Hide Forgot
Looks like relatively old upstream commit [1] hasn't reached RHEL downstream yet. Note that the respective bug/fix was also discussed in the security context as of its time (that's why medium pri/sev); reproducer example from the original discussion involving me, Lon, Ryan, and secalert@ (test-expand-time is the part of the patch, and can be compiled separately in order to test verify the issue): > Btw. here is a demonstration of the issue with the test program > that was part of the posted patch (but here resrules.c is unpatched): > > $ ./test-expand-time > Time string: 0 > Expanded : 0 > Time string: 000000000000000 > Expanded : 0 > Time string: 0000000000000000 > Expanded : 0 > Time string: 00000000000000000 > Expanded : 0 > Time string: 000000000000000000 > Expanded : 0 > Time string: 0000000000000000000 > Expanded : 0 > Time string: 00000000000000000000 > Expanded : 0 > Time string: 000000000000000000000 > Expanded : 0 > Time string: 0000000000000000000000 > Expanded : 0 > Time string: 00000000000000000000000 > Expanded : 0 > Time string: 000000000000000000000000 > Expanded : 0 > Time string: 0000000000000000000000000 > Expanded : 0 > Segmentation fault This should definitely go into 6.6. [1] https://git.fedorahosted.org/cgit/cluster.git/commit/?id=9d0ecbac1ff8ac1f045bd19bb73ca063a5351014
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-1586.html