Paketname
libHX
Datum
2010-08-30
Advisory ID
MDVSA-2010:165
Betroffene Versionen
2009.0 x86_64 , 2010.1 i586 , 2010.0 x86_64 , 2010.0 i586 , 2009.1 i586 , 2009.0 i586 , 2009.1 x86_64 , 2010.1 x86_64

Problembeschreibung

A vulnerability has been found and corrected in libHX:

Heap-based buffer overflow in the HX_split function in string.c in
libHX before 3.6 allows remote attackers to execute arbitrary code
or cause a denial of service (application crash) via a string that
is inconsistent with the expected number of fields (CVE-2010-2947).

The updated packages have been patched to correct this issue.

Aktualisierte Pakete

2009.0 x86_64

 55008cab5dbe805f3f7aa66587158196  2009.0/x86_64/lib64HX14-1.25-1.1mdv2009.0.x86_64.rpm
 0cb4a0ec66a254b97b1113d588c8b507  2009.0/x86_64/lib64HX-devel-1.25-1.1mdv2009.0.x86_64.rpm 
 17ed58aeb3106050af508863e7bb532c  2009.0/SRPMS/libHX-1.25-1.1mdv2009.0.src.rpm

2010.1 i586

 21f3bfeb5a3f5b617d815e8df47cf04d  2010.1/i586/libHX22-3.4-1.1mdv2010.1.i586.rpm
 2ae34a52ba376791751993b2d4506e0e  2010.1/i586/libHX-devel-3.4-1.1mdv2010.1.i586.rpm 
 31f0088e48f6618b98698b2667109f5b  2010.1/SRPMS/libHX-3.4-1.1mdv2010.1.src.rpm

2010.0 x86_64

 dc715e9a946b953224601d1816e32227  2010.0/x86_64/lib64HX22-3.1-1.1mdv2010.0.x86_64.rpm
 24f85c289c653773cbeb4f12dbbc1c1d  2010.0/x86_64/lib64HX-devel-3.1-1.1mdv2010.0.x86_64.rpm 
 68d99c38037ea381b61d443f0b96ddd7  2010.0/SRPMS/libHX-3.1-1.1mdv2010.0.src.rpm

2010.0 i586

 8564662c69f7b7ba3705ee8d92bf2d21  2010.0/i586/libHX22-3.1-1.1mdv2010.0.i586.rpm
 7f5c8dd865e4d7cd3778eaba70015236  2010.0/i586/libHX-devel-3.1-1.1mdv2010.0.i586.rpm 
 68d99c38037ea381b61d443f0b96ddd7  2010.0/SRPMS/libHX-3.1-1.1mdv2010.0.src.rpm

2009.1 i586

 4d9273cc8b1abde9cb3f75354cd9b865  2009.1/i586/libHX18-2.5-1.1mdv2009.1.i586.rpm
 d3cacba167a201ac52eec92e7db6b57c  2009.1/i586/libHX-devel-2.5-1.1mdv2009.1.i586.rpm 
 281f161c5eef405a789ef0602ccc383a  2009.1/SRPMS/libHX-2.5-1.1mdv2009.1.src.rpm

2009.0 i586

 30879036b694a7d19cdb41640f0dea83  2009.0/i586/libHX14-1.25-1.1mdv2009.0.i586.rpm
 e78b8e20bb8359d09381f4293f312ab9  2009.0/i586/libHX-devel-1.25-1.1mdv2009.0.i586.rpm 
 17ed58aeb3106050af508863e7bb532c  2009.0/SRPMS/libHX-1.25-1.1mdv2009.0.src.rpm

2009.1 x86_64

 abef150f002c13004b75703d7fdfe99c  2009.1/x86_64/lib64HX18-2.5-1.1mdv2009.1.x86_64.rpm
 472c31715d26dda438737aec2ab949da  2009.1/x86_64/lib64HX-devel-2.5-1.1mdv2009.1.x86_64.rpm 
 281f161c5eef405a789ef0602ccc383a  2009.1/SRPMS/libHX-2.5-1.1mdv2009.1.src.rpm

2010.1 x86_64

 4ebf4624bb4f74af9e84ded9ed5fa0d1  2010.1/x86_64/lib64HX22-3.4-1.1mdv2010.1.x86_64.rpm
 ab0e62cdebc3da684b75956b0924d653  2010.1/x86_64/lib64HX-devel-3.4-1.1mdv2010.1.x86_64.rpm 
 31f0088e48f6618b98698b2667109f5b  2010.1/SRPMS/libHX-3.4-1.1mdv2010.1.src.rpm

Referenzen