| Summary: | latest update break rmi | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | RHEL Program Management <pm-rhel> |
| Component: | java-1.6.0-openjdk | Assignee: | jiri vanek <jvanek> |
| Status: | CLOSED ERRATA | QA Contact: | BaseOS QE - Apps <qe-baseos-apps> |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | 6.1 | CC: | dbhole, jgalipea, jvanek, lfarkas, lzachar, msvoboda, ohudlick, omajid, pm-eus, psplicha, thoger |
| Target Milestone: | rc | Keywords: | Regression, ZStream |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: |
Previously, a remote RMI client could execute code on the RMI server with unrestricted privileges. This security issue in the Java Remote Method Invocation (RMI) registry implementation was fixed by the RHSA-2011-1380 security advisory. However, the security restrictions applied by the advisory were too strict and caused the RMI registry to stop working correctly. This update adjusts the RMI registry so it now works as expected.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2011-12-21 12:36:12 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Bug Depends On: | 751203 | ||
| Bug Blocks: | |||
|
Description
RHEL Program Management
2011-12-15 11:25:31 UTC
as i'm the reporter and debugger of the problem, may i access to this build? Hi Levente, (In reply to comment #7) > as i'm the reporter and debugger of the problem, may i access to this build? I have copied the rpms from https://brewweb.devel.redhat.com/buildinfo?buildID=193158 to the publicly available location at: http://omajid.fedorapeople.org/java-1.6.0-openjdk/rmi-fix-rhn/ wget http://omajid.fedorapeople.org/java-1.6.0-openjdk/rmi-fix-rhn/java-1.6.0-openjdk-1.6.0.0-1.42.1.10.4.el6_2.x86_64.rpm --2011-12-19 18:00:39-- http://omajid.fedorapeople.org/java-1.6.0-openjdk/rmi-fix-rhn/java-1.6.0-openjdk-1.6.0.0-1.42.1.10.4.el6_2.x86_64.rpm Resolving omajid.fedorapeople.org... 85.236.55.7 Connecting to omajid.fedorapeople.org|85.236.55.7|:80... connected. HTTP request sent, awaiting response... 403 Forbidden 2011-12-19 18:00:39 ERROR 403: Forbidden. It was a problem with permissions. It should work now. Sorry about that.
Technical note added. If any revisions are required, please edit the "Technical Notes" field
accordingly. All revisions will be proofread by the Engineering Content Services team.
New Contents:
Previously, a remote RMI client could execute code on the RMI server with unrestricted privileges. This security issue in the Java Remote Method Invocation (RMI) registry implementation was fixed by the RHSA-2011-1380 security advisory. However, the security restrictions applied by the advisory were too strict and caused the RMI registry to stop working correctly. This update adjusts the RMI registry so it now works as expected.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2011-1847.html |