dbdcdcda33cc4f3b577ff75ff049f81477c300a7c3d6a618b4082f528ce8110
glibc-debuginfo-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9c3ac38c097769bde4d6a3c57d939cb9
SHA-256: bbaa7a93e5d6c1ab29ee181b50c52676001eff3b332032fd4951f990eff25fd9
glibc-debuginfo-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: c6a951d724d902f22aa87fff2a06c114
SHA-256: 34a5ea91f29d2c1d1e47515c1f7da2ce0553d4d6584b118d93cc17a55912f059
glibc-debuginfo-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 06ab2b72df65e2de6a638d642011d7f0
SHA-256: 24f2d93ee8c5daa4d6eea67851713a4b72f08ee03cdf0c95ccbcc89f2e899b8a
glibc-devel-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9d1e5e7eea3c08911d0a6e8d71967d86
SHA-256: 358207d50ef441a3b5d7553427339838765ee05a2e0f551a7fc374705d1d8be5
glibc-headers-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 3ec8b60ea3ac7beabe38f336f9c27309
SHA-256: a4fc8b1184089ed7e6377410d50d8200b184dfb6f09ee1f8ee4c63b21499d947
glibc-utils-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 6c6fb74e570e8cc523a9649d3c992ad0
SHA-256: 12016a3145544642d3e3d56102d01522f5ca0db421c9371fe77e1e0d8bd267b4
nscd-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: e3d4d177c78b7d3cada57492c9d82f2b
SHA-256: 2d64f60783bc0c90cc478e95b644aad2637a5abdcc1887d2d92918c94084814e
 
IA-64:
glibc-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: d76cd3e0c73b9c6043bb81334364d94b
SHA-256: 76a68f01dc916b2fb997842292e6ab143373ef39e81b6121852f95a01090c059
glibc-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: ea8f6f4dce3904435fbf16c90775be62
SHA-256: ba3a5761b91bb6cf787e8e46d67d1d4061adf9a28b58fbb7233c69b425b2d084
glibc-common-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: f2387dbe50a9400ac01defa465f905a6
SHA-256: f16401393df6115d9a31eb5a3bc0ccf4a5373299f05439e0fdfb2474f2ce8019
glibc-debuginfo-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: c6a951d724d902f22aa87fff2a06c114
SHA-256: 34a5ea91f29d2c1d1e47515c1f7da2ce0553d4d6584b118d93cc17a55912f059
glibc-debuginfo-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 4651b918af3d075d38b9e72da44a1660
SHA-256: 8a91cea5a36b8fb817b430815e3860c147c4553a208a873ee8c3030380e03767
glibc-debuginfo-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 06ab2b72df65e2de6a638d642011d7f0
SHA-256: 24f2d93ee8c5daa4d6eea67851713a4b72f08ee03cdf0c95ccbcc89f2e899b8a
glibc-devel-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 98bb1e4612f6fe0cc273fc6d3ae59b70
SHA-256: 10deca84eeb9786890dbfb8e715a4f93011659f2375a3a2a48090b27369cced0
glibc-headers-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 51b9045e3938b52ebe4162135eb3f2ee
SHA-256: 77acea2fa0cb3ce4738c2ddfac85edd1dbb3f2a93494fc252503a0d6ebc011a3
glibc-utils-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: aeea51d7107b9e2a862908606171219f
SHA-256: 3a62959478606753a93096a9e4628ae1516e72327ab672d9684724a91e73a402
nscd-2.5-123.el5_11.1.ia64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 8e90633633b5ac1e5378a8b58b7e46b6
SHA-256: a043195c3a8086856e6e40e5df331b566464cf3365a78db08ef028b2e22b11f6
 
