|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2004-0110: libxml2: buffer overflow in DNS response handling code | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | Thomas Biege <thomas> |
| Component: | Incidents | Assignee: | Thomas Biege <thomas> |
| Status: | RESOLVED FIXED | QA Contact: | Security Team bot <security-team> |
| Severity: | Normal | ||
| Priority: | P3 - Medium | CC: | ke, patch-request, security-team |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | CVE-2004-0110: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) | ||
| Found By: | --- | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Attachments: |
nanoftp-2.6.12.diff
nanohttp-2.6.12.diff patchinfo.xml2 patchinfo-box.xml2 |
||
|
Description
Thomas Biege
2004-12-17 19:35:00 UTC
<!-- SBZ_reproduce --> - Created attachment 27163 [details]
nanoftp-2.6.12.diff
Created attachment 27164 [details]
nanohttp-2.6.12.diff
SM-Tracker-76 Created attachment 27165 [details]
patchinfo.xml2
Created attachment 27166 [details]
patchinfo-box.xml2
please verify both file before submitting them. Absent : Fri 2004-12-17 - Mon 2004-12-20
Tue 2004-12-21
Wed 2004-12-22 - Tue 2004-12-28
Fri 2004-12-31
Fri 2004-12-24
Fri 2004-12-31
I'll make the update... packages submitted... (Why is libxml2-python missing from the 8.1 patchinfo?) SLEC has its own libxml2, please create a fixed version. 8.1 doesn't have the python package AFAICS. SLEC will be submitted in a few minutes. Ok, I was wrong. 8.1 has a python package. I just judged from the non-existing spec file. package submitted... schwere geburt. ;) ;) Thanks for your help! packages are approved CVE-2004-0110: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) |