RHSA-2007:0539: Moderate: aide security update

First published: Tue Sep 04 2007(Updated: )

Advanced Intrusion Detection Environment (AIDE) is a file integrity checker<br>and intrusion detection program.<br>A flaw was discovered in the way file checksums were stored in the AIDE<br>database. A packaging flaw in the Red Hat AIDE rpm resulted in the file<br>database not containing any file checksum information. This could prevent<br>AIDE from detecting certain file modifications. (CVE-2007-3849)<br>This update also fixes the following bugs:<br><li> certain configurations could result in a segmentation fault upon </li> initialization.<br><li> AIDE was unable to open its log file in the LSPP evaluated configuration. </li> <li> if AIDE found SELinux context differences, the changed files report it </li> generated only included the first 32 characters of the context.<br>All users of AIDE are advised to upgrade to this updated package containing<br>AIDE version 0.13.1 which is not vulnerable to these issues.

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/description
• agent/event
• agent/first-publish-date
• agent/last-modified-date
• agent/references
• agent/remedy
• agent/severity
• agent/softwarecombine
• agent/tags
• agent/title
• agent/type
• collector/redhat-errata
• source/Red Hat
• anchor-id/RHSA-2007:0539
• agent/software-canonical-lookup
• package-manager/redhat