CVE-2004-0416

Description

Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.

Affected products

• cvs / cvs1.10.7 – 1.10.7
• cvs / cvs1.10.8 – 1.10.8
• cvs / cvs1.11 – 1.11
• cvs / cvs1.11.1 – 1.11.1
• cvs / cvs1.11.1_p1 – 1.11.1_p1
• cvs / cvs1.11.2 – 1.11.2
• cvs / cvs1.11.3 – 1.11.3
• cvs / cvs1.11.4 – 1.11.4
• cvs / cvs1.11.5 – 1.11.5
• cvs / cvs1.11.6 – 1.11.6
• cvs / cvs1.11.10 – 1.11.10
• cvs / cvs1.11.11 – 1.11.11
• cvs / cvs1.11.14 – 1.11.14
• cvs / cvs1.11.15 – 1.11.15
• cvs / cvs1.11.16 – 1.11.16
• cvs / cvs1.12.1 – 1.12.1
• cvs / cvs1.12.2 – 1.12.2
• cvs / cvs1.12.5 – 1.12.5
• cvs / cvs1.12.7 – 1.12.7
• cvs / cvs1.12.8 – 1.12.8
• gentoo / linux1.4 – 1.4
• OpenBSD / OpenBSD3.4 – 3.4
• OpenBSD / OpenBSD
• OpenBSD / OpenBSD3.5 – 3.5
• openpkg / openpkg
• openpkg / openpkg1.3 – 1.3
• openpkg / openpkg2.0 – 2.0
• sgi / propack3.0 – 3.0
• sgi / propack2.4 – 2.4

References

• VENDOR_ADVISORYhttp://www.debian.org/security/2004/dsa-519
• VENDOR_ADVISORYhttp://security.e-matters.de/advisories/092004.html
• VENDOR_ADVISORYftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
• MAILING_LISThttp://marc.info/?l=bugtraq&m=108716553923643&w=2
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10070
• MISChttp://www.redhat.com/support/errata/RHSA-2004-233.html
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2004:058
• MISChttp://security.gentoo.org/glsa/glsa-200406-06.xml
• VENDOR_ADVISORYftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A994
• MAILING_LISThttp://lists.grok.org.uk/pipermail/full-disclosure/2004-June/022441.html