Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212700
Summary: CVE-2006-5601: xsupplicant < 1.2.8 (?) stack smashing vulnerability Product: Fedora Extras Version: fc6 Platform: All URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5601 OS/Version: Linux Status: NEW Severity: high Priority: normal Component: xsupplicant AssignedTo: tcallawa@redhat.com ReportedBy: ville.skytta@iki.fi QAContact: extras-qa@fedoraproject.org CC: extras-qa@fedoraproject.org,fedora-security- list@redhat.com
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5601 http://open1x.sourceforge.net/
"7 Oct 2006 -- Xsupplicant 1.2.8 is now available for download. This release has several bug fixes in it, including a fix to a stack smash that could potentially lead to a remote root exploit."
Seems to affect all FE versions.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2006-5601: xsupplicant < 1.2.8 (?) stack smashing vulnerability
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212700
ville.skytta@iki.fi changed:
What |Removed |Added ---------------------------------------------------------------------------- Priority|normal |high
------- Additional Comments From ville.skytta@iki.fi 2006-11-12 04:36 EST ------- ping?
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2006-5601: xsupplicant < 1.2.8 (?) stack smashing vulnerability
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212700
ondrejj@salstar.sk changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |ondrejj@salstar.sk
------- Additional Comments From ondrejj@salstar.sk 2006-11-21 04:25 EST ------- It is not possible to connect with xsupplicant 1.2.7, but works fine with version 1.2.8. Please can somebody rebuild this package? Thank you.
You can found a new (working) rpm package at: http://ftp.upjs.sk/pub/users/SAL/Fedora/SRPMS/6/xsupplicant-1.2.8-0.src.rpm
Release version is changed by me to automatically update after fedora extras release.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2006-5601: xsupplicant < 1.2.8 (?) stack smashing vulnerability
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212700
------- Additional Comments From tcallawa@redhat.com 2006-11-21 11:03 EST ------- FE4, FE5, FE6 all bumped to 1.2.8. Thanks for the new SRPM Jan. :)
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2006-5601: xsupplicant < 1.2.8 (?) stack smashing vulnerability
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212700
tcallawa@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |RAWHIDE
security@lists.fedoraproject.org