ELSA-2015-1083

ULN >
Oracle Linux Errata repository >
ELSA-2015-1083

ELSA-2015-1083 - abrt security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2015-06-09

Description

abrt
[2.1.11-22.0.1]
- Drop libreport-rhel and libreport-plugin-rhtsupport requires

[2.1.11-22]
- do not open the build_ids file as the user abrt
- do not unlink failed and big user core files
- Related: #1212819, #1216973

[2.1.11-21]
- validate all D-Bus method arguments
- Related: #1214610

[2.1.11-20]
- remove the old dump directories during upgrade
- abrt-action-install-debuginfo-to-abrt-cache: sanitize arguments and umask
- fix race conditions and directory traversal issues in abrt-dbus
- use /var/spool/abrt instead of /var/tmp/abrt
- make the problem directories owned by root and the group abrt
- validate uploaded problem directories in abrt-handle-upload
- don't override files with user core dump files
- fix symbolic link and race condition flaws
- Resolves: #1211969, #1212819, #1212863, #1212869
- Resolves: #1214453, #1214610, #1216973, #1218583

libreport
[2.1.11-23.0.1]
- Update workflow xml for Oracle [18945470]
- Add oracle-enterprise.patch and oracle-enterprise-po.patch
- Remove libreport-plugin-rhtsupport and libreport-rhel
- Added orabug20390725.patch to remove redhat reference [bug 20390725]
- Added Bug20357383.patch to remove redhat reference [bug 20357383]

[2.1.11-23]
- do not open files outside a dump directory
- Related: #1217484

[2.1.11-22]
- switch the default dump dir mode to 0750
- harden against directory traversal, crafted symbolic links
- avoid race-conditions in dump dir opening
- Resolves: #1212096, #1217499, #1218610, #1217484

