Red Hat Bugzilla – Bug 4690
network root vulnerability in am-utils
Last modified: 2008-05-01 11:37:51 EDT
Our RedHat 6.0 are currently being broken into by Serbian
crackers apparently using a vulnerability in am-utils.
/var/log/messages clearly shows attempts to overrun a
buffer in amq. The am-utils developers claim that snapshot
6.0.1s10 probably fixes the vulnerability, and also asks to
make sure that RedHat does NOT compile am-utils with the
--enable-amq-mount option enabled.
released fixed packages to the errata and the world at large.