Oval Definition:oval:com.redhat.rhsa:def:20111814
Revision Date:2011-12-13Version:635
Title:RHSA-2011:1814: ipmitool security update (Moderate)
Description:The ipmitool package contains a command line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.

  • It was discovered that the IPMI event daemon (ipmievd) created its process ID (PID) file with world-writable permissions. A local user could use this flaw to make the ipmievd init script kill an arbitrary process when the ipmievd daemon is stopped or restarted. (CVE-2011-4339)

    All users of ipmitool are advised to upgrade to this updated package, which contains a backported patch to correct this issue. After installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2011-4339
    CVE-2011-4339
    RHSA-2011:1814
    RHSA-2011:1814-01
    RHSA-2011:1814-01
    Platform(s):Red Hat Enterprise Linux 6
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND ipmitool is earlier than 0:1.8.11-12.el6_2.1
  • AND ipmitool is signed with Red Hat redhatrelease2 key
  • BACK