[El-errata] ELSA-2009-1101 Moderate: Enterprise Linux 3 cscope security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Mon Jun 15 21:47:59 PDT 2009
Enterprise Linux Security Advisory ELSA-2009-1101
https://rhn.redhat.com/errata/RHSA-2009-1101.html
The following updated rpms for Enterprise Linux 3 have been uploaded to
the Unbreakable Linux Network:
i386:
cscope-15.5-16.RHEL3.i386.rpm
x86_64:
cscope-15.5-16.RHEL3.x86_64.rpm
SRPMS:
http://oss.oracle.com/el3/SRPMS-updates/cscope-15.5-16.RHEL3.src.rpm
Description of changes:
[15.5-16.RHEL3]
- Merge incdir-overflow and snprintf patches for better readability,
snprintf is used now with PATHLEN limit without other adjustments,
related strlen / %.*s / *_len are no longer needed and were dropped
- Update tempsec patch, drop extraneous s(n)printf argument
to suppress compiler warnings
- Update buffer-overflows patch to add missing stream argument
to fprintf error message, improve command line argument
overflow check
- Fixed snprintf param misusage in dir.c
- extended length that snprintf can cover in array
- Fixed left out overflow (bz 499197)
- Fixed spec file to include patch (bz 499197)
- Fixed several buffer overflows (bz 499197)
More information about the El-errata
mailing list