Bug 248417 (CVE-2007-3388)
Summary: | CVE-2007-3388 qt3 format string flaw | ||||||
---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Josh Bressers <bressers> | ||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||
Status: | CLOSED ERRATA | QA Contact: | |||||
Severity: | high | Docs Contact: | |||||
Priority: | high | ||||||
Version: | unspecified | CC: | osoukup, than, twoerner | ||||
Target Milestone: | --- | Keywords: | Security | ||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2008-01-15 16:34:11 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | 248418, 248419, 248420, 248421, 248422 | ||||||
Bug Blocks: | |||||||
Attachments: |
|
Description
Josh Bressers
2007-07-16 18:19:47 UTC
Created attachment 159351 [details]
Proposed upstream patch
This patch also fixes several additional format string flaws.
Credit for discovering this flaw should go to Tracey Parry of Portcullis Computer Security Ltd. embargo set to 20070727 by Trolltech This is now public: http://trolltech.com/company/newsroom/announcements/press.2007-07-27.7503755960 This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2007-0721.html Fedora https://admin.fedoraproject.org/updates/F7/FEDORA-2007-2216 |