[Oraclevm-errata] OVMSA-2009-0008 Moderate: Oracle VM 2.1 acpid security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Mon May 18 10:53:15 PDT 2009
Oracle VM Security Advisory OVMSA-2009-0008
The following updated rpms for Oracle VM 2.1 have been uploaded to the
Unbreakable Linux Network:
i386:
acpid-1.0.4-7.el5_3.1.i386.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/SRPMS-updates/acpid-1.0.4-7.el5_3.1.src.rpm
Description of changes:
Following Security fix is released in this errata:
CVE-2009-0798 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0798>
The daemon in acpid before 1.0.10 allows remote attackers to cause a
denial of service (CPU consumption and connectivity loss) by opening a
large number of UNIX sockets without closing them, which triggers an
infinite loop.
[1.0.4-7.el5_3.1]
- Updated the License entry
- Fixed CVE-2009-0798 (too many open files DoS)
- Resolves: #496291
[1.0.4-7]
- Minor fixes in init script
- Resolves: #237752
[1.0.4-6]
- Review of init script
- Fixed fd leaking
- Resolves: #237752 #441686
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.oracle.com/pipermail/oraclevm-errata/attachments/20090518/bbb686dc/attachment.html
More information about the Oraclevm-errata
mailing list