Oval Definition:oval:com.redhat.rhsa:def:20152248
Revision Date:2015-11-19Version:641
Title:RHSA-2015:2248: netcf security, bug fix, and enhancement update (Moderate)
Description:The netcf packages contain a library for modifying the network configuration of a system. Network configuration is expressed in a platform-independent XML format, which netcf translates into changes to the system's "native" network configuration files.

  • A denial of service flaw was found in netcf. A specially crafted interface name could cause an application using netcf (such as the libvirt daemon) to crash. (CVE-2014-8119)

    This issue was discovered by Hao Liu of Red Hat.

  • The netcf packages have been upgraded to upstream version 0.2.8, which provides a number of bug fixes and enhancements over the previous version. (BZ#1206680)

    Users of netcf are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2014-8119
    RHSA-2015:2248
    RHSA-2015:2248-00
    RHSA-2015:2248-03
    Platform(s):Red Hat Enterprise Linux 7
    Red Hat Enterprise Linux 7 (please do not use for >= RHEL-7.5)
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • netcf is earlier than 0:0.2.8-1.el7
  • AND netcf is signed with Red Hat redhatrelease2 key
  • netcf-devel is earlier than 0:0.2.8-1.el7
  • AND netcf-devel is signed with Red Hat redhatrelease2 key
  • netcf-libs is earlier than 0:0.2.8-1.el7
  • AND netcf-libs is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND Package Information
  • netcf-devel is earlier than 0:0.2.8-1.el7
  • AND netcf-devel is signed with Red Hat redhatrelease2 key
  • OR
  • netcf is earlier than 0:0.2.8-1.el7
  • AND netcf is signed with Red Hat redhatrelease2 key
  • OR
  • netcf-libs is earlier than 0:0.2.8-1.el7
  • AND netcf-libs is signed with Red Hat redhatrelease2 key
    • BACK