[help-gv] [Fwd: [Bug 215136] New: CVE-2006-5864: gv <= 3.6.2 stack-based buffer overflow]

[Orion Poplawski]

Anyone have a fix for this?

--
Orion Poplawski
System Administrator                  303-415-9701 x222
NWRA/CoRA Division                    FAX: 303-415-9702
3380 Mitchell Lane                  address@hidden
Boulder, CO 80301              http://www.cora.nwra.com
> --- Begin Message ---
>
>
>
> Subject: 
>
> [Bug 215136] New: CVE-2006-5864: gv <= 3.6.2 stack-based buffer	overflow
>
>
>
>
> Date: 
>
> Sat, 11 Nov 2006 05:46:46 -0500
>
>
>
>
> Please do not reply directly to this email. All additional
> comments should be made in the comments box of this bug report.
>
>
>
>
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=215136
>
>            Summary: CVE-2006-5864: gv <= 3.6.2 stack-based buffer overflow
>            Product: Fedora Extras
>            Version: fc6
>           Platform: All
>                URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5864
>         OS/Version: Linux
>             Status: NEW
>           Severity: normal
>           Priority: normal
>          Component: gv
>         AssignedTo: address@hidden
>         ReportedBy: address@hidden
>          QAContact: address@hidden
>                 CC: address@hidden,fedora-security-
>                     address@hidden
>
>
> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5864
>
> "Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv
> 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute
> arbitrary code via a PostScript (PS) file with certain headers that contain long
> comments, as demonstrated using the DocumentMedia header."
>
> -- 
> Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
> ------- You are receiving this mail because: -------
> You are the assignee for the bug, or are watching the assignee.
>
> --- End Message ---