ELSA-2015-1083

ELSA-2015-1083 - abrt security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2015-06-09

Description


abrt
[2.1.11-22.0.1]
- Drop libreport-rhel and libreport-plugin-rhtsupport requires

[2.1.11-22]
- do not open the build_ids file as the user abrt
- do not unlink failed and big user core files
- Related: #1212819, #1216973

[2.1.11-21]
- validate all D-Bus method arguments
- Related: #1214610

[2.1.11-20]
- remove the old dump directories during upgrade
- abrt-action-install-debuginfo-to-abrt-cache: sanitize arguments and umask
- fix race conditions and directory traversal issues in abrt-dbus
- use /var/spool/abrt instead of /var/tmp/abrt
- make the problem directories owned by root and the group abrt
- validate uploaded problem directories in abrt-handle-upload
- don't override files with user core dump files
- fix symbolic link and race condition flaws
- Resolves: #1211969, #1212819, #1212863, #1212869
- Resolves: #1214453, #1214610, #1216973, #1218583

libreport
[2.1.11-23.0.1]
- Update workflow xml for Oracle [18945470]
- Add oracle-enterprise.patch and oracle-enterprise-po.patch
- Remove libreport-plugin-rhtsupport and libreport-rhel
- Added orabug20390725.patch to remove redhat reference [bug 20390725]
- Added Bug20357383.patch to remove redhat reference [bug 20357383]

[2.1.11-23]
- do not open files outside a dump directory
- Related: #1217484

[2.1.11-22]
- switch the default dump dir mode to 0750
- harden against directory traversal, crafted symbolic links
- avoid race-conditions in dump dir opening
- Resolves: #1212096, #1217499, #1218610, #1217484


