drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberlauf in kdepim
Name: |
Pufferüberlauf in kdepim
|
|
ID: |
FEDORA-2004-133 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora Core 1 |
|
Datum: |
Do, 20. Mai 2004, 13:00 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0988 |
|
Applikationen: |
KDE Software Compilation |
|
Originalnachricht |
--------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-133 2004-05-19 ---------------------------------------------------------------------
Product : Fedora Core 1 Name : kdepim Version : 3.1.4 Release : 2 Summary : PIM (Personal Information Manager) for KDE Description : A PIM (Personal Information Manager) for KDE.
--------------------------------------------------------------------- Update Information:
The KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0988 to this issue.
--------------------------------------------------------------------- * Thu Dec 18 2003 Than Ngo <than@redhat.com> 6:3.1.4-2
- added patch from KDE stable branch to fix buffer overflow in vcf
--------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
20a4f053aba0eccfd4e22b816714e27a SRPMS/kdepim-3.1.4-2.src.rpm 216304bb47999422716bc39b1b992d5e i386/kdepim-3.1.4-2.i386.rpm a1b17e1958b623c414751bfb0044bf37 i386/debug/kdepim-debuginfo-3.1.4-2.i386.rpm e750576e7c01bdc9242fc31299cd07b4 i386/kdepim-devel-3.1.4-2.i386.rpm 1c5694e3993b93e5a242a4acb725e18c x86_64/kdepim-3.1.4-2.x86_64.rpm f7fa93f04c386d21cbdd380c9606766d x86_64/debug/kdepim-debuginfo-3.1.4-2.x86_64.rpm 2024ae0a406a8aaf39e00a5997cc76f0 x86_64/kdepim-devel-3.1.4-2.x86_64.rpm
This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ---------------------------------------------------------------------
-- fedora-announce-list mailing list fedora-announce-list@redhat.com http://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
|
|