SCIENTIFIC-LINUX-ERRATA Archives

October 2007

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Sender:
Security Errata for Scientific Linux <[log in to unmask]>
Date:
Mon, 8 Oct 2007 15:23:22 -0500
MIME-version:
1.0
Reply-To:
Troy Dawson <[log in to unmask]>
Content-type:
text/plain; format=flowed; charset=ISO-8859-1
Subject:
From:
Troy Dawson <[log in to unmask]>
Content-transfer-encoding:
7BIT
Comments:
Parts/Attachments:
text/plain (24 lines)
Synopsis:	Moderate: opal security update
Issue date:	2007-10-08
CVE Names:	CVE-2007-4924

In Scientific Linux 5, the Ekiga application uses opal.

A flaw was discovered in the way opal handled certain Session Initiation
Protocol (SIP) packets.  An attacker could use this flaw to crash an
application, such as Ekiga, which is linked with opal. (CVE-2007-4924)

SL 5.x

   SRPMS:
opal-2.2.2-1.1.0.1.src.rpm
   i386:
opal-2.2.2-1.1.0.1.i386.rpm
opal-devel-2.2.2-1.1.0.1.i386.rpm
   x86_64:
opal-2.2.2-1.1.0.1.x86_64.rpm
opal-devel-2.2.2-1.1.0.1.x86_64.rpm

-Connie Sieh
-Troy Dawson

ATOM RSS1 RSS2