Red Hat Bugzilla – Bug 438382
CVE-2008-1552 libsilc buffer overflow from PKCS#1 message decoding
Last modified: 2008-04-08 16:04:46 EDT
Description of problem:
SILC Toolkit contains a possible buffer overflow from PKCS#1 message decoding in
versions earlier than 1.1.7. Specially crafted digital signature can be used to
crash the program.
I plan to update to SILC Toolkit 1.1.7 in rawhide, and backport the patch to
1.0.2 in Fedora 7 & Fedora 8.
This is public, no need to mark it Security sensitive.
CVE name was requested.
libsilc-1.0.2-6.fc7 has been submitted as an update for Fedora 7
libsilc-1.0.2-6.fc8 has been submitted as an update for Fedora 8
libsilc-1.0.2-6.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
libsilc-1.0.2-6.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
This is just a crash, probably caught by FORTIFY_SOURCE. No arbitrary code
Somehow libsilc-1.0.2-6.fc8 doesn't seem to have made it into F8...
Final Freeze is in effect now. Security fixes almost certainly warrant a freeze
break, so in case you build a fix for this, mail release engineering as
described here: 
The fix for this is in libsilc-1.1.7-1, which has been in rawhide for a while
now. The updates for Fedora 7 and Fedora 8 have already gone out too.