Bug 961613 (CVE-2013-1993)
Summary: | CVE-2013-1993 Mesa: Multiple integer overflows leading to heap-based bufer overflows | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Huzaifa S. Sidhpurwala <huzaifas> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | airlied, ajax, jlieskov, jrusnack, peter.hutterer, pouar, security-response-team |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-10-01 07:07:38 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 963063, 963064, 963065, 963066 | ||
Bug Blocks: | 923585 |
Description
Huzaifa S. Sidhpurwala
2013-05-10 05:25:38 UTC
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2013:0898 https://rhn.redhat.com/errata/RHSA-2013-0898.html This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:0897 https://rhn.redhat.com/errata/RHSA-2013-0897.html External References: http://www.x.org/wiki/Development/Security/Advisory-2013-05-23 (In reply to errata-xmlrpc from comment #6) > This issue has been addressed in following products: > > Red Hat Enterprise Linux 6 > > Via RHSA-2013:0897 https://rhn.redhat.com/errata/RHSA-2013-0897.html patch seems to be causing glxinfo to crash in VirtualBox http://www.virtualbox.org/ticket/12043 affects my CentOS 6.4 machine but since CentOS is a rebuild/clone it probably affects RHEL 6.4 as well (In reply to thepouar from comment #8) > (In reply to errata-xmlrpc from comment #6) > > This issue has been addressed in following products: > > > > Red Hat Enterprise Linux 6 > > > > Via RHSA-2013:0897 https://rhn.redhat.com/errata/RHSA-2013-0897.html > > patch seems to be causing glxinfo to crash in VirtualBox > http://www.virtualbox.org/ticket/12043 > affects my CentOS 6.4 machine but since CentOS is a rebuild/clone it > probably affects RHEL 6.4 as well Hi, The above crash is non-security in nature and is already in the queue for the next minor release. (In reply to Huzaifa S. Sidhpurwala from comment #9) > (In reply to thepouar from comment #8) > > (In reply to errata-xmlrpc from comment #6) > > > This issue has been addressed in following products: > > > > > > Red Hat Enterprise Linux 6 > > > > > > Via RHSA-2013:0897 https://rhn.redhat.com/errata/RHSA-2013-0897.html > > > > patch seems to be causing glxinfo to crash in VirtualBox > > http://www.virtualbox.org/ticket/12043 > > affects my CentOS 6.4 machine but since CentOS is a rebuild/clone it > > probably affects RHEL 6.4 as well > > Hi, > > The above crash is non-security in nature and is already in the queue for > the next minor release. good point |