Executive Summary

Summary
Title NetworkManager security, bug fix, and enhancement update
Informations
Name RHSA-2016:2581 First vendor Publication 2016-11-03
Vendor RedHat Last vendor Modification 2016-11-03
Severity (Vendor) N/A Revision 02

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score 2.1 Attack Range Local
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

An update for NetworkManager is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 7) - aarch64, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - aarch64, noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - noarch, x86_64

3. Description:

NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services.

The following packages have been upgraded to a newer upstream version: NetworkManager (1.4.0), NetworkManager-libreswan (1.2.4), network-manager-applet (1.4.0), libnl3 (3.2.28). (BZ#1264552, BZ#1296058, BZ#1032717, BZ#1271581)

Security Fix(es):

* A race condition vulnerability was discovered in NetworkManager. Temporary files were created insecurely when saving or updating connection settings, which could allow local users to read connection secrets such as VPN passwords or WiFi keys. (CVE-2016-0764)

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1183420 - Adding bond device to bridge with "bridge-slave" type doesn't work. 1217288 - [enh] Configuration snapshots and rollbacks 1228707 - it would make sense for NM to allow specifying an order for DNS servers 1243958 - network-online.target met before IPv6 is up 1255507 - NetworkManager no longer provides complete FQDN (DHCP_HOSTNAME) to dhclient 1257237 - NetworkManager loops and takes CPU until it dies when teamd is unresponsive 1270814 - Setting up team with invalid json config leads to inconsistent state 1271271 - incorrect completion of bluetooth device in nmcli 1271581 - available bluetooth devices should be listed in connection wizard 1277247 - NM crashing when upping libreswan connection as secondary 1278506 - [abrt] NetworkManager: ipv4acd_on_timeout(): NetworkManager killed by SIGABRT 1281301 - NetworkManager infiniband connected mode fails with some adapters 1284261 - Default-route doesn't get removed when disconnecting device externally (on lost carrier, unplug cable) 1285367 - nm-libreswan-service abort when trying to establish vpn connection to RH intranet 1286105 - ipv6 address on team.vlan interface disappear sometimes 1289523 - Mobile broadband (WWAN) connection not detected after suspend 1294728 - the team connection becomes incorrect after I restart NetworkManager 1296058 - rebase libnl3 package to new upstream version for rhel-7.3 1298732 - regression: Fails to connect to Red Hat VPN 1300755 - ifup network with an interface name with more than 16 characters 1301389 - [abrt] NetworkManager: check_if_startup_complete(): NetworkManager killed by SIGSEGV 1303968 - NetworkManager Bridged Team MTU Fails to Set 1304641 - bond profile doubling after restart with manual ipv6 (or ignore) 1309899 - RHEL7.2: default route for vlan devices does not get added on boot 1310435 - default team profile should load some default config 1312281 - NetworkManager ignores the REORDER_HDR flag for VLAN connections 1313091 - the restart of NetworkManager service disables a configured connection and creates a dynamic connection 1313836 - broadband PIN dialog wont appear 1323571 - failed to disable userspace IPv6LL address handling 1324025 - CVE-2016-0764 NetworkManager: Race condition allowing info leak 1325752 - Vlan devices do not inherit the bonding device MAC address when bonding driver is reloaded 1330090 - Fails to connect to ethernet after update to 1:NetworkManager-1.2.0-0.1.beta3.el7.x86_64 1330694 - NM does not run pre-down scripts on suspend/sleep/hibernate 1330893 - NetworkManager.service never reaches its 'startup complete' state IFF MTU=9000 (ixgbe driver) 1331395 - [abrt] [faf] NetworkManager: unknown function(): /usr/sbin/NetworkManager killed by 11 1333983 - Restarting NetworkManager causes devices to be lost from the network connections 1334876 - rename package NetworkManager-config-routing-rules