Red Hat Bugzilla – Bug 463990
CVE-2008-3828 condor: buffer overflow in lookup_macro
Last modified: 2008-10-10 03:26:00 EDT
Any user who can submit a job can cause a buffer overflow in the
condor_qedit 1.0 X 1, for instance, sets attribute X to 1 on job 1.0. The
attribute name X is used to lookup configuration information, which employs
a static 1024 byte buffer. Making the attribute name large enough can
overflow that buffer.
The condor_schedd is a root run service.
condor-7.0.5-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in:
Red Hat Enterprise MRG for RHEL-4:
Red Hat Enterprise MRG for RHEL-5: