nfs-utils-1.0.9-60.AXS3

The nfs-utils package provides a daemon for the kernel NFS server and related tools, which provides a much higher level of performance than the traditional Linux NFS server used by most users.
This package also contains the showmount program. Showmount queries the mount daemon on a remote host for information about the NFS (Network File System) server on the remote host. For example, showmount can display the clients which are mounted on that host.
This package also contains the mount.nfs and umount.nfs program.
Security issues fixed with this release:
CVE-2011-1749
No information available at the time of writing, please refer to the CVE links below.
Fixed bugs:
• If the NFSv1, NFSv2, and NFSv4 support was disabled (the MOUNTD_NFS_V1=no, MOUNTD_NFS_V2=no MOUNTD_NFS_V3=no lines in /etc/sysconfig/nfs were uncommented), the nfs service would fail to start. This has been fixed.
• Removed excessive logging in the /var/log/messages file if a user's Kerberos ticket expired.
• The crash simulation (SM_SIMU_CRASH) of the rpc.statd service had a vulnerability that ISS (Internet Security Scanner) could detect. the rpc.statd would then crash with the following error:
rpc.statd[xxxx]: recv_rply: can't decode RPC message! rpc.statd[xxxx]: *** SIMULATING CRASH! *** rpc.statd[xxxx]: unable to register (statd, 1, udp).
• Simulation crash support has been removed and the problem no longer occurs.
• Previously, the nfs-utils init scripts returned incorrect status codes in the following cases:
   – if the rpcgssd and rpcsvcgssd daemon were not configured
   – if the rpcgssd and rpcsvcgssd daemon were provided an unknown argument,
   – if the rpcgssd and rpcsvcgssd daemon function call failed,
   – if a program was no longer running and a /var/lock/subsys/$SERVICE file existed,
   – if starting a service under an unprivileged user,
   – if a program was no longer running and its pid file still existed in the /var/run/ directory.
The correct codes are now returned in these scenarios.
• Fixed nfsstat -m command not displaying NFSv4 mounts.
• Removed the unsupported fsc mount option from the man pages.
• The nfs-utils preinstall scriptlet has been modified so that it changes the default group ID for the nfsnobody user to 65534 as expected.
• The mount.nfs command with the -o retry option did not try to mount for the time specified in the retry=X configuration option; this has been fixed.
Enhancement:
• Added the noresvport option: it allows NFS clients to use insecure ports (ports above 1023).