|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2005-0605: openmotif is affected by XPM bug CAN-2005-0605 | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | Thomas Biege <thomas> |
| Component: | Incidents | Assignee: | Andreas Schwab <schwab> |
| Status: | RESOLVED FIXED | QA Contact: | Security Team bot <security-team> |
| Severity: | Normal | ||
| Priority: | P5 - None | CC: | ast, patch-request, security-team |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | All | ||
| URL: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0605 | ||
| Whiteboard: | CVE-2005-0605: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) CVSSv2:NVD:CVE-2004-0692:5.0:(AV:N/AC:L/Au:N/C:N/I:N/A:P) | ||
| Found By: | Other | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Attachments: |
patchinfo-box.openmotif
patchinfo.openmotif xpm-fix-for-682.diff /work/SRC/all/openmotif/openmotif-2.2.3-xpm.diff |
||
|
Description
Thomas Biege
2005-05-12 12:42:44 UTC
SM-Tracker-1154 You are not authorized to access bug #65868. added you to CC Created attachment 36963 [details]
patchinfo-box.openmotif
Created attachment 36964 [details]
patchinfo.openmotif
dont forget openmotify21-libs or so. There is no bug. But just b/c there missed a earlier patch. Created attachment 36968 [details]
xpm-fix-for-682.diff
Looks like htese are missing. CAN-2004-0692, CAN-2004-0782, CAN-2004-0783, CAN-2004-0914, CAN-2005-0605 This patch contains many stupid things. Which are? Don't make a fool of yourself, this is complete BS. Facts are always welcome... even on a friday afternoon. I'm replacing the original xpm patch with something much better which won't have this bug. Ok but please stop closing this bug all the time. This bug does not exist in openmotif. period. Why not? I thought you want to write a new patch and now it doesn't exist? See above. I would appreciate if we can push this discussion to a senseful end. Any news on this? Andreas, can you attach your patch and reassign back to me please. Created attachment 38735 [details]
/work/SRC/all/openmotif/openmotif-2.2.3-xpm.diff
The patch you wrote includes line that are also needed in older version, not just stable. Additionally your patch is 1/6 of the size of the original patch (xpm-fix-for-682.diff). Does the missing code not affect openmotif or is it just BS (to use your words)? Any news here? we hope the fix in STABLE sufficient. *** Bug 127552 has been marked as a duplicate of this bug. *** Looks that no magic was in place to remove the bugs... Please explain. looks like another problem CVE-2005-0605: CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) |