Bugzilla – Bug 744059
VUL-0: cvs: client proxy_connect heap-based buffer overflow
Last modified: 2015-02-18 20:33:38 UTC
Your friendly security team received the following report via vendor-sec. Please respond ASAP. This issue is not public yet, please keep any information about it inside SUSE. Note that build.opensuse.org *cannot* be used to prepare embargoed updates. A heap-based buffer overflow flaw was found in the way CVS read proxy connection HTTP responses. An attacker could use this to cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-0804)
Created attachment 473239 [details] patch
considered public, even though there was no official advisory (CRD passed Feb 1st) please submit fixed packages.
ping... please submit today!
SRs submitted for factory, 12.1, 11.4, sle10-sp4, sle11-sp1 and sle11-sp2. Sles 9 needs no update as stated in comment #4. Now turning over to security.
i do not see sle11-sp1 submits, the rest apparently are there... (sp2 not required as the source was not forked)
Somehow slipped through the cracks :( Now done as 17718.
I had a discussion with Philipp and he confirmed #11. Yury, could you possibly reject the old patchinfos, please? Thanks in advance.
OK, correct packages have been submitted in SRs 106449 (12.1), 106450 (11.4, 17862 (sle10-sp4) and 17863 (sle11).
Sigh, that's what you get for trying to multitask ... SRs 106518, 106522, 17866 and 17867 should now DTRT and fix it for real.
This is an autogenerated message for OBS integration: This bug (744059) was mentioned in https://build.opensuse.org/request/show/106524 Factory / cvs
as everything is submitted, reassign to security-team for trackinbg
Update released for: cvs, cvs-debuginfo, cvs-debugsource, cvs-doc Products: openSUSE 11.4 (debug, i586, x86_64)
Update released for: cvs, cvs-debuginfo, cvs-debugsource, cvs-doc Products: SLE-DEBUGINFO 11-SP1 (i386, ia64, ppc64, s390x, x86_64) SLE-DESKTOP 11-SP1 (i386, x86_64) SLE-DESKTOP 11-SP1-FOR-SP2 (i386, x86_64) SLE-SDK 11-SP1 (i386, x86_64) SLE-SDK 11-SP1-FOR-SP2 (i386, x86_64) SLE-SERVER 11-SP1 (i386, ia64, ppc64, s390x, x86_64) SLE-SERVER 11-SP1-FOR-SP2 (i386, ia64, ppc64, s390x, x86_64) SLE-SERVER 11-SP1-TERADATA (x86_64) SLES4VMWARE 11-SP1 (i386, x86_64)
Update released for: cvs, cvs-debuginfo, cvs-doc Products: SLE-SERVER 10-SP3-TERADATA (x86_64)
Update released for: cvs, cvs-debuginfo, cvs-doc Products: SLE-DESKTOP 10-SP4 (i386, x86_64) SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64) SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
This is an autogenerated message for OBS integration: This bug (744059) was mentioned in https://build.opensuse.org/request/show/107325 Evergreen:11.2 / cvs
released
This is an autogenerated message for OBS integration: This bug (744059) was mentioned in https://build.opensuse.org/request/show/107749 Evergreen:11.2 / cvs