Paketname
ed
Datum
2008-09-22
Advisory ID
MDVSA-2008:200
Betroffene Versionen
CS4.0 i586 , CS4.0 x86_64 , 2008.0 i586 , 2007.1 i586 , CS3.0 x86_64 , 2008.0 x86_64 , CS3.0 i586 , 2008.1 x86_64 , 2008.1 i586 , 2007.1 x86_64

Problembeschreibung

A heap-based buffer overflow was found in GNU ed that allowed
context-dependent or user-assisted attackers to execute arbitrary
code via a long filename (CVE-2008-3916).

This update provides GNU ed 1.0, which is not vulnerable to this issue.

Aktualisierte Pakete

CS4.0 i586

 9ca8bd7ede69b0a31211773e0b660cf2  corporate/4.0/i586/ed-1.0-0.1.20060mlcs4.i586.rpm 
 4a5ec035bf8664691b292d9e1cbfe5d2  corporate/4.0/SRPMS/ed-1.0-0.1.20060mlcs4.src.rpm

CS4.0 x86_64

 eacc3af9cef78996dc83f2bba52188c7  corporate/4.0/x86_64/ed-1.0-0.1.20060mlcs4.x86_64.rpm 
 4a5ec035bf8664691b292d9e1cbfe5d2  corporate/4.0/SRPMS/ed-1.0-0.1.20060mlcs4.src.rpm

2008.0 i586

 cb6ecd75e46dd8ec22951c7e171012f3  2008.0/i586/ed-1.0-0.1mdv2008.0.i586.rpm 
 17a4dd7f0f492d2558b537f10881709a  2008.0/SRPMS/ed-1.0-0.1mdv2008.0.src.rpm

2007.1 i586

 9eaae01e01dad85f80efc538c1af2a99  2007.1/i586/ed-1.0-0.1mdv2007.1.i586.rpm 
 2d847335cbbc31bc17f655151bdd2efb  2007.1/SRPMS/ed-1.0-0.1mdv2007.1.src.rpm

CS3.0 x86_64

 db62ceee87b9ca4c72be123827eec8ec  corporate/3.0/x86_64/ed-1.0-0.1.C30mdk.x86_64.rpm 
 3f4fb98bc29241b4b4dd8fd7f17ebb14  corporate/3.0/SRPMS/ed-1.0-0.1.C30mdk.src.rpm

2008.0 x86_64

 ad9c1142505399ac0be54665ffaef634  2008.0/x86_64/ed-1.0-0.1mdv2008.0.x86_64.rpm 
 17a4dd7f0f492d2558b537f10881709a  2008.0/SRPMS/ed-1.0-0.1mdv2008.0.src.rpm

CS3.0 i586

 82652d03c0b9a79f1b37ca25d81818ce  corporate/3.0/i586/ed-1.0-0.1.C30mdk.i586.rpm 
 3f4fb98bc29241b4b4dd8fd7f17ebb14  corporate/3.0/SRPMS/ed-1.0-0.1.C30mdk.src.rpm

2008.1 x86_64

 cdf6f5b643e6cea1b6010182b389c296  2008.1/x86_64/ed-1.0-0.1mdv2008.1.x86_64.rpm 
 a4222635afa3bbe94a9fcfbb2e7bf55b  2008.1/SRPMS/ed-1.0-0.1mdv2008.1.src.rpm

2008.1 i586

 59498d6e2d11a57fb1a0492258fa32a5  2008.1/i586/ed-1.0-0.1mdv2008.1.i586.rpm 
 a4222635afa3bbe94a9fcfbb2e7bf55b  2008.1/SRPMS/ed-1.0-0.1mdv2008.1.src.rpm

2007.1 x86_64

 7234461ce0c3f12ddf9df675b48767d4  2007.1/x86_64/ed-1.0-0.1mdv2007.1.x86_64.rpm 
 2d847335cbbc31bc17f655151bdd2efb  2007.1/SRPMS/ed-1.0-0.1mdv2007.1.src.rpm

Referenzen