Oval Definition:oval:com.redhat.rhsa:def:20162702
Revision Date:2016-11-14Version:637
Title:RHSA-2016:2702: policycoreutils security update (Important)
Description:The policycoreutils packages contain the core policy utilities required to manage a SELinux environment.

Security Fix(es):

  • It was found that the sandbox tool provided in policycoreutils was vulnerable to a TIOCSTI ioctl attack. A specially crafted program executed via the sandbox command could use this flaw to execute arbitrary commands in the context of the parent shell, escaping the sandbox. (CVE-2016-7545)
    • Family:unixClass:patch
    Status:Reference(s):CVE-2016-7545
    RHSA-2016:2702
    RHSA-2016:2702-00
    RHSA-2016:2702-01
    RHSA-2016:2702-02
    RHSA-2016:2702-02
    Platform(s):Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • policycoreutils is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils is signed with Red Hat redhatrelease2 key
  • policycoreutils-gui is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-gui is signed with Red Hat redhatrelease2 key
  • policycoreutils-newrole is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-newrole is signed with Red Hat redhatrelease2 key
  • policycoreutils-python is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-python is signed with Red Hat redhatrelease2 key
  • policycoreutils-sandbox is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-sandbox is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • policycoreutils is earlier than 0:2.5-9.el7
  • AND policycoreutils is signed with Red Hat redhatrelease2 key
  • policycoreutils-devel is earlier than 0:2.5-9.el7
  • AND policycoreutils-devel is signed with Red Hat redhatrelease2 key
  • policycoreutils-gui is earlier than 0:2.5-9.el7
  • AND policycoreutils-gui is signed with Red Hat redhatrelease2 key
  • policycoreutils-newrole is earlier than 0:2.5-9.el7
  • AND policycoreutils-newrole is signed with Red Hat redhatrelease2 key
  • policycoreutils-python is earlier than 0:2.5-9.el7
  • AND policycoreutils-python is signed with Red Hat redhatrelease2 key
  • policycoreutils-restorecond is earlier than 0:2.5-9.el7
  • AND policycoreutils-restorecond is signed with Red Hat redhatrelease2 key
  • policycoreutils-sandbox is earlier than 0:2.5-9.el7
  • AND policycoreutils-sandbox is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • policycoreutils is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils is signed with Red Hat redhatrelease2 key
  • policycoreutils-gui is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-gui is signed with Red Hat redhatrelease2 key
  • policycoreutils-newrole is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-newrole is signed with Red Hat redhatrelease2 key
  • policycoreutils-python is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-python is signed with Red Hat redhatrelease2 key
  • policycoreutils-sandbox is earlier than 0:2.0.83-30.1.el6_8
  • AND policycoreutils-sandbox is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND
  • policycoreutils is earlier than 0:2.5-9.el7
  • AND policycoreutils is signed with Red Hat redhatrelease2 key
  • policycoreutils-devel is earlier than 0:2.5-9.el7
  • AND policycoreutils-devel is signed with Red Hat redhatrelease2 key
  • policycoreutils-gui is earlier than 0:2.5-9.el7
  • AND policycoreutils-gui is signed with Red Hat redhatrelease2 key
  • policycoreutils-newrole is earlier than 0:2.5-9.el7
  • AND policycoreutils-newrole is signed with Red Hat redhatrelease2 key
  • policycoreutils-python is earlier than 0:2.5-9.el7
  • AND policycoreutils-python is signed with Red Hat redhatrelease2 key
  • policycoreutils-restorecond is earlier than 0:2.5-9.el7
  • AND policycoreutils-restorecond is signed with Red Hat redhatrelease2 key
  • policycoreutils-sandbox is earlier than 0:2.5-9.el7
  • AND policycoreutils-sandbox is signed with Red Hat redhatrelease2 key
    • BACK