Red Hat Bugzilla – Bug 116572
libxml2 ftp and http fetch had a bound checking error
Last modified: 2008-01-29 04:54:27 EST
From Bugzilla Helper: User-Agent: Mozilla/5.0 Galeon/1.2.7 (X11; Linux i686; U;) Gecko/20030131 Description of problem: When fetching a remote resource via ftp and http libxml2 use special parsing routines which had a buffer overflow problem if passed a URL more than 4Kb. This is a potential security issue covering all libxml2 releases up to 2.6.5 and fixed in 2.6.6 Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1./usr/bin/xmllint http://`perl -e 'print "A" x 5000'` 2. 3. Actual Results: segfaults Expected Results: should not segfault Additional info: This covers RHEL 2.1, RHL9, RHEL 3 and FC1 <grin/>
Created attachment 97942 [details] This patch fix the problem on 2.6.5
Best processing seems to: - apply the patch for RHEL 2.1 and 3 - push 2.6.6 or 2.6.7 as a fedora core 1 update - for RHL9 applying the patch is probably the simplest. Daniel
RHSA-2004:090 (RHEL) and RHSA-2004:091 (RHL9) in progress.
was released 2004-02-26