Patches are available for the 4.4, 4.5, and 4.6 branches, linked to from the upstream security advisory.
This affects Red Hat Enterprise Linux 6 and Fedora. It does not affect Red Hat Enterprise Linux 5 and earlier.
Nth Dimension advisory:
Link to upstream master branch commit:
IDs of the commits in other upstream branches are listed in the upstream advisory, as already pointed out in comment #0.
This issue has been addressed in following products:
Red Hat Enterprise Linux 6
Via RHSA-2011:0464 https://rhn.redhat.com/errata/RHSA-2011-0464.html