Red Hat Bugzilla – Bug 152553
CVE-2004-1073 looks unfixed in RHEL2.1
Last modified: 2007-11-30 17:06:54 EST
In RHSA-2004:549 we say we fix CAN-2004-1073 however it looks like we didn't
include one of the fixes, even though it appears to be part of the -ac11 fixes.
This therefore affects RHEL3, RHEL2.1 but not RHEL4 or FC.
MCP can't process this bug's status whiteboard, is the public= field correct?
(was it 1st November or 11th January?)
Created attachment 119622 [details]
Avoid dumping exec-only binarys. Prevent malicious binaries from overflowing task size.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.