Bug 397011 (CVE-2007-5962)
Summary: | CVE-2007-5962 vsftpd: memory leak when deny_file option is set | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Martin Nagy <mnagy> | ||||||
Component: | vulnerability | Assignee: | Martin Nagy <mnagy> | ||||||
Status: | CLOSED ERRATA | QA Contact: | |||||||
Severity: | low | Docs Contact: | |||||||
Priority: | low | ||||||||
Version: | unspecified | CC: | hripps, kreilly, security-response-team | ||||||
Target Milestone: | --- | Keywords: | Patch, Regression, Security | ||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2008-07-21 09:40:00 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | 423001 | ||||||||
Bug Blocks: | |||||||||
Attachments: |
|
Description
Martin Nagy
2007-11-23 15:51:42 UTC
Created attachment 267651 [details]
fix the vsftpd-2.0.4-filter.patch
This bugzilla has Keywords: Regression. Since no regressions are allowed between releases, it is also being proposed as a blocker for this release. Please resolve ASAP. Created attachment 268841 [details]
Just a cosmetic change.
moving to security response product so we can do tracking bugs for the affected rhel streams we decide are vulnerable and need to be fixed. removing embargo ready for 5.2 release. vsftpd-2.0.6-4.fc9 has been submitted as an update for Fedora 9 vsftpd-2.0.5-20.fc8 has been submitted as an update for Fedora 8 vsftpd-2.0.5-17.fc7 has been submitted as an update for Fedora 7 vsftpd-2.0.5-20.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report. vsftpd-2.0.6-4.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report. vsftpd-2.0.5-17.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report. This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2008-0295.html Fedora: https://admin.fedoraproject.org/updates/F8/FEDORA-2008-4347 https://admin.fedoraproject.org/updates/F9/FEDORA-2008-4362 |