PPC:
glibc-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: 5a41ff87207a50db9e1243c25b8da256
SHA-256: be6347278a787443c282c0d7230cd748d39ac3950edc290a010e5e6d96484b5e
glibc-2.5-123.el5_11.1.ppc64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9e9d91ae5311a9534fe54cdce96cf347
SHA-256: f2e3a4adc6fce980c28beec74f353acfe38d536d6846b6bda74b326dddbdb044
glibc-common-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: d9a2eb4fdb4ce9f0d455b1e96573b348
SHA-256: b006c3525c3c378ffcf3a543ab82ec526f63ea75fac6ad20667b2127f4544610
glibc-debuginfo-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: b7ce60a7a3a49bfc6579c1d223c440fb
SHA-256: a659323a02cba60073f7f72e7ffad8b0f35c9943e92569098e71071ef3035b89
glibc-debuginfo-2.5-123.el5_11.1.ppc64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 4b527444b63a932fa6c4c5b2138805b3
SHA-256: ec7362f1c6271e400a1556b7fe5cdb60b3c75b0f84baf9d8122c7703e4724fe1
glibc-devel-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: a9429eb3eee41f3baea2966d44aacc22
SHA-256: 04321ebb1cf3836e07559747c1758ed2bcf6e931901eead38fbfec90c351cd42
glibc-devel-2.5-123.el5_11.1.ppc64.rpm
File outdated by:  RHSA-2015:1627
    MD5: c435cac991016822b397e7979374262e
SHA-256: bb6f904292e887bb44078fe85c7af52fc3c090392d1ab265bcf1aee59b6846f3
glibc-headers-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: f476d27c9869144ba6156322068cf17e
SHA-256: b3881f3fe975c8489777482b1428a43e3e8a50bca81a13c410bf15e09b9f2c46
glibc-utils-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: 90afe258d683a2418b725a1c2183526f
SHA-256: c5b444b537833cbf45e100b44d923248d51121d2f270fc31abbd6da70c2a9adf
nscd-2.5-123.el5_11.1.ppc.rpm
File outdated by:  RHSA-2015:1627
    MD5: 766a2a8ba9c853e1e6a9a4d6a3461b36
SHA-256: b332b2f5cfa3543c3e8144d147eae46d2914d0b11415edd2adfe62179e56d835
 
s390x:
glibc-2.5-123.el5_11.1.s390.rpm
File outdated by:  RHSA-2015:1627
    MD5: 3413f6b14b382a76b15975af38cc5ef2
SHA-256: 0bd79cf01950af333ede3709ae47f50f5bd2eebce5dbbfa6f01ced40570e8305
glibc-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 30f887a017f834eaf8e2eccd97ff4364
SHA-256: 58a4e2a476fdb2b20b34997161038afcb4a607078f16bd21cf1f2a7386ed245e
glibc-common-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 55709e645cda5785d5a580b7bdb57c57
SHA-256: 17a7693e2fa18b0514bf0d58a1a4d5df25e41163d45c5b3b2ebb2780f56c36b8
glibc-debuginfo-2.5-123.el5_11.1.s390.rpm
File outdated by:  RHSA-2015:1627
    MD5: 95a14a27189640b7eb94698279eb80e2
SHA-256: efdfb8b6a11e09f442d14160ac667f3f0bc291a7605844555d9faf16a464960d
glibc-debuginfo-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 791099cfc72fb2290be83bf2340a98c2
SHA-256: 144f34e45377eacc0d0aef4e490e591533ed3fe6c31328aace348ee348620d28
glibc-devel-2.5-123.el5_11.1.s390.rpm
File outdated by:  RHSA-2015:1627
    MD5: b0238e13c3be606ed05f751e92004bbb
SHA-256: 369d3c3f1b736a0ebe5a01074657b867bba4f72c983e1a79293a21b8779f901b
glibc-devel-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 7b5fc475389f9da4965e68b659f0847c
SHA-256: 10f44d425435b5bd144d1d8b228fc98a27f3f0b07c692ca2d55e999a0c47c764
glibc-headers-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 95125d74bf9f985615c3ef93dcd67aa8
SHA-256: 9c1ab9e8d4c2b92abe5a29c1bff97f15881cba7174746b504f5a262883084a10
glibc-utils-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: dfb46fec15e9601678d673eb5019417e
SHA-256: 1dcca1c3889e9ccff1a3814d8a30634aa9ae6819251f05def6a160cbdeb07699
nscd-2.5-123.el5_11.1.s390x.rpm
File outdated by:  RHSA-2015:1627
    MD5: 984dd376593f25845f90f582136e824c
SHA-256: c15f82dbc4819e1644840b1a95cf83b0897e72cd1f4c28145b4145e9bd2181f4
 
