Table of Contents
Advertisement
Chapter 1. Package Updates
directory and its symlink): "Too many levels of symbolic links". With this update, readlink is once again
able to correctly resolve and output the value of the recursive symbolic links to containing directories,
or "directory loops", thus resolving the issue.
All coreutils users should upgrade to this updated package, which addresses this regression.
1.25. cpio
1.25.1. RHSA-2010:0144: Moderate security update
Important
This update has already been released (prior to the GA of this release) as the security
RHSA-2010:0144
errata
An updated cpio package that fixes two security issues is now available for Red Hat Enterprise Linux
5.
This update has been rated as having moderate security impact by the Red Hat Security Response
Team.
GNU cpio copies files into or out of a cpio or tar archive.
A heap-based buffer overflow flaw was found in the way cpio expanded archive files. If a user were
tricked into expanding a specially-crafted archive, it could cause the cpio executable to crash or
execute arbitrary code with the privileges of the user running cpio.
Red Hat would like to thank Jakob Lell for responsibly reporting the
A denial of service flaw was found in the way cpio expanded archive files. If a user expanded a
specially-crafted archive, it could cause the cpio executable to crash.
Users of cpio are advised to upgrade to this updated package, which contains backported patches to
correct these issues.
1.26. cpuspeed
1.26.1. RHBA-2010:0035: bug fix update
Note
This update has already been released (prior to the GA of this release) as FASTRACK
RHBA-2010:0035
errata
209
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=567545
211
https://www.redhat.com/security/data/cve/CVE-2010-0624.html
212
https://www.redhat.com/security/data/cve/CVE-2010-0624.html
213
https://www.redhat.com/security/data/cve/CVE-2007-4476.html
30
209
(BZ#567545
210
214
)
(CVE-2010-0624
CVE-2010-0624
(CVE-2007-4476
211
)
212
issue.
213
)
Advertisement
Table of Contents
