Advisories : Updated usermode packages in Red Hat

main menu

- feedback
- advertising
- privacy
- FightAIDS
- newsletter
- news

discussions

- read forum
- new topic
- search

meetings

- meetings list
- recent additions
- add your info

top 100 sites

- visit top sites
- sign up now
- members

webmasters

- add your url
- add domain
- search box
- link to us

projects

- our projects
- free email

m4d network

- security software
- secureroot
- m4d.com

Home : Advisories : Updated usermode packages in Red Hat

Title:	Updated usermode packages in Red Hat
Released by:	Red Hat
Date:	11th August 2000
Printable version:	Click here

---------------------------------------------------------------------

                   Red Hat, Inc. Security Advisory



Synopsis:          Updated usermode packages.

Advisory ID:       RHSA-2000:053-01

Issue date:        2000-08-11

Updated on:        2000-08-11

Product:           Red Hat Linux

Keywords:          usermode shutdown

Cross references:  N/A

---------------------------------------------------------------------



1. Topic:



Updated usermode packages are now available for Red Hat Linux 6.0, 6.1, and

6.2.



2. Relevant releases/architectures:



Red Hat Linux 6.0 - i386, alpha, sparc

Red Hat Linux 6.1 - i386, alpha, sparc

Red Hat Linux 6.2 - i386, alpha, sparc

Red Hat Linux 6.2E - i386, alpha, sparc



3. Problem description:



The usermode package allows unprivileged users logged in at the system

console to run the halt, poweroff, reboot, and shutdown commands without

needing to know the superuser's password.  While being able to halt,

poweroff, and reboot is a desirable thing, an unprivileged user can also

bring the system to single-user mode by running "shutdown now" with no

additional flags.  This update removes the "shutdown" command from the list

of commands unprivileged users can run.



4. Solution:



For each RPM for your particular architecture, run:



rpm -Fvh [filename]



where filename is the name of the RPM.



5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla for more info):



13768 - Auth dialogs show "Picture of a key" text instead of graphic

13616 - Missing icon.

12433 - /usr/sbin/userhelper not stripped

11006 - kppp either doesn't display locally or remotely

9746 - Local user can go into single mode only with shutdown now...





6. RPMs required:



Red Hat Linux 6.0, 6.1, 6.2:



sparc:

http://updates.redhat.com/6.2/sparc/usermode-1.28-2.sparc.rpm



alpha:

http://updates.redhat.com/6.2/alpha/usermode-1.28-2.alpha.rpm



i386:

http://updates.redhat.com/6.2/i386/usermode-1.28-2.i386.rpm



sources:

http://updates.redhat.com/6.2/SRPMS/usermode-1.28-2.src.rpm



7. Verification:



MD5 sum                           Package Name

--------------------------------------------------------------------------

24f2766589d1a16ebcda912067173396  6.2/SRPMS/usermode-1.28-2.src.rpm

94423f4138477d9d47a055ed3c4b3648  6.2/alpha/usermode-1.28-2.alpha.rpm

b8f16bb02c4355a86183e268bd57ac74  6.2/i386/usermode-1.28-2.i386.rpm

e1c2b7626a905f64b03f48127e742259  6.2/sparc/usermode-1.28-2.sparc.rpm



These packages are GPG signed by Red Hat, Inc. for security.  Our key

is available at:

    http://www.redhat.com/corp/contact.html



You can verify each package with the following command:

    rpm --checksig  



If you only wish to verify that each package has not been corrupted or

tampered with, examine only the md5sum with the following command:

    rpm --checksig --nogpg 



8. References:



N/A





Copyright(c) 2000 Red Hat, Inc.