Related CVEs


CVE-2015-3142
CVE-2015-3151
CVE-2015-3147
CVE-2015-1869
CVE-2015-1870
CVE-2015-3150
CVE-2015-3315
CVE-2015-3159

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) abrt-2.1.11-22.0.1.el7_1.src.rpm736ea2f4da28b869446a437dba0bff0035a05eaede692b8b3e2514e4bbe92625ELBA-2022-9707ol7_x86_64_latest_archive
abrt-2.1.11-22.0.1.el7_1.src.rpm736ea2f4da28b869446a437dba0bff0035a05eaede692b8b3e2514e4bbe92625ELBA-2022-9707ol7_x86_64_optional_archive
abrt-2.1.11-22.0.1.el7_1.src.rpm736ea2f4da28b869446a437dba0bff0035a05eaede692b8b3e2514e4bbe92625ELBA-2022-9707ol7_x86_64_u1_patch
libreport-2.1.11-23.0.1.el7_1.src.rpmc7d996b59d4e2a4919a141981cb8b43c79b971ac47151aab26fda775ae9dde38ELBA-2023-12525ol7_x86_64_latest_archive
libreport-2.1.11-23.0.1.el7_1.src.rpmc7d996b59d4e2a4919a141981cb8b43c79b971ac47151aab26fda775ae9dde38ELBA-2023-12525ol7_x86_64_optional_archive
libreport-2.1.11-23.0.1.el7_1.src.rpmc7d996b59d4e2a4919a141981cb8b43c79b971ac47151aab26fda775ae9dde38ELBA-2023-12525ol7_x86_64_u1_patch
abrt-2.1.11-22.0.1.el7_1.x86_64.rpmedae6ca2a3117fca3ebe3f048b139d11591717104f0f7964300253947984e47eELBA-2022-9707ol7_x86_64_latest_archive
abrt-2.1.11-22.0.1.el7_1.x86_64.rpmedae6ca2a3117fca3ebe3f048b139d11591717104f0f7964300253947984e47eELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-ccpp-2.1.11-22.0.1.el7_1.x86_64.rpm3177c7af876f4263d3843384e63f08b9e214f01d1d8424b602dbfc76288dc8c0ELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-ccpp-2.1.11-22.0.1.el7_1.x86_64.rpm3177c7af876f4263d3843384e63f08b9e214f01d1d8424b602dbfc76288dc8c0ELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-kerneloops-2.1.11-22.0.1.el7_1.x86_64.rpmeea8b00eca6f3f2049c194487fc82734d4944111d591eeab8f3150fb45b3337eELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-kerneloops-2.1.11-22.0.1.el7_1.x86_64.rpmeea8b00eca6f3f2049c194487fc82734d4944111d591eeab8f3150fb45b3337eELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-pstoreoops-2.1.11-22.0.1.el7_1.x86_64.rpmb5589dcf6ac698d2ba0d9053c367d4ebcfd664e02d5b8b65cf9e9a5984a4046bELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-pstoreoops-2.1.11-22.0.1.el7_1.x86_64.rpmb5589dcf6ac698d2ba0d9053c367d4ebcfd664e02d5b8b65cf9e9a5984a4046bELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-python-2.1.11-22.0.1.el7_1.x86_64.rpmbaaa61285358363f4d38cdeb4d454cb876205ea768005a34ed4d86ca469c515dELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-python-2.1.11-22.0.1.el7_1.x86_64.rpmbaaa61285358363f4d38cdeb4d454cb876205ea768005a34ed4d86ca469c515dELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-upload-watch-2.1.11-22.0.1.el7_1.x86_64.rpm4d338f507d886d281b22c16901cbed68e3483e4c5837094107a20a67ade3dae1ELBA-2022-9707ol7_x86_64_optional_archive
abrt-addon-vmcore-2.1.11-22.0.1.el7_1.x86_64.rpmdff8e36f0c346ff885dabceae0c617783ee806a568a822065d3c4a9da2836514ELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-vmcore-2.1.11-22.0.1.el7_1.x86_64.rpmdff8e36f0c346ff885dabceae0c617783ee806a568a822065d3c4a9da2836514ELBA-2022-9707ol7_x86_64_u1_patch
abrt-addon-xorg-2.1.11-22.0.1.el7_1.x86_64.rpmd028b921d8699062744f7bf5a9af2cd1431832c9caac5e68e08fbb9f9d439ac6ELBA-2022-9707ol7_x86_64_latest_archive
abrt-addon-xorg-2.1.11-22.0.1.el7_1.x86_64.rpmd028b921d8699062744f7bf5a9af2cd1431832c9caac5e68e08fbb9f9d439ac6ELBA-2022-9707ol7_x86_64_u1_patch
abrt-cli-2.1.11-22.0.1.el7_1.x86_64.rpm2a5cd376a0bb73e07b334e335398400b68888603da1a0ff97677cd510c55a480ELBA-2022-9707ol7_x86_64_latest_archive
abrt-cli-2.1.11-22.0.1.el7_1.x86_64.rpm2a5cd376a0bb73e07b334e335398400b68888603da1a0ff97677cd510c55a480ELBA-2022-9707ol7_x86_64_u1_patch
abrt-console-notification-2.1.11-22.0.1.el7_1.x86_64.rpm1f039e73b79d4d59f306c040c48a6ecdc5e19117fa59808100aea1bf0e63817dELBA-2022-9707ol7_x86_64_latest_archive
abrt-console-notification-2.1.11-22.0.1.el7_1.x86_64.rpm1f039e73b79d4d59f306c040c48a6ecdc5e19117fa59808100aea1bf0e63817dELBA-2022-9707ol7_x86_64_u1_patch
abrt-dbus-2.1.11-22.0.1.el7_1.x86_64.rpm28ea35d2bc2a73064c18b81297675939d9dfc54feae9a91012ddb7d354081afcELBA-2022-9707ol7_x86_64_latest_archive
abrt-dbus-2.1.11-22.0.1.el7_1.x86_64.rpm28ea35d2bc2a73064c18b81297675939d9dfc54feae9a91012ddb7d354081afcELBA-2022-9707ol7_x86_64_u1_patch
abrt-desktop-2.1.11-22.0.1.el7_1.x86_64.rpm694cea3e01e21eb7a0a6d108c7b39cecc9660a5dfe39f6a60fd4aa3a36eadb9dELBA-2022-9707ol7_x86_64_latest_archive
abrt-desktop-2.1.11-22.0.1.el7_1.x86_64.rpm694cea3e01e21eb7a0a6d108c7b39cecc9660a5dfe39f6a60fd4aa3a36eadb9dELBA-2022-9707ol7_x86_64_u1_patch
abrt-devel-2.1.11-22.0.1.el7_1.i686.rpmfc420254b3f40b73aeae5283fc469ed3a5cd3276b65991aec64b929616ec4477ELBA-2022-9707ol7_x86_64_optional_archive
abrt-devel-2.1.11-22.0.1.el7_1.x86_64.rpme32923ba56f696fa0da5abf5d8e9730917220ee1fdf569edb11ce550a0db8b2aELBA-2022-9707ol7_x86_64_optional_archive
abrt-gui-2.1.11-22.0.1.el7_1.x86_64.rpm9c5a63cd4cff12b11d37a3e64f01e3c094d1c7997f33b68c84d1f6c02b6ac1f2ELBA-2022-9707ol7_x86_64_latest_archive
abrt-gui-2.1.11-22.0.1.el7_1.x86_64.rpm9c5a63cd4cff12b11d37a3e64f01e3c094d1c7997f33b68c84d1f6c02b6ac1f2ELBA-2022-9707ol7_x86_64_u1_patch
abrt-gui-devel-2.1.11-22.0.1.el7_1.i686.rpmebbcadb3fa7c12e4df0ce20f76991b3a8453f24ddc896d45f1fea7c7e8b28e87ELBA-2022-9707ol7_x86_64_optional_archive
abrt-gui-devel-2.1.11-22.0.1.el7_1.x86_64.rpme7aad41c9cb94931a005fbb84ad4c4db6b64fa1cb3bef7eebb0326d8b108b6c4ELBA-2022-9707ol7_x86_64_optional_archive
abrt-gui-libs-2.1.11-22.0.1.el7_1.i686.rpm18cb6f26098d16f11e902e3e3c56d9708bb5e299394917f3bbf14965b6592606ELBA-2022-9707ol7_x86_64_latest_archive
abrt-gui-libs-2.1.11-22.0.1.el7_1.i686.rpm18cb6f26098d16f11e902e3e3c56d9708bb5e299394917f3bbf14965b6592606ELBA-2022-9707ol7_x86_64_u1_patch
abrt-gui-libs-2.1.11-22.0.1.el7_1.x86_64.rpm341c57312f3e8754e14bdb57adaf778b5c390a13ff285fe6e531a4cae22a0cceELBA-2022-9707ol7_x86_64_latest_archive
abrt-gui-libs-2.1.11-22.0.1.el7_1.x86_64.rpm341c57312f3e8754e14bdb57adaf778b5c390a13ff285fe6e531a4cae22a0cceELBA-2022-9707ol7_x86_64_u1_patch
abrt-libs-2.1.11-22.0.1.el7_1.i686.rpm5be80f59342a40d8e417293f058fed7329b1772d6e00152aaf1b63e16a392b32ELBA-2022-9707ol7_x86_64_latest_archive
abrt-libs-2.1.11-22.0.1.el7_1.i686.rpm5be80f59342a40d8e417293f058fed7329b1772d6e00152aaf1b63e16a392b32ELBA-2022-9707ol7_x86_64_u1_patch
abrt-libs-2.1.11-22.0.1.el7_1.x86_64.rpm425540064b7d513f92e0c90caaab345cc49aadcc05249733c6eca66deacf440dELBA-2022-9707ol7_x86_64_latest_archive
abrt-libs-2.1.11-22.0.1.el7_1.x86_64.rpm425540064b7d513f92e0c90caaab345cc49aadcc05249733c6eca66deacf440dELBA-2022-9707ol7_x86_64_u1_patch
abrt-python-2.1.11-22.0.1.el7_1.x86_64.rpm4748c30c152efcfa19cdba3900668f57a8ee5701db961b8b6adce66e3a3a2a82ELBA-2022-9707ol7_x86_64_latest_archive
abrt-python-2.1.11-22.0.1.el7_1.x86_64.rpm4748c30c152efcfa19cdba3900668f57a8ee5701db961b8b6adce66e3a3a2a82ELBA-2022-9707ol7_x86_64_u1_patch
abrt-python-doc-2.1.11-22.0.1.el7_1.noarch.rpmbde29ede39be24bd9e0c1b9af62c13293b30e44efca413d09b3aa3a2eb2149a6ELBA-2022-9707ol7_x86_64_optional_archive
abrt-retrace-client-2.1.11-22.0.1.el7_1.x86_64.rpmf5a34a55f136e0e5ff0917128912571e92cddcf4d33cb204d34fb56f323f875bELBA-2022-9707ol7_x86_64_optional_archive
abrt-tui-2.1.11-22.0.1.el7_1.x86_64.rpm5db4c7001135cc9fd55449142e1cf60f6403c397599f47eb1116255f9f0c5fc3ELBA-2022-9707ol7_x86_64_latest_archive
abrt-tui-2.1.11-22.0.1.el7_1.x86_64.rpm5db4c7001135cc9fd55449142e1cf60f6403c397599f47eb1116255f9f0c5fc3ELBA-2022-9707ol7_x86_64_u1_patch
libreport-2.1.11-23.0.1.el7_1.i686.rpmeffccaa460c58ff45afcb9d06bc16b242efa98aa380f50e90c9f5b32265e1023ELBA-2023-12525ol7_x86_64_latest_archive
libreport-2.1.11-23.0.1.el7_1.i686.rpmeffccaa460c58ff45afcb9d06bc16b242efa98aa380f50e90c9f5b32265e1023ELBA-2023-12525ol7_x86_64_u1_patch
libreport-2.1.11-23.0.1.el7_1.x86_64.rpmf9cc391e2589b672b96c8cd95352a79b6dead06f797db44c064eee2d06fe9fc0ELBA-2023-12525ol7_x86_64_latest_archive
libreport-2.1.11-23.0.1.el7_1.x86_64.rpmf9cc391e2589b672b96c8cd95352a79b6dead06f797db44c064eee2d06fe9fc0ELBA-2023-12525ol7_x86_64_u1_patch
libreport-anaconda-2.1.11-23.0.1.el7_1.x86_64.rpmd791de947e98a17d524d10978b80375a512b304751aa80258ab3af8e7910b183ELBA-2023-12525ol7_x86_64_latest_archive
libreport-anaconda-2.1.11-23.0.1.el7_1.x86_64.rpmd791de947e98a17d524d10978b80375a512b304751aa80258ab3af8e7910b183ELBA-2023-12525ol7_x86_64_u1_patch
