Bug 9349 - 389-ds-base new security issue CVE-2013-0312
Summary: 389-ds-base new security issue CVE-2013-0312
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal major
Target Milestone: ---
Assignee: Thomas Spuhler
QA Contact: Sec team
URL: http://lwn.net/Vulnerabilities/542532/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-03-12 17:28 CET by David Walser
Modified: 2013-03-14 18:09 CET (History)
0 users

See Also:
Source RPM: 389-ds-base-1.3.0-4.mga3.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2013-03-12 17:28:43 CET 
RedHat has issued an advisory on March 11:
https://rhn.redhat.com/errata/RHSA-2013-0628.html

The RedHat bug has a link to the upstream commit to fix this:
https://bugzilla.redhat.com/show_bug.cgi?id=912964

Reproducible: 

Steps to Reproduce:
Comment 1 Thomas Spuhler 2013-03-12 20:14:58 CET 
I'll apply the patch as soon as it's approved upstream

Status: NEW => ASSIGNED

Comment 3 Thomas Spuhler 2013-03-14 17:10:20 CET 
fixed with version 1.3.0.4

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED

Comment 4 David Walser 2013-03-14 17:12:30 CET 
Has it been pushed?  I don't see it.
Comment 5 David Walser 2013-03-14 18:09:52 CET 
Thanks, it was just pushed.
Note You need to log in before you can comment on or make changes to this bug.