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (x86_64)	abrt-2.1.11-22.0.1.el7_1.src.rpm	af6105b4efb7dbacd302af1126719efa	ELBA-2020-3912
	libreport-2.1.11-23.0.1.el7_1.src.rpm	6ade8c23a024f273f5053bbaaacd2abe	ELBA-2020-1040
	abrt-2.1.11-22.0.1.el7_1.x86_64.rpm	f11928f3a77903e98f6b8e87d64d2548	ELBA-2020-3912
	abrt-addon-ccpp-2.1.11-22.0.1.el7_1.x86_64.rpm	fbfd79932e3a162468da694830c6d85a	ELBA-2020-3912
	abrt-addon-kerneloops-2.1.11-22.0.1.el7_1.x86_64.rpm	46fac57a3718d6aa9dec8ead9974f08d	ELBA-2020-3912
	abrt-addon-pstoreoops-2.1.11-22.0.1.el7_1.x86_64.rpm	59735453d9fe8f72fad075cbfe1ac3a9	ELBA-2020-3912
	abrt-addon-python-2.1.11-22.0.1.el7_1.x86_64.rpm	896b4ac98f9ffd5859b9d8f266735029	ELBA-2020-3912
	abrt-addon-upload-watch-2.1.11-22.0.1.el7_1.x86_64.rpm	b1ecaf1678a0d282050320943a6a840f	ELBA-2020-3912
	abrt-addon-vmcore-2.1.11-22.0.1.el7_1.x86_64.rpm	8188a0815e66cf38b165d679f9501553	ELBA-2020-3912
	abrt-addon-xorg-2.1.11-22.0.1.el7_1.x86_64.rpm	bc17120f7c2564633840cb805de3d4e5	ELBA-2020-3912
	abrt-cli-2.1.11-22.0.1.el7_1.x86_64.rpm	df6c82e9baaa5c6b17d09b8ca0f004d2	ELBA-2020-3912
	abrt-console-notification-2.1.11-22.0.1.el7_1.x86_64.rpm	7f0b933a5caa52d4268729c76e8acf8a	ELBA-2020-3912
	abrt-dbus-2.1.11-22.0.1.el7_1.x86_64.rpm	accb12eb7e8e851a1a341cdf492499fc	ELBA-2020-3912
	abrt-desktop-2.1.11-22.0.1.el7_1.x86_64.rpm	faa71e8dff1da39c4fd43ce0d80544ad	ELBA-2020-3912
	abrt-devel-2.1.11-22.0.1.el7_1.i686.rpm	30fe1f4049c9e32a1c46abb20bf7a7c5	ELBA-2020-3912
	abrt-devel-2.1.11-22.0.1.el7_1.x86_64.rpm	78992e9717e91ccebf6afbe4558a7679	ELBA-2020-3912
	abrt-gui-2.1.11-22.0.1.el7_1.x86_64.rpm	fa30a30b0c1c5442462a86dc5dade5fb	ELBA-2020-3912
	abrt-gui-devel-2.1.11-22.0.1.el7_1.i686.rpm	6736536be6a2963e34dcccdf788d61ff	ELBA-2020-3912
	abrt-gui-devel-2.1.11-22.0.1.el7_1.x86_64.rpm	f6632ad955293aa2d97a5c2266bd31b9	ELBA-2020-3912
	abrt-gui-libs-2.1.11-22.0.1.el7_1.i686.rpm	a5d4a64dc2a0265d5eaf502f650e3fe9	ELBA-2020-3912
	abrt-gui-libs-2.1.11-22.0.1.el7_1.x86_64.rpm	df26334294bcf74b632c82594fa3d779	ELBA-2020-3912
	abrt-libs-2.1.11-22.0.1.el7_1.i686.rpm	70e27ed2b4062e49ac3d8f4dc0dbb1b6	ELBA-2020-3912
	abrt-libs-2.1.11-22.0.1.el7_1.x86_64.rpm	0a2f0ab2d50dbef0baf8075dca555148	ELBA-2020-3912
	abrt-python-2.1.11-22.0.1.el7_1.x86_64.rpm	259047cbef104d91447dcc9878ad299c	ELBA-2020-3912
	abrt-python-doc-2.1.11-22.0.1.el7_1.noarch.rpm	fcc4a85a7beba2b3a7067b847b195cfe	ELBA-2020-3912
	abrt-retrace-client-2.1.11-22.0.1.el7_1.x86_64.rpm	df65de512141dda11e9001399e172711	ELBA-2020-3912
	abrt-tui-2.1.11-22.0.1.el7_1.x86_64.rpm	0876073b7ba5573af012791419b865b6	ELBA-2020-3912
	libreport-2.1.11-23.0.1.el7_1.i686.rpm	3e63b89a50c742319d6a8a46869907bd	ELBA-2020-1040
	libreport-2.1.11-23.0.1.el7_1.x86_64.rpm	5c0c52ac16647f30d1791d03127a7164	ELBA-2020-1040
	libreport-anaconda-2.1.11-23.0.1.el7_1.x86_64.rpm	a4b8a5c58197310802c62e5242f9a0f8	ELBA-2020-1040
	libreport-cli-2.1.11-23.0.1.el7_1.x86_64.rpm	7e477729359486d6466bb6c6a8a391a9	ELBA-2020-1040
	libreport-compat-2.1.11-23.0.1.el7_1.x86_64.rpm	c2df16f4c58439992747ea4bd90d8729	ELBA-2020-1040
	libreport-devel-2.1.11-23.0.1.el7_1.i686.rpm	54a9551717ff219f4f8cfc92a402c6a6	ELBA-2020-1040
	libreport-devel-2.1.11-23.0.1.el7_1.x86_64.rpm	d3e35b8caf6803871f8775dd00fd15aa	ELBA-2020-1040
	libreport-filesystem-2.1.11-23.0.1.el7_1.x86_64.rpm	241eecec94de8e843b5502e378b34e84	ELBA-2020-1040
	libreport-gtk-2.1.11-23.0.1.el7_1.i686.rpm	93380d9c1d455346f9afc800fd41fd17	ELBA-2020-1040
	libreport-gtk-2.1.11-23.0.1.el7_1.x86_64.rpm	eac14503220d60eae54f77d5a73ff123	ELBA-2020-1040
	libreport-gtk-devel-2.1.11-23.0.1.el7_1.i686.rpm	0320e1a120452489ecce98678b4edb28	ELBA-2020-1040
	libreport-gtk-devel-2.1.11-23.0.1.el7_1.x86_64.rpm	4af81639e7fa977c8c18c3c5087f6d3f	ELBA-2020-1040
	libreport-newt-2.1.11-23.0.1.el7_1.x86_64.rpm	8608c4dc7181fb7e6baa6cf7b0e61fb6	ELBA-2020-1040
	libreport-plugin-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm	5c40b7f4dce35289f62928c1a203ac3d	ELBA-2020-1040
	libreport-plugin-kerneloops-2.1.11-23.0.1.el7_1.x86_64.rpm	c88d03177a7147847ddeb27f4c2be35c	ELBA-2020-1040
	libreport-plugin-logger-2.1.11-23.0.1.el7_1.x86_64.rpm	ab1a40d0394920324e62f5ea48fd6b58	ELBA-2020-1040
	libreport-plugin-mailx-2.1.11-23.0.1.el7_1.x86_64.rpm	524819dc98d39df3d8975c334972d270	ELBA-2020-1040
	libreport-plugin-reportuploader-2.1.11-23.0.1.el7_1.x86_64.rpm	201e888fa145482456bf40215cc785c7	ELBA-2020-1040
	libreport-plugin-ureport-2.1.11-23.0.1.el7_1.x86_64.rpm	594e7d58e6e39746e3ebe169f4d3ac05	ELBA-2020-1040
	libreport-python-2.1.11-23.0.1.el7_1.x86_64.rpm	23351020a41c407512916c95902a7d97	ELBA-2020-1040
	libreport-rhel-anaconda-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm	03e4ecf41baf84eb3d5bca8a452a020d	ELBA-2020-1040
	libreport-rhel-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm	247a7d5e6cee8aa30f16a8f46e099aeb	ELBA-2020-1040
	libreport-web-2.1.11-23.0.1.el7_1.i686.rpm	3ac71ee14b55a7d48afd5807a1769a99	ELBA-2020-1040
	libreport-web-2.1.11-23.0.1.el7_1.x86_64.rpm	021812de7eeded617281d01a65864a52	ELBA-2020-1040
	libreport-web-devel-2.1.11-23.0.1.el7_1.i686.rpm	737d325132cf1abd9315c27092caea7b	ELBA-2020-1040
	libreport-web-devel-2.1.11-23.0.1.el7_1.x86_64.rpm	59641ed52934f069ab9ab2de18bcc448	ELBA-2020-1040

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691