Описание
ELSA-2010-0703: bzip2 security update (IMPORTANT)
[1.0.3-6]
- Related: #632173 use the upstream patch
[1.0.3-5]
- Resolves: #632173 integer overflow flaw in BZ2_decompress - CVE-2010-0405
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
bzip2
1.0.3-6.el5_5
bzip2-devel
1.0.3-6.el5_5
bzip2-libs
1.0.3-6.el5_5
Oracle Linux x86_64
bzip2
1.0.3-6.el5_5
bzip2-devel
1.0.3-6.el5_5
bzip2-libs
1.0.3-6.el5_5
Oracle Linux i386
bzip2
1.0.3-6.el5_5
bzip2-devel
1.0.3-6.el5_5
bzip2-libs
1.0.3-6.el5_5
Связанные CVE
Связанные уязвимости
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Integer overflow in the BZ2_decompress function in decompress.c in bzi ...
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.