(RHSA-2007:0542) Low: mcstrans security and bug fix update

2007-11-0700:00:00

access.redhat.com

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.7%

JSON

mcstrans is the translation daemon used on SELinux machines to translate
program context into human readable form.

An algorithmic complexity weakness was found in the way the mcstrans daemon
handled ranges of compartments in sensitivity labels. A local user could
trigger this flaw causing mctransd to temporarily stop responding to other
requests; a partial denial of service. (CVE-2007-4570)

This update also fixes a problem where the mcstrans daemon was preventing
SSH connections into an SELinux box, that was running a Multi-Level
Security (MLS) Policy with multiple categories.

Users of mcstrans are advised to upgrade to this updated package, which
resolves this issue.

OSVersionArchitecturePackageVersionFilename
RedHat5i386mcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.i386.rpm
RedHat5ia64mcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.ia64.rpm
RedHat5ppcmcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.ppc.rpm
RedHat5x86_64mcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.x86_64.rpm
RedHat5srcmcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.src.rpm
RedHat5s390xmcstrans< 0.2.6-1.el5mcstrans-0.2.6-1.el5.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	5	i386	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.i386.rpm
RedHat	5	ia64	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.ia64.rpm
RedHat	5	ppc	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.ppc.rpm
RedHat	5	x86_64	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.x86_64.rpm
RedHat	5	src	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.src.rpm
RedHat	5	s390x	mcstrans	< 0.2.6-1.el5	mcstrans-0.2.6-1.el5.s390x.rpm