x86_64:
glibc-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: d76cd3e0c73b9c6043bb81334364d94b
SHA-256: 76a68f01dc916b2fb997842292e6ab143373ef39e81b6121852f95a01090c059
glibc-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 0afaf382ce8f424b8868e39e1f6521b5
SHA-256: fbb779da0c1b42c69dc7e3d1094aaf8e17bbbcd09eb9b1531369506e4f303eb6
glibc-common-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 493bf12eb45786f27168e69c4f095164
SHA-256: 87aec51ae18e41661479b356a94130db9033aaf3f49307d479a9a50158b116f4
glibc-debuginfo-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9c3ac38c097769bde4d6a3c57d939cb9
SHA-256: bbaa7a93e5d6c1ab29ee181b50c52676001eff3b332032fd4951f990eff25fd9
glibc-debuginfo-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: c6a951d724d902f22aa87fff2a06c114
SHA-256: 34a5ea91f29d2c1d1e47515c1f7da2ce0553d4d6584b118d93cc17a55912f059
glibc-debuginfo-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: c2fba42b8a4304a2392457489d7ac5c1
SHA-256: a1fcab0523bca79f6b1c9ce2499b680fe7e56a6b4ada7ac884f19438b2e32bfb
glibc-debuginfo-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 06ab2b72df65e2de6a638d642011d7f0
SHA-256: 24f2d93ee8c5daa4d6eea67851713a4b72f08ee03cdf0c95ccbcc89f2e899b8a
glibc-devel-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9d1e5e7eea3c08911d0a6e8d71967d86
SHA-256: 358207d50ef441a3b5d7553427339838765ee05a2e0f551a7fc374705d1d8be5
glibc-devel-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: f3f9355c4e27c3c64bf264ccaabe05ab
SHA-256: 93dc0064e8f874e87e497fb27f723e1823375ef4ef1db23c083ca7042c3557c7
glibc-headers-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 870df2d22ef30c7fd9dfb82cd12d90ae
SHA-256: f9a0fb9d408c9acad9fe52c5ebd749143378576e802395c1cb469c7912f06764
glibc-utils-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: fdb3c3178e3ac436b3a8fd452fe1c65a
SHA-256: a8b0f1bb7c8f1e1087e13fb0608b6ba026f8aa6e796c12b1d7f5411a96105dd0
nscd-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 83ec2f42af134141184a295e4e85b59e
SHA-256: 376945dc125372bf9f21f561445c389adcbada7cfde2007a842d51793510189b
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
glibc-2.5-123.el5_11.1.src.rpm
File outdated by:  RHSA-2015:1627
    MD5: 7371da482106e572f278ca0f2f133b27
SHA-256: 312e2681b0a6721b2099f19078d76deb5583543a17a568c1c234a58280f5e484
 
