Paketname
libneon0.26
Datum
2007-01-12
Advisory ID
MDKSA-2007:013
Betroffene Versionen
2007.0 x86_64 , 2007.0 i586

Problembeschreibung

An array index error in the URI parser in neon 0.26.0 to 0.26.2 could
possibly allow remote malicious servers to cause a crash via a URI with
non-ASCII characters. This vulnerability may only exist on 64bit
systems.

Updated packages are patched to address this issue.

Aktualisierte Pakete

2007.0 x86_64

 a1f3cf9e84b0c51c88751064a365b511  2007.0/x86_64/lib64neon0.26-0.26.1-2.1mdv2007.0.x86_64.rpm
 add591ef02ed13504a839a9c8b6030dc  2007.0/x86_64/lib64neon0.26-devel-0.26.1-2.1mdv2007.0.x86_64.rpm
 559f542e49f886a14176312679c6517d  2007.0/x86_64/lib64neon0.26-static-devel-0.26.1-2.1mdv2007.0.x86_64.rpm 
 16dfa5adfcf08105e6a95ee6cc3a3c24  2007.0/SRPMS/libneon0.26-0.26.1-2.1mdv2007.0.src.rpm

2007.0 i586

 1421f85cd23952a83277e289fb45cfaa  2007.0/i586/libneon0.26-0.26.1-2.1mdv2007.0.i586.rpm
 07660fed4e901cec7f221662b84c0065  2007.0/i586/libneon0.26-devel-0.26.1-2.1mdv2007.0.i586.rpm
 9ea39f058c170f92e3b64456a016bc2c  2007.0/i586/libneon0.26-static-devel-0.26.1-2.1mdv2007.0.i586.rpm 
 16dfa5adfcf08105e6a95ee6cc3a3c24  2007.0/SRPMS/libneon0.26-0.26.1-2.1mdv2007.0.src.rpm

Referenzen