Bug 62900 (CVE-2002-0029)

Summary: VUL-0: CVE-2002-0029: glibc: 2.2: patch for buffer overflows missing
Product: [Novell Products] SUSE Security Incidents Reporter: Thomas Biege <thomas>
Component: IncidentsAssignee: Thomas Biege <thomas>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium CC: meissner, patch-request, security-team
Version: unspecified   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: CVE-2002-1146: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Attachments: glibc-2.2.5-security2.patch

Description Thomas Biege 2004-11-03 22:19:38 UTC 
Hi, 
looks like the glibc 2.2 packages for SL 8.1 lack the attached patch to fix 
some buffer overflows
Comment 1 Thomas Biege 2004-11-03 22:19:38 UTC 
<!-- SBZ_reproduce  -->
-
Comment 2 Thomas Biege 2004-11-03 22:20:06 UTC 
Created attachment 25744 [details]
glibc-2.2.5-security2.patch
Comment 3 Ludwig Nussel 2004-11-03 22:24:38 UTC 
CAN-2002-0029
Comment 4 Thorsten Kukuk 2004-11-05 19:09:51 UTC 
Removed RH crop and submitted it, somebody needs to write a patchinfo 
and laufzettel.
Comment 5 Thomas Biege 2004-11-05 19:22:41 UTC 
CAN-2002-0029 
(CVE-2002-0651, CVE-2002-1146)
Comment 6 Thomas Biege 2004-11-05 19:36:05 UTC 
patchinfo files, and lz done
Comment 7 Thomas Biege 2004-11-26 01:10:20 UTC 
packgaes approved
Comment 8 Thomas Biege 2009-10-13 10:38:39 UTC 
CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)