MGASA-2013-0048
Date: | February 13th, 2013 |
Affected releases: | 2 |
Media: | Core |
Description:
Updated coreutils packages fix security vulnerabilities:
It was reported that the sort command suffered from a segfault when
processing input streams that contained extremely long strings when
used with the -d and -M switches (CVE-2013-0221).
It was reported that the uniq command suffered from a segfault when
processing input streams that contained extremely long strings
(CVE-2013-0222).
It was reported that the join command suffered from a segfault when
processing input streams that contained extremely long strings when
used with the -i switch (CVE-2013-0223).
Updated Packages:
i586:
coreutils-8.15-1.2.mga2.i586.rpm
coreutils-doc-8.15-1.2.mga2.noarch.rpm
coreutils-debug-8.15-1.2.mga2.i586.rpm
x86_64:
coreutils-8.15-1.2.mga2.x86_64.rpm
coreutils-doc-8.15-1.2.mga2.noarch.rpm
coreutils-debug-8.15-1.2.mga2.x86_64.rpm
SRPMS:
coreutils-8.15-1.2.mga2.src.rpm
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0221
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0222
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0223
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/097837.html
https://bugs.mageia.org/show_bug.cgi?id=8934