528081 – (CVE-2009-3591) CVE-2009-3591 dopewars: DoS via REQUESTJET message with an invalid location

Bug 528081 (CVE-2009-3591) - CVE-2009-3591 dopewars: DoS via REQUESTJET message with an invalid location

Summary: CVE-2009-3591 dopewars: DoS via REQUESTJET message with an invalid location

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	CVE-2009-3591
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:	http://web.nvd.nist.gov/view/vuln/det...
Whiteboard:
Depends On:	Confidential528082
Blocks:
TreeView+	depends on / blocked

Reported:	2009-10-08 21:31 UTC by Vincent Danen
Modified:	2019-09-29 12:32 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-02-10 07:43:00 UTC

Attachments	(Terms of Use)

Description Vincent Danen 2009-10-08 21:31:27 UTC

Common Vulnerabilities and Exposures assigned an identifier CVE-2009-3591 to
the following vulnerability:

Name: CVE-2009-3591
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3591
Assigned: 20091008
Reference: BUGTRAQ:20091006 Dopewars 1.5.12 Server Denial of Service
Reference: URL: http://www.securityfocus.com/archive/1/archive/1/507012/100/0/threaded
Reference: CONFIRM: http://dopewars.svn.sourceforge.net/viewvc/dopewars/dopewars/trunk/ChangeLog?view=markup&pathrev=1033
Reference: CONFIRM: http://dopewars.svn.sourceforge.net/viewvc/dopewars/dopewars/trunk/src/serverside.c?r1=1023&r2=1033&pathrev=1033
Reference: BID:36606
Reference: URL: http://www.securityfocus.com/bid/36606
Reference: SECUNIA:36961
Reference: URL: http://secunia.com/advisories/36961

Dopewars 1.5.12 allows remote attackers to cause a denial of service
(segmentation fault) via a REQUESTJET message with an invalid
location.

Comment 2 Susi Lehtola 2009-10-09 10:53:00 UTC


*** This bug has been marked as a duplicate of Confidentialbug 528082 ***

Comment 3 Fedora Update System 2009-10-09 13:44:35 UTC

dopewars-1.5.12-8.1033svn.fc11 has been submitted as an update for Fedora 11.
http://admin.fedoraproject.org/updates/dopewars-1.5.12-8.1033svn.fc11

Comment 4 Fedora Update System 2009-10-09 13:44:44 UTC

dopewars-1.5.12-8.1033svn.fc10 has been submitted as an update for Fedora 10.
http://admin.fedoraproject.org/updates/dopewars-1.5.12-8.1033svn.fc10

Comment 5 Fedora Update System 2009-10-14 01:30:36 UTC

dopewars-1.5.12-8.1033svn.fc10 has been pushed to the Fedora 10 stable repository.  If problems still persist, please make note of it in this bug report.

Comment 6 Fedora Update System 2009-10-14 01:42:41 UTC

dopewars-1.5.12-8.1033svn.fc11 has been pushed to the Fedora 11 stable repository.  If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.