Bug 57666 (CVE-2004-0623)

Summary:	VUL-0: CVE-2004-0623: gnats: format string bug
Product:	[Novell Products] SUSE Security Incidents	Reporter:	Thomas Biege <thomas>
Component:	Incidents	Assignee:	Thomas Biege <thomas>
Status:	RESOLVED FIXED	QA Contact:	Security Team bot <security-team>
Severity:	Normal
Priority:	P3 - Medium	CC:	security-team
Version:	unspecified
Target Milestone:	---
Hardware:	All
OS:	Linux
Whiteboard:	CVE-2004-0623: CVSS v2 Base Score: 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Found By:	---	Services Priority:
Business Priority:		Blocker:	---
Marketing QA Status:	---	IT Deployment:	---
Attachments:	gnats-report.txt patchinfo-box.gnats

Description Thomas Biege 2004-07-01 20:17:48 UTC

Hi, 
and another one... will be attached...

Comment 1 Thomas Biege 2004-07-01 20:17:48 UTC

<!-- SBZ_reproduce  -->
-

Comment 2 Thomas Biege 2004-07-01 20:18:30 UTC

Created attachment 21859 [details]
gnats-report.txt

Comment 3 Andreas Schwab 2004-07-01 23:37:12 UTC

Fixed for STABLE.

Comment 4 Thomas Biege 2004-07-01 23:39:20 UTC

So, it doesnt affect old versions?

Comment 5 Andreas Schwab 2004-07-02 00:23:11 UTC

It does, but gnats is not a maintained package.

Comment 6 Thomas Biege 2004-07-15 19:30:02 UTC

It doesnt matter as long as we shipped it with box products.

Comment 7 Thomas Biege 2004-07-15 19:52:44 UTC

Created attachment 22210 [details]
patchinfo-box.gnats

Comment 8 Andreas Schwab 2004-07-15 21:50:38 UTC

What about 8.0?

Comment 9 Thomas Biege 2004-07-15 21:54:46 UTC

it's no more supported since 30.06.2004.

Comment 10 Andreas Schwab 2004-07-15 22:38:02 UTC

Submitted.

Comment 11 Thomas Biege 2004-07-16 00:14:38 UTC

thx!

Comment 12 Thomas Biege 2004-07-20 20:04:16 UTC

packages approved

Comment 13 Ludwig Nussel 2004-11-10 18:50:47 UTC

CAN-2004-0623

Comment 14 Thomas Biege 2009-10-13 20:28:08 UTC

CVE-2004-0623: CVSS v2 Base Score: 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)