Advisory:
RHBA-2014:0417-1
Type:
Bug Fix Advisory
Severity:
N/A
Issued on:
2014-04-21
Last updated on:
2014-04-21
Affected Products:
Red Hat OpenShift Enterprise 2
Details

OpenShift Enterprise by Red Hat release 2.0.5 is now available with updates topackages that fix a bug with libselinux usage.

OpenShift Enterprise by Red Hat is the company’s cloud computingPlatform-as-a-Service (PaaS) solution designed for on-premise or private clouddeployments.This update fixes the following bug:Non-thread-safe calls to the Ruby SELinux bindings caused MCollective to crash.The required matchpathcon calls are now wrapped with a mutex. As a result, therace condition is eliminated and MCollective no longer crashes. (BZ#1082138)All OpenShift Enterprise by Red Hat users are advised to upgrade to theseupdated packages.

Solution
Before applying this update, make sure all previously released errata relevantto your system have been applied.See the OpenShift Enterprise 2.0 Release Notes athttps://access.redhat.com/site/documentation for instructions on applying thisspecific update.This update is available via the Red Hat Network. Details on how to use the RedHat Network to apply this update are available athttps://access.redhat.com/site/articles/11258.
Updated packages

Red Hat OpenShift Enterprise 2

SRPMS:
openshift-origin-msg-node-mcollective-1.17.9-1.el6op.src.rpm
    MD5: 6089a949c945416a31584b0c196d7117SHA-256: ed18495229d03673453c42ac7d932901742c75b99ecfff7bcc54570f864e4dd1
openshift-origin-node-util-1.17.6-1.el6op.src.rpm
    MD5: d6d3a9fc3096e50066b1f5c068a66de9SHA-256: 3fbd00a6c57bf3d3ad9f459e3d468429e82874eafad9e1bfe2b81e1e3f42d9f2
rubygem-openshift-origin-container-selinux-0.4.1.3-1.el6op.src.rpm
    MD5: 1c013507b024d8f8ddc9c3b9ff966cb3SHA-256: 5c2b0cb33d4a0ff0a89672ef0d058827308317f6cb171c81037a373d50b80099
rubygem-openshift-origin-node-1.17.5.15-1.el6op.src.rpm
    MD5: 884c9a570f18c9166ee5e3506059d0c5SHA-256: 2bfa54fddf2bf28c944ce378d7003c2064b392d38c1a7aa24bde57f9385b77f8
 
x86_64:
openshift-origin-msg-node-mcollective-1.17.9-1.el6op.noarch.rpm
    MD5: ef199f1d17de212620404feb6011141bSHA-256: 7684ed9641d40094e87454b8263f52c0049fd9ec1ce336746b51ae7f0a5da042
openshift-origin-node-util-1.17.6-1.el6op.noarch.rpm
    MD5: 1c4b7461205ca438de21959632a0848bSHA-256: c6601713b36273a042d3c54d8c79eb0280e55595dd809f45ce24f0efdbb81612
rubygem-openshift-origin-container-selinux-0.4.1.3-1.el6op.noarch.rpm
    MD5: 6dce68a273bdc9283bdb7d7bb382d5dfSHA-256: efd34fb2fbd791636c88ed9ad2480830f7eea3b1b615c019d85846138c5276f5
rubygem-openshift-origin-node-1.17.5.15-1.el6op.noarch.rpm
    MD5: 12e84c114adef2b8d6295e08be1efc3fSHA-256: 0840e82944ae15ab660b0b632fdda2301e490847850dd758a6aa8d6d535f3ea1
 
(The unlinked packages above are only available from the Red Hat Network)Bugs fixed (see bugzilla for more information)

1082138 – Possible race condition in selinux.rb

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from:https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/

Leave a Reply