Nom du paquet
mc
Date
2004-04-29
Advisory ID
MDKSA-2004:039
Affected versions
9.2 amd64 , CS2.1 x86_64 , 10.0 amd64 , CS2.1 i586 , 10.0 i586 , 9.2 i586 , 9.1 i586 , 9.1 i586

Problem description

Several vulnerabilities in Midnight Commander were found by Jacub Jelinek. This includes several buffer overflows (CAN-2004-0226), as well as a format string issue (CAN-2004-0232), and an issue with temporary file and directory creation (CAN-2004-0231). Most of the included fixes are backports from CVS, done by Andrew V. Samoilov and Pavel Roskin. The updated packages are patched to correct these problems.

Updated packages

9.2 amd64

 71c3280f596e7107e6325f4763469664  amd64/9.2/RPMS/mc-4.6.0-4.2.92mdk.amd64.rpm
3ca594cfc21ff50089d5eeafb6014766  amd64/9.2/SRPMS/mc-4.6.0-4.2.92mdk.src.rpm

CS2.1 x86_64

 3bb3b359b6ef294f42918d4c2a25c607  x86_64/corporate/2.1/RPMS/mc-4.6.0-4.2.C21mdk.x86_64.rpm
0dcf3d4688044ac124e85e77a88b8fe1  x86_64/corporate/2.1/SRPMS/mc-4.6.0-4.2.C21mdk.src.rpm

10.0 amd64

 ba36e1c2cab3c0b22af70f954f3fc81a  amd64/10.0/RPMS/mc-4.6.0-6.1.100mdk.amd64.rpm
aaab8b2196c2c8a9abfda7747d8137a2  amd64/10.0/SRPMS/mc-4.6.0-6.1.100mdk.src.rpm

CS2.1 i586

 762b49ecdb47903842749008db97fa42  corporate/2.1/RPMS/mc-4.6.0-4.2.C21mdk.i586.rpm
0dcf3d4688044ac124e85e77a88b8fe1  corporate/2.1/SRPMS/mc-4.6.0-4.2.C21mdk.src.rpm

10.0 i586

 0808731d1842adfa0ebddd0986b3210f  10.0/RPMS/mc-4.6.0-6.1.100mdk.i586.rpm
aaab8b2196c2c8a9abfda7747d8137a2  10.0/SRPMS/mc-4.6.0-6.1.100mdk.src.rpm

9.2 i586

 0617b22bb2db89c964a881cd79efbdaa  9.2/RPMS/mc-4.6.0-4.2.92mdk.i586.rpm
3ca594cfc21ff50089d5eeafb6014766  9.2/SRPMS/mc-4.6.0-4.2.92mdk.src.rpm

9.1 i586

 df5331752d6ba8d340bc2eb02d3dfc8f  9.1/RPMS/mc-4.6.0-4.2.91mdk.i586.rpm
7d2552f8e8e482c3507e6a83a13205cc  9.1/SRPMS/mc-4.6.0-4.2.91mdk.src.rpm

9.1 i586

 2891797fb772ad1ddb03e61b93acef94  ppc/9.1/RPMS/mc-4.6.0-4.2.91mdk.ppc.rpm
7d2552f8e8e482c3507e6a83a13205cc  ppc/9.1/SRPMS/mc-4.6.0-4.2.91mdk.src.rpm

References