Yellow Dog Linux Security Advisory: YDU-20030627-2

Terra Soft Security Team yellowdog-updates@lists.terrasoftsolutions.com
Fri, 27 Jun 2003 16:12:00 -0600 

Yellow Dog Linux Bugfix Announcement
------------------------------------

Package:	redhat-config-date
Issue Date:	Jun 27,2003
Priority:	medium
Advisory ID: 	YDU-20030627-2


1. 	Topic:

	Updated redhat-config-date packages are available.


2. 	Problem:

	"The redhat-config-date program is a graphically-oriented tool for setting
	the system time, timezone, and date.

	When changing the timezone, redhat-config-date makes a symlink from
	/etc/localtime to the appropriate timezone file in /usr/share/zoneinfo.

	If the system configuration includes a separate /usr partition, this can
	cause a problem. The hwclock program (which is used to interact with the
	system's hardware clock) is run at boot-time and requires access to the
	selected timezone file. However, because hwclock runs before all file
	systems are mounted, the symlink to the timezone file in
	/usr/share/zoneinfo is invalid, and hwclock fails.

	This erratum fixes the problem by copying the timezone file into
	/etc/localtime instead of making a symbolic link."

	From Red Hat Advisory

3. 	Solution:

    	a) Updating via yum...
	We suggest that you use the yum program to keep your
         system up-to-date. The following command(s) will retrieve
	and install the fixed version of this update onto your system:

		yum update redhat-config-date

	b) Updating manually...
	Download the updates below and then run the following rpm command.
    	(Please use a mirror site)

		rpm -Fvh [filenames]
		Yellow Dog Linux 3.0
		ftp://ftp.yellowdoglinux.com/pub/yellowdog/updates/yellowdog-3.0/
			ppc/redhat-config-date-1.5.15-1.noarch.rpm


4. Verification

MD5 checksum			  Package
--------------------------------  ----------------------------
[Yellow Dog Linux 3.0]
5247ee8e4c93f4188e9414c6d2f7159b  SRPMS/redhat-config-date-1.5.15-1.src.rpm
fcfbd4d6252abdc53c41b9aaae7546cb  ppc/redhat-config-date-1.5.15-1.noarch.rpm

If you wish to verify that each package has not been corrupted or 
tampered with,
examine the md5sum with the following command: md5sum <filename>


5. Misc.

Terra Soft has setup a moderated mailing list where these security, 
bugfix, and package
enhancement announcements will be posted. See 
http://lists.terrasoftsolutions.com/ for more
information.

For information regarding the usage of yum, see:
http://www.yellowdoglinux.com/support/solutions/ydl_general/yum.shtml