Please Install the Updated Packages.

The nfs-utils package provides a daemon for the kernel NFS server and related tools. It was discovered that nfs-utils did not use tcp_wrappers correctly. Certain hosts access rules defined in &quot /etc/hosts.allow&quot and &quot /etc/hosts.deny&quot may not have been honored, possibly allowing remote attackers to bypass intended access restrictions. (CVE-2008-4552) This updated package also fixes the following bugs: * the &quot LOCKD_TCPPORT&quot and &quot LOCKD_UDPPORT&quot options in &quot /etc/sysconfig/nfs&quot were not honored: the lockd daemon continued to use random ports. With this update, these options are honored. (BZ#434795) * it was not possible to mount NFS file systems from a system that has the &quot /etc/&quot directory mounted on a read-only file system (this could occur on systems with an NFS-mounted root file system). With this update, it is possible to mount NFS file systems from a system that has &quot /etc/&quot mounted on a read-only file system. (BZ#450646) * arguments specified by &quot STATDARG=&quot in &quot /etc/sysconfig/nfs&quot were removed by the nfslock init script, meaning the arguments specified were never passed to rpc.statd. With this update, the nfslock init script no longer removes these arguments. (BZ#459591) * when mounting an NFS file system from a host not specified in the NFS server's &quot /etc/exports&quot file, a misleading &quot unknown host&quot error was logged on the server (the hostname lookup did not fail). With this update, a clearer error message is provided for these situations. (BZ#463578) * the nhfsstone benchmark utility did not work with NFS version 3 and 4. This update adds support to nhfsstone for NFS version 3 and 4. The new nhfsstone &quot -2&quot , &quot -3&quot , and &quot -4&quot options are used to select an NFS version (similar to nfsstat(8)). (BZ#465933) * the exportfs(8) manual page contained a spelling mistake, &quot djando&quot , in the EXAMPLES section. (BZ#474848) * in some situations the NFS server incorrectly refused mounts to hosts that had a host alias in a NIS netgroup. (BZ#478952) * in some situations the NFS client used its cache, rather than using the latest version of a file or directory from a given export. This update adds a new mount option, &quot lookupcache=&quot , which allows the NFS client to control how it caches files and directories. Note: The Red Hat Enterprise Linux 5.4 kernel update (the fourth regular update) must be installed in order to use the &quot lookupcache=&quot option. Als ... Description truncated, for more information please check the Reference URL

nfs-utils on CentOS 5

• http://lists.centos.org/pipermail/centos-announce/2009-September/016148.html

---

Updated on 2015-03-25