696317 – xorg-x11: xrdb regression introduced by the CVE-2011-0465 fix [rhel-4]

Bug 696317 - xorg-x11: xrdb regression introduced by the CVE-2011-0465 fix [rhel-4]

Summary: xorg-x11: xrdb regression introduced by the CVE-2011-0465 fix [rhel-4]

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 4
Classification:	Red Hat
Component:	xorg-x11
Sub Component:
Version:	4.9
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Adam Jackson
QA Contact:	desktop-bugs@redhat.com
Docs Contact:
URL:
Whiteboard:	public=20110405,reported=20110224,sou...
Depends On:	CVE-2011-0465 681589 681590 681591 681592 681593 833998
Blocks:	696310 696316
TreeView+	depends on / blocked

Reported:	2011-04-13 19:57 UTC by Adam Jackson
Modified:	2012-06-20 14:44 UTC (History)
CC List:	9 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:	A previous advisory, the RHSA-2011:0432 xorg-x11 security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error: sh: -c: line 0: unexpected EOF while looking for matching `"' sh: -c: line 1: syntax error: unexpected end of file With this update, the underlying source code has been adapted to correct the macro expansion mechanism, and the xrdb utility now works as expected.
Clone Of:	CVE-2011-0465
Environment:
Last Closed:	2011-04-18 15:39:16 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2011:0450	0	normal	SHIPPED_LIVE	xorg-x11 bug fix update	2011-04-18 15:39:07 UTC

Comment 1 Adam Jackson 2011-04-13 22:24:11 UTC

3256989 build (dist-4E-qu-candidate, /cvs/dist:rpms/xorg-x11/RHEL-4:xorg-x11-6_8_2-1_EL_68) completed successfully

MODIFIED

Comment 4 Jaromir Hradilek 2011-04-18 14:39:18 UTC

    Technical note added. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    New Contents:
A previous advisory, the RHSA-2011:0433 xorg-x11-server-utils security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error:

    sh: -c: line 0: unexpected EOF while looking for matching `"'
    sh: -c: line 1: syntax error: unexpected end of file 

With this update, the underlying source code has been adapted to correct the macro expansion mechanism, and the xrdb utility now works as expected.

Comment 5 Jaromir Hradilek 2011-04-18 14:53:11 UTC

    Technical note updated. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    Diffed Contents:
@@ -1,4 +1,4 @@
-A previous advisory, the RHSA-2011:0433 xorg-x11-server-utils security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error:
+A previous advisory, the RHSA-2011:0432 xorg-x11-server-utils security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error:
 
     sh: -c: line 0: unexpected EOF while looking for matching `"'
     sh: -c: line 1: syntax error: unexpected end of file

Comment 6 Jaromir Hradilek 2011-04-18 14:54:00 UTC

    Technical note updated. If any revisions are required, please edit the "Technical Notes" field
    accordingly. All revisions will be proofread by the Engineering Content Services team.
    
    Diffed Contents:
@@ -1,4 +1,4 @@
-A previous advisory, the RHSA-2011:0432 xorg-x11-server-utils security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error:
+A previous advisory, the RHSA-2011:0432 xorg-x11 security update, applied a backported patch to fix a flaw in the X server resource database utility, xrdb. While this patch resolved the security issue, it also introduced an error in the macro expansion mechanism. Consequent to this, an attempt to run the xrdb utility could fail with the following messages written to standard error:
 
     sh: -c: line 0: unexpected EOF while looking for matching `"'
     sh: -c: line 1: syntax error: unexpected end of file

Comment 7 errata-xmlrpc 2011-04-18 15:39:16 UTC

An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2011-0450.html

Note You need to log in before you can comment on or make changes to this bug.