libreport-cli-2.1.11-23.0.1.el7_1.x86_64.rpm2494c1673d5381e1decf78e6f29db4ad7ef541586c66b18c8677590db76f9124ELBA-2023-12525ol7_x86_64_latest_archive
libreport-cli-2.1.11-23.0.1.el7_1.x86_64.rpm2494c1673d5381e1decf78e6f29db4ad7ef541586c66b18c8677590db76f9124ELBA-2023-12525ol7_x86_64_u1_patch
libreport-compat-2.1.11-23.0.1.el7_1.x86_64.rpmcdf95163468127f5f962b758eed933cbbdd5802d2638a1d634dffcbe82ecbaefELBA-2023-12525ol7_x86_64_optional_archive
libreport-devel-2.1.11-23.0.1.el7_1.i686.rpm2a3065004b19627fc14478cd4c580009e401bd1afe33c2fec39dfaeb04b41447ELBA-2023-12525ol7_x86_64_optional_archive
libreport-devel-2.1.11-23.0.1.el7_1.x86_64.rpm3db65916416a779e1d123369ca07e655e5b87fb22ca220947c3deb1362f7b261ELBA-2023-12525ol7_x86_64_optional_archive
libreport-filesystem-2.1.11-23.0.1.el7_1.x86_64.rpm34b644a1b38d38028589a85aa04457bad542f3e225bd8473ae1dd775906731d0ELBA-2023-12525ol7_x86_64_latest_archive
libreport-filesystem-2.1.11-23.0.1.el7_1.x86_64.rpm34b644a1b38d38028589a85aa04457bad542f3e225bd8473ae1dd775906731d0ELBA-2023-12525ol7_x86_64_u1_patch
libreport-gtk-2.1.11-23.0.1.el7_1.i686.rpmcabab2c03a438c28446e140da2183ac7139e90ee67abeb36dab965aabc2110edELBA-2023-12525ol7_x86_64_latest_archive
libreport-gtk-2.1.11-23.0.1.el7_1.i686.rpmcabab2c03a438c28446e140da2183ac7139e90ee67abeb36dab965aabc2110edELBA-2023-12525ol7_x86_64_u1_patch
libreport-gtk-2.1.11-23.0.1.el7_1.x86_64.rpm70264e4e3a367923e43090788f6dd3852a9051d6814b0131f899a1ec6da10e00ELBA-2023-12525ol7_x86_64_latest_archive
libreport-gtk-2.1.11-23.0.1.el7_1.x86_64.rpm70264e4e3a367923e43090788f6dd3852a9051d6814b0131f899a1ec6da10e00ELBA-2023-12525ol7_x86_64_u1_patch
libreport-gtk-devel-2.1.11-23.0.1.el7_1.i686.rpm5ef95c4452ca6fabd62620027e24ad349aa60be97eef4d9e9123bb5cb1abc6f5ELBA-2023-12525ol7_x86_64_optional_archive
libreport-gtk-devel-2.1.11-23.0.1.el7_1.x86_64.rpm0ae710766f3a6f105b22f45ca4d7b24e1d1576e68640af2fced6b3ab6d59585fELBA-2023-12525ol7_x86_64_optional_archive
libreport-newt-2.1.11-23.0.1.el7_1.x86_64.rpmdbd6b8531776b8b6904f6d1cb83a78860263b3128f0c0d2dda66bdeaba9589a7ELBA-2023-12525ol7_x86_64_optional_archive
libreport-plugin-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm71e16ab47387fce8ee4b95f771061107a89b0ac21b2c53e7bcd87b8702fd8708ELBA-2023-12525ol7_x86_64_latest_archive
libreport-plugin-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm71e16ab47387fce8ee4b95f771061107a89b0ac21b2c53e7bcd87b8702fd8708ELBA-2023-12525ol7_x86_64_u1_patch
libreport-plugin-kerneloops-2.1.11-23.0.1.el7_1.x86_64.rpmf6419977e3f6e798fe69ed404977f3fdfb12f32a2f59491c71c5abd2599b9b4cELBA-2023-12525ol7_x86_64_optional_archive
libreport-plugin-logger-2.1.11-23.0.1.el7_1.x86_64.rpm7278585c6f4f95fe24168c68f01e9a59bf558382a345c7ece971f8197530d8e0ELBA-2023-12525ol7_x86_64_optional_archive
