Bug 115563
Summary: | CAN-2004-0097 PWlib/OpenH323 vulnerabilities | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Leonard den Ottolander <leonard-rh-bugzilla> | ||||||
Component: | pwlib | Assignee: | Alexander Larsson <alexl> | ||||||
Status: | CLOSED DUPLICATE | QA Contact: | |||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | high | ||||||||
Version: | 1 | CC: | mitr | ||||||
Target Milestone: | --- | Keywords: | Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2006-02-21 19:01:12 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Attachments: |
|
Description
Leonard den Ottolander
2004-02-13 15:58:58 UTC
Created attachment 97647 [details]
SPEC file to add CVE-CAN-2004-0097 ranges patch
Created attachment 97648 [details]
Patch taken from RHL 9 to address CVE-CAN-2004-0097
This patch patches cleanly against Fedora Core 1's pwlib-1.5.0.
Just a question as I stumbled on hunk #2 (#3 in the original patch) as well: Shouldn't that function return len for this version of the code? The return value was only changed to 0 in later versions of the code. Changing it to 0 here might lead to unexpected results. Well. That was basically a bugfix i applied at the same time as the security fix. :) *** This bug has been marked as a duplicate of 114310 *** Yeah, I figured that out (comment #4). Had a closer look and saw the length should not be returned by the function but only in &len. Changed to 'CLOSED' state since 'RESOLVED' has been deprecated. |