Issued:

2012-04-20

Updated:

2012-04-20

RHBA-2012:0499 - aide bug fix update

Synopsis

aide bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated aide packages that fix one bug are now available for Red Hat Enterprise Linux 5.

Description

Advanced Intrusion Detection Environment (AIDE) is a program that creates a database of files on a system, and then uses that database to ensure file integrity and detect system intrusions.

This update fixes the following bug:

• Previously, the aide utility incorrectly initialized the gcrypt library. This consequently prevented aide to initialize its database if the system was running in FIPS-compliant mode. The initialization routine has been corrected, and along with an extension to the libgcrypt's API introduced in the RHEA-2012:0484 advisory, aide now initializes its database as expected if run in a FIPS-compliant way. (BZ#811936)

All users of aide are advised to upgrade to these updated packages, which fix this bug.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Updated Packages

• aide-0.13.1-6.el5_8.2.ia64.rpm
• aide-0.13.1-6.el5_8.2.i386.rpm
• aide-0.13.1-6.el5_8.2.x86_64.rpm
• aide-0.13.1-6.el5_8.2.src.rpm
• aide-0.13.1-6.el5_8.2.s390x.rpm
• aide-0.13.1-6.el5_8.2.ppc.rpm

Fixes

• This content is not included.BZ - 811936

CVEs

(none)

References

(none)

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.