Bug 25181 - Multiple vulnerabilities: CVE-2011-0020 CVE-2011-0064
Summary: Multiple vulnerabilities: CVE-2011-0020 CVE-2011-0064
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: libpango (show other bugs)
Version: unstable
Hardware: all Linux
: P3 blocker
Assignee: Yuri N. Sedunov
QA Contact: qa-sisyphus
URL:
Keywords: security
Depends on:
Blocks:
 
Reported: 2011-03-02 12:00 MSK by Dmitry V. Levin
Modified: 2011-03-02 16:01 MSK (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Dmitry V. Levin 2011-03-02 12:00:14 MSK 
CVE-2011-0020: heap corruption.
CVE-2011-0064: buffer overwrite on OOM realloc failure.
Comment 1 Repository Robot 2011-03-02 16:01:08 MSK 
libpango-1.28.3-alt4 -> sisyphus:

* Wed Mar 02 2011 Yuri N. Sedunov <aris@altlinux> 1.28.3-alt4
- fixed CVE-20100-00{20,64} (ALT #25181)