What is the severity of RHSA-2009:1102?

The severity of RHSA-2009:1102 is classified as moderate.

How do I fix RHSA-2009:1102?

To fix RHSA-2009:1102, you need to update cscope to version 15.5-15.1.el5_3.1 or later.

What vulnerabilities are addressed in RHSA-2009:1102?

RHSA-2009:1102 addresses multiple buffer overflow vulnerabilities in cscope.

What could happen if I am affected by RHSA-2009:1102?

If affected by RHSA-2009:1102, an attacker could potentially crash cscope or execute arbitrary code.

Which systems are impacted by RHSA-2009:1102?

RHSA-2009:1102 impacts systems running cscope versions prior to 15.5-15.1.el5_3.1 on both el5_3 and el5_3 x86_64 architectures.

Vulnerability/
RHSA-2009:1102

CWE

119

15/6/2009

RHSA-2009:1102: Moderate: cscope security update

First published: Mon Jun 15 2009(Updated: )

cscope is a mature, ncurses-based, C source-code tree browsing tool. Multiple buffer overflow flaws were found in cscope. An attacker could create a specially crafted source code file that could cause cscope to crash or, possibly, execute arbitrary code when browsed with cscope. (CVE-2004-2541, CVE-2009-0148) All users of cscope are advised to upgrade to this updated package, which contains backported patches to fix these issues. All running instances of cscope must be restarted for this update to take effect.

Affected Software	Affected Version	How to fix
redhat/cscope	<15.5-15.1.el5_3.1	15.5-15.1.el5_3.1
redhat/cscope	<15.5-15.1.el5_3.1	15.5-15.1.el5_3.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2009:1102?
The severity of RHSA-2009:1102 is classified as moderate.
How do I fix RHSA-2009:1102?
To fix RHSA-2009:1102, you need to update cscope to version 15.5-15.1.el5_3.1 or later.
What vulnerabilities are addressed in RHSA-2009:1102?
RHSA-2009:1102 addresses multiple buffer overflow vulnerabilities in cscope.
What could happen if I am affected by RHSA-2009:1102?
If affected by RHSA-2009:1102, an attacker could potentially crash cscope or execute arbitrary code.
Which systems are impacted by RHSA-2009:1102?
RHSA-2009:1102 impacts systems running cscope versions prior to 15.5-15.1.el5_3.1 on both el5_3 and el5_3 x86_64 architectures.

agent/type
agent/severity
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/references
agent/weakness
agent/title
agent/remedy
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2009:1102
agent/software-canonical-lookup
agent/event
agent/trending
agent/tags
agent/source
package-manager/redhat

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.