to NetworkManager-dispatcher-routing-rules 1334913 - NetworkManager spec file calls rpm to determine ppp version which fails in mock builds 1337222 - Please consider managing /etc/resolv.conf not a symlink 1337300 - file completion doesn't work for libreswan import 1339565 - Can't press "create" button via keyboard when create network on p2v client 1341635 - IPv6 address not assigned to VLAN subinterface when assigned immediately after device creation 1344757 - NetworkManager warning/error on T460s/p during suspend 1347015 - double up of team leads to nmc223.6 c651] tuaps: Ne workManager[30546] trap int3 ip:7fbdd56bb643 sp:7ffc02c09b40 error:0 1347810 - GCC fails when including libnl3 header 1348573 - cannot set lp_interval to bond balance-tlb (or alb) mode 1348901 - vpn dns record is not deleted when profile goes down 1349740 - 20 seconds timeout is not sufficient for VPN password entry 1349749 - [abrt] [faf] NetworkManager: g_logv(): /usr/sbin/NetworkManager killed by 5 1351272 - show name if ask is specified for 802.1x connections 1351633 - [abrt] [faf] NetworkManager: g_logv(): /usr/sbin/NetworkManager killed by 5 1355656 - Deleting a bridge with a slave attached leaves the slave with a nonexistent master 1355740 - [abrt] [faf] NetworkManager: unknown function(): /usr/bin/nmcli killed by 11 1356015 - Hostname is 'localhost.localdomain' after distro installation 1357738 - The device's master is unset when downed outside NetworkManager 1358335 - NetworkManager log messages are missing in /tmp/syslog 1362542 - warn nicely about insufficient permissions when changing logging level 1364275 - Unable to set up mtu on bonded interface in RHEL 7.2 1366300 - network team device configuration in kickstart pre section not working 1367180 - Failure to configure team with ifcfg 1367736 - after ipv4.manual and ipv4.addresses entries are added prompt gets stuck 1367737 - nmcli asks for ipv4 and ipv6 method even if these were specified 1368354 - [abrt] [faf] NetworkManager: raise(): /usr/sbin/NetworkManager killed by 6 1368355 - [abrt] [faf] NetworkManager: raise(): /usr/sbin/NetworkManager killed by 5 1368761 - [NetworkManager] - 'nmcli' Bond slaves remain with BOOTPRORTO=dhcp although we configured them with disabled method 1370503 - backport "route/addr: address attributes based on object" 1371201 - [anaconda ibft] ibft plugin stopped working in 7.3 due to /sbin/iscsiadm failing. 1371623 - fatal failure to set MAC address on wifi 1371920 - D-Bus signal PropertiesChanged emitted for wrong interface type 1371967 - incorrect team config not refused but nullified 1372799 - regression in libnm serializing "cloned-mac-address" which causes failure to edit property in nmtui 1373276 - DHCP timeout due to race condition calling nm-dhcp-helper 1374526 - backport fix for crash in libnm's nm_vpn_plugin_info_list_get_service_types() 1375933 - no tab completion in nmcli after ifname 1376784 - segfault when Reapplying slave connection, without changes 1378809 - installation of 1.4.0 NM is possible onto 7.2 but it's not working w/o newer glib2

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2016-2581.html

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-362 Race Condition

Nessus® Vulnerability Scanner

Date Description
2017-05-01 Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2016-1067.nasl - Type : ACT_GATHER_INFO
2016-12-15 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20161103_NetworkManager_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2016-11-28 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2016-2581.nasl - Type : ACT_GATHER_INFO
2016-11-11 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2016-2581.nasl - Type : ACT_GATHER_INFO
2016-11-04 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2016-2581.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
Date Informations
2017-07-21 21:25:09
  • Multiple Updates
2017-07-17 17:24:06
  • Multiple Updates
2016-11-29 13:23:41
  • Multiple Updates
2016-11-12 13:25:32
  • Multiple Updates
2016-11-05 13:24:39
  • Multiple Updates
2016-11-03 13:22:41
  • First insertion