IA-32:
glibc-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 3da16fec4db1c5ecfc122bcbd164bde8
SHA-256: 840bf700867339c79f431a9ffd1b838b916e3ca9134ec7ac2779134f476b9762
glibc-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: d76cd3e0c73b9c6043bb81334364d94b
SHA-256: 76a68f01dc916b2fb997842292e6ab143373ef39e81b6121852f95a01090c059
glibc-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: d0dbce48ef44e610c574f7a0cec2fad5
SHA-256: 8dbdcdcda33cc4f3b577ff75ff049f81477c300a7c3d6a618b4082f528ce8110
glibc-debuginfo-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9c3ac38c097769bde4d6a3c57d939cb9
SHA-256: bbaa7a93e5d6c1ab29ee181b50c52676001eff3b332032fd4951f990eff25fd9
glibc-debuginfo-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: c6a951d724d902f22aa87fff2a06c114
SHA-256: 34a5ea91f29d2c1d1e47515c1f7da2ce0553d4d6584b118d93cc17a55912f059
glibc-debuginfo-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 06ab2b72df65e2de6a638d642011d7f0
SHA-256: 24f2d93ee8c5daa4d6eea67851713a4b72f08ee03cdf0c95ccbcc89f2e899b8a
glibc-devel-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9d1e5e7eea3c08911d0a6e8d71967d86
SHA-256: 358207d50ef441a3b5d7553427339838765ee05a2e0f551a7fc374705d1d8be5
glibc-headers-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 3ec8b60ea3ac7beabe38f336f9c27309
SHA-256: a4fc8b1184089ed7e6377410d50d8200b184dfb6f09ee1f8ee4c63b21499d947
glibc-utils-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 6c6fb74e570e8cc523a9649d3c992ad0
SHA-256: 12016a3145544642d3e3d56102d01522f5ca0db421c9371fe77e1e0d8bd267b4
nscd-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: e3d4d177c78b7d3cada57492c9d82f2b
SHA-256: 2d64f60783bc0c90cc478e95b644aad2637a5abdcc1887d2d92918c94084814e
 
x86_64:
glibc-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: d76cd3e0c73b9c6043bb81334364d94b
SHA-256: 76a68f01dc916b2fb997842292e6ab143373ef39e81b6121852f95a01090c059
glibc-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 0afaf382ce8f424b8868e39e1f6521b5
SHA-256: fbb779da0c1b42c69dc7e3d1094aaf8e17bbbcd09eb9b1531369506e4f303eb6
glibc-common-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 493bf12eb45786f27168e69c4f095164
SHA-256: 87aec51ae18e41661479b356a94130db9033aaf3f49307d479a9a50158b116f4
glibc-debuginfo-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9c3ac38c097769bde4d6a3c57d939cb9
SHA-256: bbaa7a93e5d6c1ab29ee181b50c52676001eff3b332032fd4951f990eff25fd9
glibc-debuginfo-2.5-123.el5_11.1.i686.rpm
File outdated by:  RHSA-2015:1627
    MD5: c6a951d724d902f22aa87fff2a06c114
SHA-256: 34a5ea91f29d2c1d1e47515c1f7da2ce0553d4d6584b118d93cc17a55912f059
glibc-debuginfo-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: c2fba42b8a4304a2392457489d7ac5c1
SHA-256: a1fcab0523bca79f6b1c9ce2499b680fe7e56a6b4ada7ac884f19438b2e32bfb
glibc-debuginfo-common-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 06ab2b72df65e2de6a638d642011d7f0
SHA-256: 24f2d93ee8c5daa4d6eea67851713a4b72f08ee03cdf0c95ccbcc89f2e899b8a
glibc-devel-2.5-123.el5_11.1.i386.rpm
File outdated by:  RHSA-2015:1627
    MD5: 9d1e5e7eea3c08911d0a6e8d71967d86
SHA-256: 358207d50ef441a3b5d7553427339838765ee05a2e0f551a7fc374705d1d8be5
glibc-devel-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: f3f9355c4e27c3c64bf264ccaabe05ab
SHA-256: 93dc0064e8f874e87e497fb27f723e1823375ef4ef1db23c083ca7042c3557c7
glibc-headers-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 870df2d22ef30c7fd9dfb82cd12d90ae
SHA-256: f9a0fb9d408c9acad9fe52c5ebd749143378576e802395c1cb469c7912f06764
glibc-utils-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: fdb3c3178e3ac436b3a8fd452fe1c65a
SHA-256: a8b0f1bb7c8f1e1087e13fb0608b6ba026f8aa6e796c12b1d7f5411a96105dd0
nscd-2.5-123.el5_11.1.x86_64.rpm
File outdated by:  RHSA-2015:1627
    MD5: 83ec2f42af134141184a295e4e85b59e
SHA-256: 376945dc125372bf9f21f561445c389adcbada7cfde2007a842d51793510189b
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1183461 - CVE-2015-0235 glibc: __nss_hostname_digits_dots() heap-based buffer overflow


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/