cvs: fixed heap-based buffer overflow flaw in proxy handling
A heap-based buffer overflow flaw was found in the way CVS
read proxy connection HTTP responses. An attacker could
exploit this to cause the application to crash or,
potentially, execute arbitrary code in the context of the
user running the application (CVE-2012-0804).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5861
Fixed bugs
bnc#744059
VUL-0: cvs: client proxy_connect heap-based buffer overflow
CVE#CVE-2012-0804
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
