Summary: | <net-misc/freerdp-1.1.0_beta1_p20130710-r1: integer overflow (CVE-2014-0250) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | floppym |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=998934 | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2014-05-28 13:18:07 UTC
Here are the commits for this in to upstream https://github.com/FreeRDP/FreeRDP/pull/1874 This one will be easier to apply. Just waiting for it to be merged upstream. https://github.com/FreeRDP/FreeRDP/pull/1891 +*freerdp-1.1.0_beta1_p20130710-r1 (21 Jun 2014) + + 21 Jun 2014; Mike Gilbert <floppym@gentoo.org> + +files/freerdp-1.1-CVE-2014-0250.patch, + +freerdp-1.1.0_beta1_p20130710-r1.ebuild: + Add fix for CVE-2014-0250, bug 511688. Please stabilize: =net-misc/freerdp-1.1.0_beta1_p20130710-r1 Arches, please test and mark stable: =net-misc/freerdp-1.1.0_beta1_p20130710-r1 Target Keywords : "alpha amd64 arm ppc ppc64 x86" Thank you! amd64 stable x86 stable arm stable alpha stable ppc64 stable ppc stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. New GLSA request filed. This issue was resolved and addressed in GLSA 201412-18 at http://security.gentoo.org/glsa/glsa-201412-18.xml by GLSA coordinator Sean Amoss (ackle). |