`` 

---------------------------------------------------------------------
                   Red Hat Security Advisory

Synopsis:          Updated Gnome-lokkit packages fix vulnerability
Advisory ID:       RHSA-2003:072-00
Issue date:        2003-03-17
Updated on:        2003-03-17
Product:           Red Hat Linux
Keywords:          iptables forward lokkit
Cross references:  
Obsoletes:         
CVE Names:         CAN-2003-0080
---------------------------------------------------------------------

1. Topic:

Updated Gnome-lokkit packages fix missing FORWARD ruleset in Red Hat Linux 8.0

2. Relevant releases/architectures:

Red Hat Linux 8.0 - i386

3. Problem description:

Gnome-lokkit is a utility that provides firewalling for the average Linux
end user based on responses to a small number of simple questions.

Red Hat made modifications to Gnome-lokkit to support firewalls based on
iptables instead of ipchains.  In Red Hat Linux 8.0, the iptables ruleset
created by Gnome-lokkit did not place any rules on the FORWARD chain.  This
is a security vulnerability if an administrator enables packet forwarding
and uses an unmodified ruleset created by the Gnome-lokkit tool.

Users are advised to upgrade to these erratum packages which contain a
patch to Gnome-lokkit to also apply the INPUT chain ruleset to the FORWARD
chain.

Red Hat would like to thank Deneb Meketa for bringing this issue to our
attention.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade.  Only those
RPMs which are currently installed will be updated.  Those RPMs which are
not installed but included in the list will not be updated.  Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network.  Many
people find this an easier way to apply updates.  To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

5. Bug IDs fixed  (  for more info):

84975 - does not include FORWARD chain

6. RPMs required:

Red Hat Linux 8.0:

SRPMS: 
 

i386: 
  
 



7. Verification:

MD5 sum                          Package Name
--------------------------------------------------------------------------
5e5edd316950132ec84f9c727dac63f6 8.0/en/os/SRPMS/gnome-lokkit-0.50-21.8.0.src.rpm
01f42937db89e8afb3f30a704e52ca7f 8.0/en/os/i386/gnome-lokkit-0.50-21.8.0.i386.rpm
0f80d90d4766f04eef08928b33b6a25e 8.0/en/os/i386/lokkit-0.50-21.8.0.i386.rpm


These packages are GPG signed by Red Hat, Inc. for security.  Our key
is available at  About

You can verify each package with the following command:
    
    rpm --checksig -v 

If you only wish to verify that each package has not been corrupted or
tampered with, examine only the md5sum with the following command:
    
    md5sum 


8. References:
 
CVE -CVE-2003-0080

9. Contact:

The Red Hat security contact is <security@RedHat.com>.  More contact
details at  All Red Hat products

Copyright 2003 Red Hat, Inc.



_______________________________________________
Red Hat-watch-list mailing list
To unsubscribe, visit: https://listman.RedHat.com/mailman/listinfo/RedHat-watch-list
``

RedHat: Gnome-lokkit missing rules

Updated Gnome-lokkit packages fix missing FORWARD ruleset in Red Hat Linux 8.0.

Summary



Summary

Gnome-lokkit is a utility that provides firewalling for the average Linuxend user based on responses to a small number of simple questions.Red Hat made modifications to Gnome-lokkit to support firewalls based oniptables instead of ipchains. In Red Hat Linux 8.0, the iptables rulesetcreated by Gnome-lokkit did not place any rules on the FORWARD chain. Thisis a security vulnerability if an administrator enables packet forwardingand uses an unmodified ruleset created by the Gnome-lokkit tool.Users are advised to upgrade to these erratum packages which contain apatch to Gnome-lokkit to also apply the INPUT chain ruleset to the FORWARDchain.Red Hat would like to thank Deneb Meketa for bringing this issue to ourattention.


Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs.
Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.
5. Bug IDs fixed ( for more info):
84975 - does not include FORWARD chain
6. RPMs required:
Red Hat Linux 8.0:
SRPMS:

i386:




7. Verification:
MD5 sum Package Name 5e5edd316950132ec84f9c727dac63f6 8.0/en/os/SRPMS/gnome-lokkit-0.50-21.8.0.src.rpm 01f42937db89e8afb3f30a704e52ca7f 8.0/en/os/i386/gnome-lokkit-0.50-21.8.0.i386.rpm 0f80d90d4766f04eef08928b33b6a25e 8.0/en/os/i386/lokkit-0.50-21.8.0.i386.rpm

These packages are GPG signed by Red Hat, Inc. for security. Our key is available at About
You can verify each package with the following command:
rpm --checksig -v
If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command:
md5sum

References

CVE -CVE-2003-0080

Package List


Severity
Advisory ID: RHSA-2003:072-00
Issued Date: : 2003-03-17
Updated on: 2003-03-17
Product: Red Hat Linux
Keywords: iptables forward lokkit
Cross references:
Obsoletes:
CVE Names: CAN-2003-0080

Topic


Topic

Updated Gnome-lokkit packages fix missing FORWARD ruleset in Red Hat Linux 8.0


 

Relevant Releases Architectures

Red Hat Linux 8.0 - i386


Bugs Fixed


Related News

5.ShakingHands Esm H320
3 - 5 min read
There has been a promising shift in the tech industry, with major companies pledging to release products with built-in security features. This
21.Globe RadiatingCode Esm H320
2 - 3 min read
The recent discovery of a backdoor in XZ Utils , a widely used Linux tool, raises concerns about the security of the open-source ecosystem. While
13.Lock StylizedMotherboard Esm H320
1 - 2 min read
Spiral Linux is a Debian-based distribution that offers a range of desktop environments, making it stand out from other Linux distributions. In
32.Lock Code Circular Esm H320
2 - 3 min read
Two critical security vulnerabilities were found in pgAdmin, the open-source administration tool for PostgreSQL . The vulnerabilities assigned
1.Penguin Landscape Esm H320
2 - 3 min read
The recent release of AlmaLinux 9.4 , closely aligned with Red Hat Enterprise Linux (RHEL) 9.4 , presents Linux admins and infosec professionals
11.Locks IsometricPattern Esm H320
2 - 3 min read
The upcoming release of Linux Mint 22 will introduce significant changes, particularly in handling XApp , GNOME applications, and the Software
2.Motherboard Esm H320
2 - 3 min read
German software engineer Lennart Poettering recently presented run0 , a new tool in systemd v256 that aims to address the security concerns
22.Lock ScreenEffect Esm H320
2 - 3 min read
Red Hat recently released its newest enterprise Linux distro, Red Hat Enterprise Linux (RHEL) 9.4 , which introduces several features designed to
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved