[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#656108: CVE-2009-5029: Integer overflow in tzfile processing



Package: eglibc
Severity: important
Tags: security

This was only recently assigned a CVE ID, but since the initial
discussion was from 2009, this is a CVE-2009-* ID.

There's an integer overflow in tzfile processing, please see
the Red Hat bugzilla for more descriptions and links to
the glibc upstream patches:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-5029

http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=97ac2654b2d831acaa18a2b018b0736245903fd2
http://sourceware.org/git/?p=glibc.git;a=commitdiff;h=8fa26d571d4b87a1c7a7f19f1365f7e5d2995933

Cheers,
        Moritz



Reply to: