quota-3.13-8.AXS3
エラータID: AXSA:2013-12:01
Release date:
Monday, January 14, 2013 - 13:10
Subject:
quota-3.13-8.AXS3
Affected Channels:
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Severity:
High
Description:
The quota package contains system administration tools for monitoring and limiting user and or group disk usage per filesystem.
Security issues fixed with this release:
• CVE-2012-3417
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.
Solution:
Update packages.
CVEs:
CVE-2012-3417
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.
The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.
Additional Info:
N/A
Download:
SRPMS
- quota-3.13-8.AXS3.src.rpm
MD5: f06efcb34501297af5b713e42589dbca
SHA-256: 27472590f9b1f45d54fa011700bb14069970f991de1e4620a0068200bfbbcc20
Size: 265.88 kB
Asianux Server 3 for x86
- quota-3.13-8.AXS3.i386.rpm
MD5: 0840c757965902ac7c67ad5fc2fc7c39
SHA-256: f6d61f5493e89b7b2ad9dcef04bdf2f0c372d82f2f1434298bb34013dd9d9a2b
Size: 356.63 kB
Asianux Server 3 for x86_64
- quota-3.13-8.AXS3.x86_64.rpm
MD5: af598192401ff2e42152e3f7bb782d94
SHA-256: fdcb710055db5c5c159fee64bdacdf0a37e045ff8f88312323b9ae8efff492e2
Size: 346.96 kB
日本語