MDVSA-2010:165
- Nom du paquet
- libHX
- Date
- 2010-08-30
- Advisory ID
- MDVSA-2010:165
- Affected versions
- 2009.0 x86_64 , 2010.1 i586 , 2010.0 x86_64 , 2010.0 i586 , 2009.1 i586 , 2009.0 i586 , 2009.1 x86_64 , 2010.1 x86_64
Problem description
A vulnerability has been found and corrected in libHX:
Heap-based buffer overflow in the HX_split function in string.c in
libHX before 3.6 allows remote attackers to execute arbitrary code
or cause a denial of service (application crash) via a string that
is inconsistent with the expected number of fields (CVE-2010-2947).
The updated packages have been patched to correct this issue.
Updated packages
2009.0 x86_64
55008cab5dbe805f3f7aa66587158196 2009.0/x86_64/lib64HX14-1.25-1.1mdv2009.0.x86_64.rpm 0cb4a0ec66a254b97b1113d588c8b507 2009.0/x86_64/lib64HX-devel-1.25-1.1mdv2009.0.x86_64.rpm 17ed58aeb3106050af508863e7bb532c 2009.0/SRPMS/libHX-1.25-1.1mdv2009.0.src.rpm
2010.1 i586
21f3bfeb5a3f5b617d815e8df47cf04d 2010.1/i586/libHX22-3.4-1.1mdv2010.1.i586.rpm 2ae34a52ba376791751993b2d4506e0e 2010.1/i586/libHX-devel-3.4-1.1mdv2010.1.i586.rpm 31f0088e48f6618b98698b2667109f5b 2010.1/SRPMS/libHX-3.4-1.1mdv2010.1.src.rpm
2010.0 x86_64
dc715e9a946b953224601d1816e32227 2010.0/x86_64/lib64HX22-3.1-1.1mdv2010.0.x86_64.rpm 24f85c289c653773cbeb4f12dbbc1c1d 2010.0/x86_64/lib64HX-devel-3.1-1.1mdv2010.0.x86_64.rpm 68d99c38037ea381b61d443f0b96ddd7 2010.0/SRPMS/libHX-3.1-1.1mdv2010.0.src.rpm
2010.0 i586
8564662c69f7b7ba3705ee8d92bf2d21 2010.0/i586/libHX22-3.1-1.1mdv2010.0.i586.rpm 7f5c8dd865e4d7cd3778eaba70015236 2010.0/i586/libHX-devel-3.1-1.1mdv2010.0.i586.rpm 68d99c38037ea381b61d443f0b96ddd7 2010.0/SRPMS/libHX-3.1-1.1mdv2010.0.src.rpm
2009.1 i586
4d9273cc8b1abde9cb3f75354cd9b865 2009.1/i586/libHX18-2.5-1.1mdv2009.1.i586.rpm d3cacba167a201ac52eec92e7db6b57c 2009.1/i586/libHX-devel-2.5-1.1mdv2009.1.i586.rpm 281f161c5eef405a789ef0602ccc383a 2009.1/SRPMS/libHX-2.5-1.1mdv2009.1.src.rpm
2009.0 i586
30879036b694a7d19cdb41640f0dea83 2009.0/i586/libHX14-1.25-1.1mdv2009.0.i586.rpm e78b8e20bb8359d09381f4293f312ab9 2009.0/i586/libHX-devel-1.25-1.1mdv2009.0.i586.rpm 17ed58aeb3106050af508863e7bb532c 2009.0/SRPMS/libHX-1.25-1.1mdv2009.0.src.rpm
2009.1 x86_64
abef150f002c13004b75703d7fdfe99c 2009.1/x86_64/lib64HX18-2.5-1.1mdv2009.1.x86_64.rpm 472c31715d26dda438737aec2ab949da 2009.1/x86_64/lib64HX-devel-2.5-1.1mdv2009.1.x86_64.rpm 281f161c5eef405a789ef0602ccc383a 2009.1/SRPMS/libHX-2.5-1.1mdv2009.1.src.rpm
2010.1 x86_64
4ebf4624bb4f74af9e84ded9ed5fa0d1 2010.1/x86_64/lib64HX22-3.4-1.1mdv2010.1.x86_64.rpm ab0e62cdebc3da684b75956b0924d653 2010.1/x86_64/lib64HX-devel-3.4-1.1mdv2010.1.x86_64.rpm 31f0088e48f6618b98698b2667109f5b 2010.1/SRPMS/libHX-3.4-1.1mdv2010.1.src.rpm