Oval Definition:oval:com.redhat.rhsa:def:20070208
Revision Date:2007-05-01Version:640
Title:RHSA-2007:0208: w3c-libwww security and bug fix update (Low)
Description:w3c-libwww is a general-purpose web library.

Several buffer overflow flaws in w3c-libwww were found. If a client application that uses w3c-libwww connected to a malicious HTTP server, it could trigger an out of bounds memory access, causing the client application to crash (CVE-2005-3183).

This updated version of w3c-libwww also fixes an issue when computing MD5 sums on a 64 bit machine.

Users of w3c-libwww should upgrade to these updated packages, which contain backported patches to correct these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-3183
RHSA-2007:0208
RHSA-2007:0208-02
RHSA-2007:0208-02
Platform(s):Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • w3c-libwww is earlier than 0:5.4.0-10.1.RHEL4.2
  • AND w3c-libwww is signed with Red Hat redhatrelease2 key
  • w3c-libwww-apps is earlier than 0:5.4.0-10.1.RHEL4.2
  • AND w3c-libwww-apps is signed with Red Hat redhatrelease2 key
  • w3c-libwww-devel is earlier than 0:5.4.0-10.1.RHEL4.2
  • AND w3c-libwww-devel is signed with Red Hat redhatrelease2 key
    • BACK