Bug 8415

Summary: librdmacm new security issue CVE-2012-4516
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Nicolas Lécureuil <mageia>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: Normal CC: fundawang, mageia, oe
Version: Cauldron   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/529460/
Whiteboard:
Source RPM: librdmacm-1.0.15-3.mga3.src.rpm CVE:
Status comment:

Description David Walser 2012-12-17 18:54:20 CET 
Fedora has issued an advisory on December 7:
http://lists.fedoraproject.org/pipermail/package-announce/2012-December/094720.html

It is fixed in the upstream git.  Fedora updated to what's in git, the RedHat bug links the specific patch.
David Walser 2012-12-17 18:54:40 CET

CC: (none) => nicolas.lecureuil
Assignee: bugsquad => nicolas.lecureuil

David Walser 2012-12-17 22:43:23 CET

URL: (none) => http://lwn.net/Vulnerabilities/529460/

David Walser 2012-12-21 14:26:27 CET

CC: (none) => oe

David Walser 2013-01-19 03:41:26 CET

CC: (none) => fundawang

Comment 1 David Walser 2013-02-13 22:34:55 CET 
I looked at the code and compared it with upstream, and I incorporated what I think are the correct changes from upstream into a patch.  It's in SVN.
Comment 2 Nicolas Lécureuil 2013-02-13 22:39:15 CET 
I will review
Comment 3 David Walser 2013-02-14 15:32:24 CET 
Fixed in librdmacm-1.0.15-5.mga3.

Status: NEW => RESOLVED
Resolution: (none) => FIXED