MDKSA-2004:017
- Package name
- pwlib
- Date
- 2004-03-03
- Advisory ID
- MDKSA-2004:017
- Affected versions
- 9.2 i586 , 9.1 i586 , 9.1 i586 , 9.2 amd64
Problem description
The NISCC uncovered bugs in pwlib prior to version 1.6.0 via a test suite for the H.225 protocol. An attacker could trigger these bugs by sending carefully crafted messages to an application that uses pwlib, and the severity would vary based on the application, but likely would result in a Denial of Service (DoS). The updated packages provide backported fixes from Craig Southeren of the OpenH323 project to protect against this issue.
Updated packages
9.2 i586
4e095dc6d64f5941f55f58424d3d5599 9.2/RPMS/libpwlib1-1.5.0-15.1.92mdk.i586.rpm 060c174399292849ca8346ef45578dd2 9.2/RPMS/libpwlib1-devel-1.5.0-15.1.92mdk.i586.rpm 0ddef52a47329dbc74e429e2dd5f7a33 9.2/SRPMS/pwlib-1.5.0-15.1.92mdk.src.rpm
9.1 i586
504f276f33540a60d7165157f50c2da4 ppc/9.1/RPMS/pwlib1-1.4.7-3.1.91mdk.ppc.rpm 1bc08b3f94b5efabe4fc3ec951538b0e ppc/9.1/RPMS/pwlib1-devel-1.4.7-3.1.91mdk.ppc.rpm 01b596fc6d5dec07662c86f00bfac18b ppc/9.1/SRPMS/pwlib-1.4.7-3.1.91mdk.src.rpm
9.1 i586
fed08cb03468a960cef54c5cbe2c17e8 9.1/RPMS/pwlib1-1.4.7-3.1.91mdk.i586.rpm 2803e4377897b4e46ad9baaa0bc410c2 9.1/RPMS/pwlib1-devel-1.4.7-3.1.91mdk.i586.rpm 01b596fc6d5dec07662c86f00bfac18b 9.1/SRPMS/pwlib-1.4.7-3.1.91mdk.src.rpm
9.2 amd64
e632e434f78b1ea872eb90e2080b837f amd64/9.2/RPMS/lib64pwlib1-1.5.0-15.1.92mdk.amd64.rpm 583c64d12696cbdc0a618849fa424745 amd64/9.2/RPMS/lib64pwlib1-devel-1.5.0-15.1.92mdk.amd64.rpm 0ddef52a47329dbc74e429e2dd5f7a33 amd64/9.2/SRPMS/pwlib-1.5.0-15.1.92mdk.src.rpm