Sicherheit: Preisgabe von Informationen in dracut
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in dracut
ID: FEDORA-2012-16448
Distribution: Fedora
Plattformen: Fedora 18
Datum: Do, 25. Oktober 2012, 06:31
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4453
Applikationen: dracut


Name        : dracut
Product : Fedora 18
Version : 024
Release : 5.git20121019.fc18
URL : https://dracut.wiki.kernel.org/
Summary : Initramfs generator using udev
Description :
dracut contains tools to create a bootable initramfs for 2.6 Linux kernels.
Unlike existing implementations, dracut does hard-code as little as possible
into the initramfs. dracut contains various modules which are driven by the
event-based udev. Having root on MD, DM, LVM2, LUKS is supported as well as
NFS, iSCSI, NBD, FCoE with the dracut-network package.

Update Information:

- fixed ifup exit code
- fixed default "rd.auto" parameter setting
- only 'warn' not 'error', if we don't strip the initramfs
- do not overwrite ifcfg from anaconda
- ssh-client module fixes
- strip binaries in the initramfs by default now
- fixes for systemd and crypto
- new dracut kernel command line options "rd.auto"
- new dracut kernel command line options "rd.noverifyssl"
- new dracut option "--kernel-cmdline" and "kernel_cmdline"
option for default parameters
- fix for kexec in shutdown, if not included in initramfs

- no more iscsi_wait_scan
- curl: give info what URL failed, support https
- use findmnt
- systemd: wait for crypto target
- only install crypttab in host-only mode
- add udev groups
- fixed busybox install
- fixed rd.luks.allow-discards manpage and handling
- force install dm_mod
- do not create the initramfs world reabable
- add nameserver even for dhcp
- fallback to reboot if shutdown was called without a parameter


[ 1 ] Bug #859448 - CVE-2012-4453 dracut: Creates initramfs images with
world-readable permissions (information disclosure)

This update can be installed with the "yum" update program. Use
su -c 'yum update dracut' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Neue Nachrichten