libreport-plugin-mailx-2.1.11-23.0.1.el7_1.x86_64.rpmb3274a3fc39bd940f68a715d9c13e8afecd0a64d22698349c8f31a2245cc5907ELBA-2023-12525ol7_x86_64_latest_archive
libreport-plugin-mailx-2.1.11-23.0.1.el7_1.x86_64.rpmb3274a3fc39bd940f68a715d9c13e8afecd0a64d22698349c8f31a2245cc5907ELBA-2023-12525ol7_x86_64_u1_patch
libreport-plugin-reportuploader-2.1.11-23.0.1.el7_1.x86_64.rpm24132c6eb8c89aed33138f16fbb424f916dab477ea72f8086773cae2059cc197ELBA-2023-12525ol7_x86_64_latest_archive
libreport-plugin-reportuploader-2.1.11-23.0.1.el7_1.x86_64.rpm24132c6eb8c89aed33138f16fbb424f916dab477ea72f8086773cae2059cc197ELBA-2023-12525ol7_x86_64_u1_patch
libreport-plugin-ureport-2.1.11-23.0.1.el7_1.x86_64.rpm9d6cb8e98f99522002e6e97462554e1d7d80b2743bad2edf6c45f9927d72185bELBA-2023-12525ol7_x86_64_latest_archive
libreport-plugin-ureport-2.1.11-23.0.1.el7_1.x86_64.rpm9d6cb8e98f99522002e6e97462554e1d7d80b2743bad2edf6c45f9927d72185bELBA-2023-12525ol7_x86_64_u1_patch
libreport-python-2.1.11-23.0.1.el7_1.x86_64.rpmf9b7767d9af4c7af630437f3a9a780a597885a5234f750d39b7d7d57e9c3c785ELBA-2023-12525ol7_x86_64_latest_archive
libreport-python-2.1.11-23.0.1.el7_1.x86_64.rpmf9b7767d9af4c7af630437f3a9a780a597885a5234f750d39b7d7d57e9c3c785ELBA-2023-12525ol7_x86_64_u1_patch
libreport-rhel-anaconda-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm9033f532c0b83880375dc5b6324fa2fd4e379de777b13e08927d7b6918a165cbELBA-2023-12525ol7_x86_64_latest_archive
libreport-rhel-anaconda-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpm9033f532c0b83880375dc5b6324fa2fd4e379de777b13e08927d7b6918a165cbELBA-2023-12525ol7_x86_64_u1_patch
libreport-rhel-bugzilla-2.1.11-23.0.1.el7_1.x86_64.rpmd8dab4227c1b597a0582d35f660dc02a12fc06c9c295b8781905a2cfaefde1bdELBA-2023-12525ol7_x86_64_optional_archive
libreport-web-2.1.11-23.0.1.el7_1.i686.rpma94a0169f4153d83fa766c5e7870ef6ef46a3c4c48210a3f3dd7d93af3d015b1ELBA-2023-12525ol7_x86_64_latest_archive
libreport-web-2.1.11-23.0.1.el7_1.i686.rpma94a0169f4153d83fa766c5e7870ef6ef46a3c4c48210a3f3dd7d93af3d015b1ELBA-2023-12525ol7_x86_64_u1_patch
libreport-web-2.1.11-23.0.1.el7_1.x86_64.rpmedf8ab5fb078300ece9b366f35d1f9e3d81da628165f6f0848421ecfdec862c7ELBA-2023-12525ol7_x86_64_latest_archive
libreport-web-2.1.11-23.0.1.el7_1.x86_64.rpmedf8ab5fb078300ece9b366f35d1f9e3d81da628165f6f0848421ecfdec862c7ELBA-2023-12525ol7_x86_64_u1_patch
libreport-web-devel-2.1.11-23.0.1.el7_1.i686.rpma127d19e3610cf27673dbde5d98f6358b574bb8a145acb3393b9955da05db4c8ELBA-2023-12525ol7_x86_64_optional_archive
libreport-web-devel-2.1.11-23.0.1.el7_1.x86_64.rpm948522d812aa6a4fedcb06762a8cf670f658f1597f9fbd917e5af4e0367c38bdELBA-2023-12525ol7_x86_64_optional_archive



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete