Vulnerabilities in PWLib were found after running the NISCC OpenH323 test suite. "Of the nearly 4500 tests in the suite, OpenH323 failed two of them, which took three lines of code to fix. These pointed out several other potential problems as well, so the total changes were about 20 lines." Fix: http://cvs.sourceforge.net/viewcvs.py/openh323/pwlib/src/ptclib/asnper.cxx?r1=1.8&r2=1.6 CVE applied for (should be one name)
I think this requires changes that are slightly different than the ones the RHL9/AS needed, since its a slightly later version. Maybe we should upgrade to the fixed version?
*** Bug 115563 has been marked as a duplicate of this bug. ***
As the patch from RHL 9 applies cleanly and the fix you applied seems correct I don't see any reason to change the patch for use with FC1. 1.4.7 and 1.5.0 don't appear that much different at first sight.
the test-update is out