libcgroup-0.41-21.el7
エラータID: AXSA:2019-4180:01
Release date:
Tuesday, August 20, 2019 - 09:41
Subject:
libcgroup-0.41-21.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
The libcgroup packages provide tools and libraries to control and monitor control groups.
Security Fix(es):
* libcgroup: cgrulesengd creates log files with insecure permissions (CVE-2018-14348)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2018-14348
libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information.
Solution:
Update packages.
CVEs:
CVE-2018-14348
libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information.
libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information.
Additional Info:
N/A
Download:
SRPMS
- libcgroup-0.41-21.el7.src.rpm
MD5: b769ea2f8fa3af2572cbcf71a781ebe5
SHA-256: 7faaf64d1ceaf4fd85b799cc1a9895dd582d50078f22c02f884b00246f584eb3
Size: 528.55 kB
Asianux Server 7 for x86_64
- libcgroup-0.41-21.el7.x86_64.rpm
MD5: f4be48829a7f5a37f8123a3d6054d428
SHA-256: a6fde4cb88b13dd8a9ac5826450fdd37b96ef6408be8736dbff30140bcf3fc1f
Size: 65.23 kB - libcgroup-tools-0.41-21.el7.x86_64.rpm
MD5: d6facf9c3e009c38f3560cea705ece5b
SHA-256: c685b7bfa3dc90baea4e17f603ebd4341e43cd230477209f6718b6eac4d64ffb
Size: 98.50 kB - libcgroup-0.41-21.el7.i686.rpm
MD5: 84449cc583cf9ddce7b1b87f9e3bd198
SHA-256: d1cd1e549651aa2290d6720e9a16b81c0e2012e44dab2123d8e178dda86f36f2
Size: 64.00 kB