Bug 954658 (CVE-2013-1980)
Summary: | CVE-2013-1980 xmp: Heap-based buffer overflow by processing certain MASI files | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | dominik, itamar, jrusnack |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-12-23 01:01:28 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 954670 | ||
Bug Blocks: |
Description
Jan Lieskovsky
2013-04-22 12:31:53 UTC
This issue affects the versions of the xmp package, as shipped with Fedora release of 17 and 18. Please schedule an update. Created xmp tracking bugs for this issue Affects: fedora-all [bug 954670] The CVE identifier of CVE-2013-1980 has been assigned: http://www.openwall.com/lists/oss-security/2013/04/22/12 to this issue. xmp-3.5.0-3.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. xmp-3.5.0-3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. xmp-3.4.0-11.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report. Looks like this should've been closed a long time ago. |