cvs: fixed heap-based buffer overflow flaw in proxy handling
A heap-based buffer overflow flaw was found in the way CVS
read proxy connection HTTP responses. An attacker could
exploit this to cause the application to crash or,
potentially, execute arbitrary code in the context of the
user running the application (CVE-2012-0804).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5861
Fixed bugs
bnc#744059
VUL-0: cvs: client proxy_connect heap-based buffer overflow
