[SECURITY] Fedora 8 Update: autofs-5.0.2-24

updates at fedoraproject.org updates at fedoraproject.org
Fri Dec 21 21:10:37 UTC 2007

Fedora Update Notification
2007-12-21 17:57:36

Name        : autofs
Product     : Fedora 8
Version     : 5.0.2
Release     : 24
URL         : http://wiki.autofs.net/
Summary     : A tool for automatically mounting and unmounting filesystems
Description :
autofs is a daemon which automatically mounts filesystems when you use
them, and unmounts them later when you are not using them.  This can
include network filesystems, CD-ROMs, floppies, and so forth.


* Fri Dec 21 2007 Ian Kent <ikent at redhat.com> - 5.0.2-24
- Bug 426400: CVE-2007-6285 autofs default doesn't set nodev in /net [f8]
  - use mount option "nodev" for "-hosts" map unless "dev" is explicily specified.
* Tue Dec 18 2007 Ian Kent <ikent at redhat.com> - 5.0.2-22
- Bug 397591 SELinux is preventing /sbin/rpc.statd (rpcd_t) "search" to <Unknown> (sysctl_fs_t).
  - prevent fork between fd open and setting of FD_CLOEXEC.
* Thu Dec 13 2007 Ian Kent <ikent at redhat.com> - 5.0.2-20
- Bug 409701: CVE-2007-5964 Privilege Escalation (from local system) through /net autofs mount configuration bug
  - use mount option "nosuid" for "-hosts" map unless "suid" is explicily specified.
* Tue Nov 20 2007 Ian Kent <ikent at redhat.com> - 5.0.2-17
- fix schema selection in LDAP schema discovery.
- check for "*" when looking up wildcard in LDAP.
- fix couple of edge case parse fails of timeout option.
- add SEARCH_BASE configuration option.
- add random selection as a master map entry option.
- re-read config on HUP signal.
- add LDAP_URI, LDAP_TIMEOUT and LDAP_NETWORK_TIMEOUT configuration options.
- fix deadlock in submount mount module.
- fix lack of ferror() checking when reading files.
- fix typo in autofs(5) man page.
- fix map entry expansion when undefined macro is present.
- remove unused export validation code.
- add dynamic logging (adapted from v4 patch from Jeff Moyer).
- fix recursive loopback mounts (Matthias Koenig).
- add map re-load to verbose logging.
- fix handling of LDAP base dns with spaces.
- handle MTAB_NOTUPDATED status return from mount.
- when default master map, auto.master, is used also check for auto_master.
- update negative mount timeout handling.
- fix large group handling (Ryan Thomas).
- fix for dynamic logging breaking non-sasl build (Guillaume Rousse).
- eliminate NULL proc ping for singleton host or local mounts.
Updated packages:

b08e6a8236afd2250c8542612de29016f5d55efa autofs-debuginfo-5.0.2-24.ppc64.rpm
138d99ea5884b4128560dc1219d35045275bf34c autofs-5.0.2-24.ppc64.rpm
ef3527ea1b8230a764bddb76225eb2321ca60833 autofs-debuginfo-5.0.2-24.i386.rpm
297cb54d73055ad2bd2942997cde4d63dbe3a40a autofs-5.0.2-24.i386.rpm
ff889edb84ef0e04635ced4d3bb6068827c49f78 autofs-5.0.2-24.x86_64.rpm
a677c2dfac98532125583771ea565ba6f18f263d autofs-debuginfo-5.0.2-24.x86_64.rpm
359d08650474f1f97eba5421e06aff2a48e447f8 autofs-debuginfo-5.0.2-24.ppc.rpm
f684647d7866a64cf655a582d665d6cefe7506f0 autofs-5.0.2-24.ppc.rpm
32b82ceae98e35860ec74c84f6d5ffac2282f191 autofs-5.0.2-24.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update autofs' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.

More information about the Fedora-package-announce mailing list