Synopsis: Important: bzip2 security update Issue date: 2010-11-10 CVE Names: CVE-2010-0405 An integer overflow flaw was discovered in the bzip2 decompression routine. This issue could, when decompressing malformed archives, cause bzip2, or an application linked against the libbz2 library, to crash or, potentially, execute arbitrary code. (CVE-2010-0405) All running applications using the libbz2 library must be restarted for the update to take effect. SL 6.x SRPMS: bzip2-1.0.5-7.el6_0.src.rpm i386: bzip2-1.0.5-7.el6_0.i686.rpm bzip2-devel-1.0.5-7.el6_0.i686.rpm bzip2-libs-1.0.5-7.el6_0.i686.rpm x86_64: bzip2-1.0.5-7.el6_0.x86_64.rpm bzip2-devel-1.0.5-7.el6_0.i686.rpm bzip2-devel-1.0.5-7.el6_0.x86_64.rpm bzip2-libs-1.0.5-7.el6_0.i686.rpm bzip2-libs-1.0.5-7.el6_0.x86_64.rpm -Connie Sieh -Troy Dawson