[Bug 227791] New: CVE-2007-160: centericq buffer overflow
bugzilla at redhat.com
bugzilla at redhat.com
Thu Feb 8 05:19:26 UTC 2007
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=227791
Summary: CVE-2007-160: centericq buffer overflow
Product: Fedora Extras
Version: devel
Platform: All
OS/Version: Linux
Status: NEW
Severity: normal
Priority: normal
Component: centericq
AssignedTo: andreas.bierfert at lowlatency.de
ReportedBy: kevin at tummy.com
QAContact: extras-qa at fedoraproject.org
CC: fedora-security-list at redhat.com
Description of problem:
centericq is vulnerable to a buffer overflow in it's livejournal support.
See:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0160
All fedora extras versions seem to be vulnerable.
More info, and a patch that debian is using is at:
http://mailman.linuxpl.org/pipermail/cicq/2007-January/004866.html
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the Fedora-security-list
mailing list