Please note that Red Hat believes that the attached patch is not completly correct. See the Red Hat bugzilla entry for justification and another patch: https://bugzilla.redhat.com/show_bug.cgi?id=350271 -- Lubomir Kundrak (Red Hat Security Response Team)