- Issued:
- 2014-10-13
- Updated:
- 2014-10-13
RHBA-2014:1419 - libtirpc bug fix update
Synopsis
libtirpc bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated libtirpc packages that fix several bugs are now available for Red Hat Enterprise Linux 6.
Description
The libtirpc packages contain SunLib's implementation of transport independent RPC (TI-RPC) documentation. This includes a library required by programs in the nfs-utils and rpcbind packages.
This update fixes the following bugs:
-
Previously, the libtirpc library included the authgss_get_private_data() system call, but not the authgss_free_private_data() system call. As a consequence, private data were obtained but not freed afterwards. This caused the authgss_destroy_context() call to send an incorrect RPCSEC_GSS_DESTROY request, and the client was in turn not able to clear the state data on the server. With this update, authgss_free_private_data() has been added to libtirpc, and the data is now freed correctly. As a result, the client can now reset the server state as expected. (BZ#1082807)
-
Prior to this update, due to race conditions, using TI-RPC in the glibc library caused TI-RPC to terminate unexpectedly with a segmentation fault on some file operations, such as fclose() call and the endnetconfig() call. This update prevents the race conditions from occurring in the above scenario, and TI-RPC thus no longer crashes when used in glibc. (BZ#1031498)
-
Due to buffer overruns in libtrpc, the rpcbind utility sometimes terminated unexpectedly with a segmentation fault. With this update, buffer is allocated by the svcauth_gss_validate() call, which avoids the buffer overruns and thus prevents the rpcbind crashes. (BZ#1056809)
-
Previously, the libtirpc-devel RPM incorrectly installed the /lib64/libtirpc.a and /lib64/libtirpc.la static libraries, which caused compiling software that linked libtirpc to fail. This update removes libtirpc.a and libtirpc.la and compiling with libtirpc.so now works as expected. (BZ#869397)
-
Due to a code error in libtirpc, the automount utility sometimes terminated unexpectedly with a segmentation fault when a RPC was rejected with an invalid rejection status. This update fixes this bug and automount no longer crashes when receiving an invalid server rejection. (BZ#982064)
Users of libtirpc are advised to upgrade to these updated packages, which fix these bugs.
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for Scientific Computing | 6 | x86_64 |
| Red Hat Enterprise Linux for Power, big endian | 6 | ppc64 |
| Red Hat Enterprise Linux for IBM z Systems | 6 | s390x |
| Red Hat Enterprise Linux Workstation | 6 | x86_64 |
| Red Hat Enterprise Linux Workstation | 6 | i386 |
| Red Hat Enterprise Linux Server | 6 | x86_64 |
| Red Hat Enterprise Linux Server | 6 | i386 |
| Red Hat Enterprise Linux Server from RHUI | 6 | x86_64 |
| Red Hat Enterprise Linux Server from RHUI | 6 | i386 |
| Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support | 6 | x86_64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support | 6 | x86_64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support | 6 | i386 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension | 6 | x86_64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension | 6 | i386 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) | 6 | s390x |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) | 6 | s390x |
| Red Hat Enterprise Linux Desktop | 6 | x86_64 |
| Red Hat Enterprise Linux Desktop | 6 | i386 |
Updated Packages
- libtirpc-devel-0.2.1-10.el6.x86_64.rpm
- libtirpc-0.2.1-10.el6.x86_64.rpm
- libtirpc-0.2.1-10.el6.ppc64.rpm
- libtirpc-0.2.1-10.el6.s390x.rpm
- libtirpc-0.2.1-10.el6.i686.rpm
- libtirpc-devel-0.2.1-10.el6.i686.rpm
- libtirpc-debuginfo-0.2.1-10.el6.i686.rpm
- libtirpc-devel-0.2.1-10.el6.ppc64.rpm
- libtirpc-debuginfo-0.2.1-10.el6.s390x.rpm
- libtirpc-debuginfo-0.2.1-10.el6.x86_64.rpm
- libtirpc-debuginfo-0.2.1-10.el6.ppc.rpm
- libtirpc-devel-0.2.1-10.el6.ppc.rpm
- libtirpc-0.2.1-10.el6.ppc.rpm
- libtirpc-0.2.1-10.el6.src.rpm
- libtirpc-0.2.1-10.el6.s390.rpm
- libtirpc-devel-0.2.1-10.el6.s390.rpm
- libtirpc-debuginfo-0.2.1-10.el6.ppc64.rpm
- libtirpc-debuginfo-0.2.1-10.el6.s390.rpm
- libtirpc-devel-0.2.1-10.el6.s390x.rpm
Fixes
(none)
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.